Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lT73V1SNSpxSE7wtRS4HHff6I9Y.roa
File: lT73V1SNSpxSE7wtRS4HHff6I9Y.roa (raw, json)
Hash identifier: nsUtUEIplJh+DCLR46NDY5HkBiAz2zukKmjtbFoHJUA=
Subject key identifier: 95:3E:F7:57:54:8D:4A:9C:52:13:BC:2D:45:2E:07:1D:F7:FA:23:D6
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 0D13
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lT73V1SNSpxSE7wtRS4HHff6I9Y.roa
Signing time: Tue 29 Sep 2020 09:54:09 +0000
ROA not before: Tue 29 Sep 2020 09:54:09 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 106.1.223.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3347 (0xd13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 09:54:09 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=953EF757548D4A9C5213BC2D452E071DF7FA23D6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:d7:57:ba:b6:c7:6f:5a:eb:30:8e:9b:d7:03:
55:80:02:d9:cd:3b:df:3e:58:a8:b9:6d:0e:d6:51:
96:1d:e8:1a:f0:59:b2:1c:83:89:56:a2:a4:e2:81:
15:02:e1:86:10:e9:90:1a:7f:d0:54:5c:18:8d:85:
5e:4f:8a:99:85:a8:96:ba:d4:ef:2c:da:f5:5b:1f:
8a:8b:81:f5:c9:12:f6:6b:8f:c8:b7:26:1b:35:25:
a9:a2:85:3e:66:dd:2b:a9:01:d6:1d:c6:a2:74:ce:
e3:42:17:d2:db:26:f7:eb:ce:43:e1:9b:2f:3c:79:
af:75:06:cb:44:1c:68:31:c1:a8:8a:06:cb:7f:04:
47:a6:a0:56:cc:ab:81:27:9c:12:da:f4:6b:7b:63:
52:db:c7:08:14:fe:2c:07:04:a1:38:07:00:d9:e5:
9b:cd:76:2c:1f:da:2d:0f:7f:4f:b4:9b:0e:b6:e2:
95:7b:7c:f3:fb:30:8a:c3:9c:85:05:27:33:b6:13:
b9:b9:ba:1e:fa:41:99:25:30:29:05:51:d0:09:ea:
02:b4:de:bf:c1:5b:cc:32:ac:c3:6d:cd:1a:d0:56:
2e:ac:e9:90:1c:34:ad:37:97:35:c9:5b:e8:36:ec:
58:ec:b3:05:3a:32:73:b5:cb:ad:b5:a8:99:10:ef:
75:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:3E:F7:57:54:8D:4A:9C:52:13:BC:2D:45:2E:07:1D:F7:FA:23:D6
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lT73V1SNSpxSE7wtRS4HHff6I9Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.223.0/24
Signature Algorithm: sha256WithRSAEncryption
02:b3:7b:9f:ad:8e:7c:d3:5a:f3:4a:39:a4:f5:ba:d8:06:df:
6d:de:56:b9:df:1c:41:49:57:38:85:ab:95:32:94:7f:42:d0:
58:d3:ba:9d:d4:dc:60:29:11:55:ce:c0:b4:51:ea:52:6f:66:
3a:44:80:de:b2:f7:33:9e:f7:ae:6c:cc:26:f2:21:19:12:a2:
9c:b3:5a:44:a2:ff:67:87:60:47:9e:a0:6c:de:3e:2c:3f:5f:
8c:ab:03:30:69:f5:79:46:18:f4:68:85:e7:25:3b:7f:4b:18:
18:a8:0c:3d:c7:f9:2c:fa:45:cd:32:4a:71:c7:16:72:0e:4a:
36:19:5e:97:6f:b0:be:51:8d:87:88:74:c0:48:f6:bd:f9:36:
e4:53:5d:ce:71:b5:cf:66:ea:ad:64:5e:e6:f7:df:4a:fd:c2:
58:0a:17:3f:e2:ae:d4:a2:e4:4d:85:31:fe:7f:05:9a:45:f7:
ed:a7:bc:50:2b:c8:5b:87:26:3d:a1:84:c9:9f:f4:f5:27:ea:
00:90:bc:cd:bb:f4:92:9b:e0:fd:4f:e8:8a:5e:2e:58:47:be:
33:20:42:2d:d1:1f:08:ae:86:f4:a1:16:26:4a:a0:60:cb:90:
85:de:ce:b0:c5:5d:dc:66:50:50:85:ab:15:fb:63:e9:8b:04:
7a:f4:91:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:17:35 2025 by rpki-client