Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/nlsILF2QgIoxcZBcnRsozDOXfdc.roa
File: nlsILF2QgIoxcZBcnRsozDOXfdc.roa (raw, json)
Hash identifier: 04f3HycfRqy1RJdwYgi2S6YJqnfKY8Go8YwJbrmdWIc=
Subject key identifier: 9E:5B:08:2C:5D:90:80:8A:31:71:90:5C:9D:1B:28:CC:33:97:7D:D7
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 0E44
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/nlsILF2QgIoxcZBcnRsozDOXfdc.roa
Signing time: Tue 29 Sep 2020 09:55:32 +0000
ROA not before: Tue 29 Sep 2020 09:55:32 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 118.232.77.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3652 (0xe44)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 09:55:32 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9E5B082C5D90808A3171905C9D1B28CC33977DD7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:72:1a:5a:8e:4b:3b:66:74:ef:be:56:b6:f8:
20:3a:3d:30:16:e0:53:de:17:48:86:43:01:7e:2d:
4b:1c:c3:3e:8b:c6:4c:7b:07:2b:be:2b:cf:b6:89:
2f:c7:30:02:02:d4:de:5c:29:50:b6:47:58:32:0b:
4c:6a:a3:a9:a6:3e:e1:9d:5c:6d:a5:cc:79:7a:74:
a6:67:b6:aa:c8:de:f5:63:29:08:6b:c6:c9:25:e8:
14:57:4e:3b:cc:bd:1e:91:2a:4f:10:4c:b8:16:8c:
17:91:8a:db:99:b0:fa:c6:22:88:60:4d:a5:b7:d2:
8c:5f:8d:82:a6:63:f7:e0:7d:79:ca:34:1b:b3:cc:
04:3e:02:86:44:84:99:87:c3:cc:92:ec:f4:a2:48:
6b:2e:31:a4:04:a5:a3:95:09:b4:ed:d7:9e:03:fa:
b6:74:cf:ae:3c:38:51:af:d7:5f:6c:c4:8b:0b:57:
cf:1e:f8:c2:25:94:f7:cb:20:2b:fe:f7:61:58:d4:
d8:ab:b1:b4:95:f7:55:c0:96:65:8c:78:a5:61:e4:
01:9a:7e:54:f2:54:93:73:e2:cd:30:93:38:a6:11:
32:d6:4f:03:b2:cc:b0:25:21:5c:d7:6e:6a:02:7f:
0a:9c:03:fb:a9:58:91:b2:cb:db:b2:a4:43:af:d8:
d4:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:5B:08:2C:5D:90:80:8A:31:71:90:5C:9D:1B:28:CC:33:97:7D:D7
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/nlsILF2QgIoxcZBcnRsozDOXfdc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.77.0/24
Signature Algorithm: sha256WithRSAEncryption
51:98:7f:09:df:5f:9b:73:a9:94:a3:e1:63:3c:18:27:94:0c:
b6:30:f5:dc:c3:ca:24:f5:94:19:3f:5c:2a:3a:4c:77:ff:03:
e3:de:62:46:da:a6:21:be:3e:df:48:d5:e3:28:64:bb:9a:5c:
17:c1:a3:d1:7c:e5:d0:f2:69:59:5a:c5:9c:6a:e3:49:fb:d6:
1f:c8:a1:70:bc:f9:fd:31:81:86:e0:f8:2f:57:24:b5:97:39:
b8:f3:6c:de:ce:6a:02:08:66:02:55:ec:24:1a:b6:cf:aa:42:
e6:84:06:86:86:6f:6e:71:c7:ef:69:a5:8a:81:84:bc:c9:18:
a9:74:b0:87:19:cb:3b:ed:59:37:da:5d:75:f7:39:fc:ea:cb:
a7:62:cc:91:20:ee:5c:12:0a:1d:24:6f:bc:6d:46:e9:a5:27:
46:6e:b6:3e:0b:ae:df:1d:85:4e:93:d6:5f:93:4a:d6:ca:45:
78:a8:a7:3f:ca:dd:5c:30:95:c4:74:9b:c1:25:3d:e9:b1:34:
55:06:26:a4:35:01:06:0d:3d:64:99:77:24:a2:93:ba:db:96:
f4:f3:c4:0e:69:38:4d:af:aa:05:89:fb:b8:63:85:77:21:5b:
23:a7:ac:e6:da:ae:78:12:c6:bd:fd:4c:43:16:50:0d:e4:3f:
13:bf:8e:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:35:40 2025 by rpki-client