Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/mKa5fYgxYQdDCAssRbO6HMdKJj4.roa
File: mKa5fYgxYQdDCAssRbO6HMdKJj4.roa (raw, json)
Hash identifier: ZDjnetBZzcRcW9jVrN8NuKwdu5s+4zB1oKXxq2UN3so=
Subject key identifier: 98:A6:B9:7D:88:31:61:07:43:08:0B:2C:45:B3:BA:1C:C7:4A:26:3E
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1CFF
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/mKa5fYgxYQdDCAssRbO6HMdKJj4.roa
Signing time: Wed 29 Sep 2021 02:48:29 +0000
ROA not before: Wed 29 Sep 2021 02:48:29 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 118.232.16.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7423 (0x1cff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:48:29 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=98A6B97D8831610743080B2C45B3BA1CC74A263E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:56:1d:8c:bf:69:db:bd:21:3c:a2:87:ec:c4:
a9:2c:e8:76:ad:56:b8:6b:fb:27:6e:49:4b:6e:a6:
1d:14:68:a8:b7:cb:d9:c6:a5:44:ea:bc:aa:7e:90:
0f:c7:f0:e9:b3:a4:58:43:e4:74:d8:9f:0f:fe:7e:
4f:f7:49:48:64:01:72:60:30:f7:fc:66:3e:38:31:
fb:81:79:e7:fa:84:4d:5d:b0:82:46:72:80:a1:f4:
54:79:3f:28:29:9b:29:ea:cf:3c:ab:63:64:c0:4f:
0a:2d:62:ab:ce:06:d3:4e:e3:db:d1:7e:78:d8:18:
3c:98:08:58:74:bc:2b:e5:32:6a:ee:79:73:ea:3d:
3f:72:32:96:6f:9e:a7:b9:27:61:3a:b5:cc:d9:57:
25:1d:18:7b:12:e2:ca:ea:40:cc:4b:f6:83:44:a7:
9b:0d:8a:ec:5c:fc:1d:6e:92:0a:2f:67:6f:ca:a4:
a5:67:19:f6:00:e0:d1:07:e5:78:dc:3c:20:09:bd:
a0:b1:a7:94:66:2d:5e:45:1e:0a:e3:64:c9:44:7f:
c8:64:68:cc:73:40:ed:54:02:9c:0c:c0:d9:f4:08:
81:5d:6f:0b:6f:89:9b:f4:ee:d5:b0:c9:4a:9e:ef:
88:7e:9b:3b:90:01:f6:d6:7a:51:46:14:08:2e:16:
6e:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:A6:B9:7D:88:31:61:07:43:08:0B:2C:45:B3:BA:1C:C7:4A:26:3E
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/mKa5fYgxYQdDCAssRbO6HMdKJj4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.16.0/22
Signature Algorithm: sha256WithRSAEncryption
13:7a:25:b1:d1:9e:9d:7f:53:72:bd:8e:dd:5d:10:9d:02:1c:
74:bf:9e:40:47:ad:a8:de:f6:ae:f9:f2:8c:fb:21:02:58:49:
40:e4:f1:50:53:aa:ad:2b:75:fa:bf:4b:49:61:84:d1:01:72:
0e:6f:58:0a:34:6a:ec:f5:b0:1b:8b:87:5c:06:a9:a6:00:10:
57:93:65:b0:6e:68:5e:27:f5:b1:b4:9c:43:aa:04:0f:09:e6:
80:49:a1:23:34:61:58:bc:c5:39:b2:a4:12:6b:fc:c6:08:d7:
b4:e3:2f:6e:37:d2:b7:bd:93:40:ee:50:a3:fe:7f:54:93:6d:
9c:70:70:23:04:6f:81:6d:ce:04:ce:3b:52:a9:e3:e4:56:ec:
60:16:9b:6d:38:df:26:b8:b0:ad:c6:70:f1:fb:83:01:c7:60:
c9:34:d0:16:50:04:e5:25:1a:10:1c:95:4f:5d:0e:ff:68:ca:
49:d3:47:a4:a6:51:41:8a:cf:4a:d8:c6:e0:dd:9b:44:d7:13:
dd:92:d4:c0:84:22:2d:fa:29:23:13:f8:02:0a:27:c3:88:a7:
ba:b3:c1:2f:04:f7:b1:05:ae:f2:49:38:db:d4:12:58:d1:18:
0c:a1:12:f6:3e:27:bc:65:5f:a4:07:92:78:48:2b:e2:06:cb:
39:7e:e3:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:21:32 2025 by rpki-client