Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/mV_kMOUvRZ6hgFAz18R5rD5KWM4.roa
File: mV_kMOUvRZ6hgFAz18R5rD5KWM4.roa (raw, json)
Hash identifier: e3+YhrokfDH53B9B9PvMDj1TV1RCPWy4Qyo5LfhEM1M=
Subject key identifier: 99:5F:E4:30:E5:2F:45:9E:A1:80:50:33:D7:C4:79:AC:3E:4A:58:CE
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 27D5
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/mV_kMOUvRZ6hgFAz18R5rD5KWM4.roa
Signing time: Fri 01 Sep 2023 10:04:36 +0000
ROA not before: Fri 01 Sep 2023 10:04:36 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 106.1.64.0/21 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10197 (0x27d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:04:36 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=995FE430E52F459EA1805033D7C479AC3E4A58CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:fc:e6:ed:60:71:6d:42:ab:79:35:10:b5:7b:
a3:a0:7a:14:cd:86:25:e7:8a:2a:2c:64:36:80:62:
e1:d9:0a:db:eb:01:7a:2e:a3:57:ae:20:ea:ef:a5:
79:ec:82:64:46:59:bb:48:29:89:2d:5c:9d:6e:15:
d1:56:4a:2d:34:f0:b6:ab:89:3c:e5:3c:b6:68:00:
71:e2:41:be:3d:73:dc:d2:f0:db:5a:85:44:19:ab:
78:84:93:c7:99:42:ea:35:31:2d:da:e4:3c:a0:0b:
fd:b4:83:45:b7:a6:bc:21:97:6e:d6:cb:c0:e3:2f:
e9:6c:b4:bb:bd:7c:36:b3:30:54:04:80:a5:e9:3f:
16:b1:98:f0:aa:55:0d:d7:de:dc:b0:71:92:b7:3a:
2b:74:02:4c:31:61:c9:91:a4:35:95:cf:37:3e:d2:
37:14:5f:4c:ed:15:b0:84:de:4e:20:0a:f1:30:46:
80:c2:7a:64:76:ff:50:d0:ba:61:65:7d:da:88:d1:
4d:de:fc:69:ce:53:46:27:69:4b:2e:cf:22:da:7b:
9f:19:19:39:6a:a4:f9:93:17:74:6a:5f:2a:e7:80:
bd:a2:b7:db:9d:2c:f6:b6:9b:69:14:91:84:d7:3b:
39:e1:4e:32:ae:aa:4f:90:4c:7b:be:1b:09:17:7b:
a7:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:5F:E4:30:E5:2F:45:9E:A1:80:50:33:D7:C4:79:AC:3E:4A:58:CE
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/mV_kMOUvRZ6hgFAz18R5rD5KWM4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.64.0/21
Signature Algorithm: sha256WithRSAEncryption
8b:c7:7d:3a:bb:76:d7:2b:83:9b:b1:24:31:fe:5c:71:ed:f3:
2a:e0:87:b2:3d:0c:9c:c3:4e:82:73:e4:7a:74:90:0b:cf:c0:
f4:e0:8e:41:fe:dc:fa:5f:81:e6:67:e9:7e:64:5b:f9:c8:19:
24:57:c4:a0:36:11:ad:9f:c9:6c:c9:15:17:b6:f5:a7:63:76:
8e:28:7f:f1:64:95:d7:a0:ee:99:a7:2b:c9:4a:e1:8d:dd:17:
34:67:d6:db:ef:5d:cf:be:01:87:71:21:8d:ce:f4:92:ca:74:
76:a7:30:97:9b:86:48:3f:30:44:44:85:36:91:2c:ff:46:97:
98:f9:1b:63:2e:e4:90:66:36:05:5a:46:fe:20:81:e3:11:77:
64:a3:0f:53:7d:a1:4f:b6:7d:10:0e:8e:22:e1:33:60:e6:f3:
69:cc:35:20:ff:c1:b6:6c:27:ca:96:6c:08:db:56:99:c1:3a:
1b:e2:f4:2a:05:33:bd:2b:33:6b:54:ef:93:25:cf:2b:bd:97:
26:44:ef:46:1e:c3:3c:d5:e1:33:0e:23:83:82:47:0f:8c:37:
22:e3:5d:49:45:a0:48:76:c9:20:e7:8a:c5:b0:cf:8b:fa:58:
aa:2f:ba:c0:0e:ce:85:8b:cb:5d:8c:9b:f2:eb:b3:7c:3e:ab:
dd:11:b0:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:29:21 2025 by rpki-client