Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/op0hsT8wQaCdQWLGBb1KFuYsIuQ.roa
File: op0hsT8wQaCdQWLGBb1KFuYsIuQ.roa (raw, json)
Hash identifier: FuFibDBtdolM3N6i1Sf50B2ULy2Ml6/8E4VNFK+Dxao=
Subject key identifier: A2:9D:21:B1:3F:30:41:A0:9D:41:62:C6:05:BD:4A:16:E6:2C:22:E4
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 20CD
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/op0hsT8wQaCdQWLGBb1KFuYsIuQ.roa
Signing time: Fri 25 Nov 2022 04:39:07 +0000
ROA not before: Fri 25 Nov 2022 04:39:07 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18429
IP address blocks: 118.232.200.0/25 maxlen: 25
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8397 (0x20cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:39:07 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A29D21B13F3041A09D4162C605BD4A16E62C22E4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:74:f6:3b:6e:7d:07:c1:70:4d:bf:cb:c3:f5:
c2:f0:35:73:80:be:61:ba:89:e6:25:f6:13:fb:4c:
62:b2:61:08:ec:6f:c2:58:75:b8:0c:e5:59:dd:52:
4d:fe:cc:93:4a:f5:b8:aa:f6:27:44:80:1a:1c:1c:
48:1b:91:9b:87:8a:16:69:86:ab:0f:af:66:e1:4c:
cd:61:c7:92:0b:36:f3:78:96:52:9a:79:8e:3e:51:
24:5f:0c:a9:6f:4f:72:30:93:84:97:53:99:7c:b9:
25:1f:8d:22:e7:b2:f9:3b:77:34:79:8f:31:2e:56:
9f:cd:01:0b:d6:47:e2:23:f4:8d:48:8d:87:9b:90:
62:48:78:63:ec:85:74:7f:84:ed:0b:f6:18:8d:6e:
51:6b:98:ad:50:a4:9e:43:30:57:c7:ec:b8:0a:90:
2e:1d:4a:c5:0b:2f:f3:11:09:99:17:dc:79:ab:25:
e9:ed:ab:81:3a:17:0e:7d:14:b7:23:51:66:14:e4:
01:37:d9:82:5c:ac:c5:f5:ea:9a:2e:11:20:a4:a6:
56:84:d8:8a:31:24:58:3c:c7:af:07:f0:e8:ef:6e:
0a:1f:3a:78:d3:e4:30:5f:03:f0:1b:dd:95:e2:d5:
bb:df:c1:45:86:3b:4c:03:f1:4e:6c:d3:6e:97:f6:
15:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:9D:21:B1:3F:30:41:A0:9D:41:62:C6:05:BD:4A:16:E6:2C:22:E4
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/op0hsT8wQaCdQWLGBb1KFuYsIuQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.200.0/25
Signature Algorithm: sha256WithRSAEncryption
9f:90:13:c0:1f:e7:fa:70:89:5c:2e:39:96:3c:9c:1a:98:23:
69:c6:d2:a2:89:9c:51:9e:1e:af:9f:f0:2a:e8:a4:c8:65:80:
f7:50:9c:d1:38:5b:3b:bc:51:fa:42:7a:f1:f1:7c:ba:1e:fb:
0e:df:2a:a7:40:2d:5e:04:25:d4:88:0e:35:41:d2:a5:86:fa:
91:6d:a4:06:0f:85:92:7b:8e:86:8a:c1:22:4c:71:03:e5:bd:
e2:26:4c:3c:91:9d:b2:54:14:29:a7:fd:a0:69:83:43:e2:97:
c1:74:6a:c4:9c:83:08:f2:09:d3:ff:32:4e:24:dd:43:e2:e3:
78:aa:c9:57:52:81:18:fb:7a:56:ba:79:f4:8c:9c:0d:82:52:
a3:7f:27:6f:e0:b2:80:3f:47:ee:df:d3:c7:c8:18:69:4b:0d:
20:da:62:50:55:de:f8:5b:0e:52:02:f9:8e:68:7e:e7:4e:ed:
72:32:e8:c0:33:09:a7:72:7f:bf:12:00:5a:19:8d:c7:23:50:
d4:23:39:71:9b:74:8b:d5:36:35:f9:2c:20:c6:15:6a:d1:68:
f0:03:61:14:24:13:c2:65:c8:5b:06:ef:72:53:10:f5:f7:0e:
d4:78:c8:48:92:a1:5d:b6:6f:06:a7:40:eb:e4:1e:c4:82:94:
b0:32:a9:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:25:23 2025 by rpki-client