Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lX3mdVkuUEs8N-5-ds6JEMKzjsU.roa
File: lX3mdVkuUEs8N-5-ds6JEMKzjsU.roa (raw, json)
Hash identifier: qr7lbBMfb9ca0MxrU85z/PcAKZlNWhqkDkmqV8V+rkE=
Subject key identifier: 95:7D:E6:75:59:2E:50:4B:3C:37:EE:7E:76:CE:89:10:C2:B3:8E:C5
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 29CE
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lX3mdVkuUEs8N-5-ds6JEMKzjsU.roa
Signing time: Fri 01 Sep 2023 10:07:05 +0000
ROA not before: Fri 01 Sep 2023 10:07:05 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 123.195.20.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10702 (0x29ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:07:05 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=957DE675592E504B3C37EE7E76CE8910C2B38EC5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:53:76:cb:a3:64:1f:93:9d:f0:fd:b7:cf:71:
e3:a4:cc:cd:fe:a9:eb:25:a1:b1:a5:d2:72:5c:09:
31:b7:cf:7e:be:46:0f:34:81:c0:8b:87:48:c1:d2:
cd:19:2a:30:aa:30:61:ed:9c:15:74:e6:88:b5:4e:
d7:01:62:8a:1d:33:ea:db:23:40:3b:10:c5:a0:8f:
2e:4d:31:8e:1a:29:82:d8:a0:c2:86:90:d9:11:19:
4e:d0:36:a5:e3:90:2d:08:49:85:e1:5a:2d:84:50:
6f:ef:9a:6b:fd:44:58:cc:e1:e0:74:54:ea:7d:f5:
25:c8:97:92:71:1c:b8:5f:79:b1:ff:98:02:4b:3f:
77:9e:85:c4:52:42:47:65:ef:2a:ac:9c:ed:f3:57:
8d:fb:c8:62:b9:53:a9:7f:4f:f5:3e:68:02:29:65:
34:3d:8b:b3:63:e9:8d:29:e6:58:f6:0b:56:f0:fd:
69:40:c9:3a:25:4f:24:66:f2:f9:cd:ae:fc:00:e3:
eb:48:95:95:1e:4c:35:4e:d0:01:fc:d1:c3:7a:b8:
a5:d3:62:c5:4d:7b:0c:8e:6c:03:cd:3b:04:ef:6c:
c3:1f:04:17:d4:0f:af:53:95:70:1a:72:c6:c2:47:
b6:b3:4a:59:45:31:28:60:8c:b4:b0:5f:47:08:f1:
bf:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:7D:E6:75:59:2E:50:4B:3C:37:EE:7E:76:CE:89:10:C2:B3:8E:C5
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lX3mdVkuUEs8N-5-ds6JEMKzjsU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.20.0/22
Signature Algorithm: sha256WithRSAEncryption
2d:54:39:54:87:b4:45:9f:eb:34:f6:3d:ad:b9:4b:e3:ad:d4:
63:53:a2:17:9d:0f:ad:3d:73:61:40:cd:f3:95:eb:04:46:b6:
5b:6d:4a:ef:41:4b:ec:ed:08:c9:b1:67:78:db:86:0d:c5:a3:
68:a6:29:6d:85:64:e8:74:f2:71:ef:8c:d7:5f:13:8f:01:75:
4c:0a:08:fe:0c:61:ab:6c:13:3c:a6:b1:4b:91:10:af:1e:b4:
29:35:e8:56:14:f5:77:6e:51:ed:de:c7:9a:cf:d9:b5:01:ce:
ab:31:f5:cc:80:0a:b4:5d:1f:4d:e1:b0:b1:3d:b0:6f:03:27:
44:77:5a:31:d8:fd:08:9b:cf:96:ef:1e:a1:9d:ca:47:c2:f1:
6a:dc:25:8d:85:2c:5f:09:7e:dc:85:ba:87:22:1a:ff:45:06:
66:8a:59:96:b7:62:e9:54:19:0e:d8:69:e5:65:34:2b:09:a8:
4f:f0:84:f7:9e:20:8b:85:5c:c1:d1:0d:64:ee:a9:2d:8a:3b:
8f:04:c8:24:72:2f:34:18:3f:7e:fc:c6:ab:ee:7a:57:00:c7:
ba:b4:00:3f:cb:c3:52:a2:2f:e3:28:34:79:66:51:09:89:31:
8b:83:45:01:bd:45:e0:b0:46:d9:70:1d:f3:d2:98:fb:27:17:
ae:4d:be:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:29:24 2025 by rpki-client