Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/or-tMnwb1_WGxEfkiF2Faf6R8S0.roa
File: or-tMnwb1_WGxEfkiF2Faf6R8S0.roa (raw, json)
Hash identifier: 8WifVKgz7P+RS6S1rIvtOuj2RPuRvNpuWnBZbJeVlk4=
Subject key identifier: A2:BF:AD:32:7C:1B:D7:F5:86:C4:47:E4:88:5D:85:69:FE:91:F1:2D
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 20E5
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/or-tMnwb1_WGxEfkiF2Faf6R8S0.roa
Signing time: Fri 25 Nov 2022 04:39:15 +0000
ROA not before: Fri 25 Nov 2022 04:39:15 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.195.112.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8421 (0x20e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:39:15 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A2BFAD327C1BD7F586C447E4885D8569FE91F12D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ab:e9:05:a2:7c:83:4e:a8:6b:7d:8e:6f:dc:
5f:12:dd:b7:da:e8:91:1b:f9:0c:3b:57:cf:ca:d7:
07:06:b4:46:dc:78:bf:5c:7f:25:01:ef:71:f5:b6:
93:d9:24:5c:b3:6c:a0:50:07:62:f2:75:f3:25:8f:
52:9e:50:41:a8:0e:36:b9:40:85:f3:b1:6f:7e:b3:
96:b6:31:7d:e4:d0:a2:d5:f6:3f:d0:7a:4f:98:30:
b3:50:57:00:02:98:34:b6:4a:16:fd:b8:39:2e:38:
86:ac:f9:30:31:af:c1:40:72:99:79:d8:5b:6f:92:
23:30:43:e0:b9:5e:98:de:fe:7c:c3:36:02:dd:0f:
60:e7:f1:bb:59:0f:33:21:4c:7f:ab:2f:42:3d:f3:
d4:92:e9:d1:01:23:3e:f5:d4:c2:82:16:2d:5b:db:
bd:a7:aa:22:cb:a1:ea:8b:61:bb:00:90:b9:bd:50:
71:dd:f0:84:83:db:43:62:e3:0d:c2:c7:4e:90:0d:
5a:32:c8:af:13:41:e6:27:d0:f5:3f:5d:95:66:76:
de:21:84:57:3c:3f:f5:60:1e:cc:5a:f7:3a:c3:a1:
c4:9c:28:07:b3:3f:34:69:5e:fc:9f:7e:b2:42:7e:
7b:d2:c2:8d:47:18:81:5a:eb:83:30:21:6f:d7:d3:
55:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:BF:AD:32:7C:1B:D7:F5:86:C4:47:E4:88:5D:85:69:FE:91:F1:2D
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/or-tMnwb1_WGxEfkiF2Faf6R8S0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.112.0/22
Signature Algorithm: sha256WithRSAEncryption
46:3e:00:3d:97:0d:49:f0:5f:ab:56:8f:1d:60:44:3a:cd:e0:
ed:c0:fa:18:82:1d:2b:2d:32:4f:9e:d8:b8:ac:07:7b:60:5e:
4f:4b:18:41:dc:e0:ed:4d:26:8c:7e:ed:a8:3a:80:b6:83:54:
db:13:ba:5d:98:51:28:82:62:d0:d1:ec:75:92:9c:1a:b3:bf:
6e:a1:7e:84:24:58:3c:f1:c3:44:e4:d7:e6:5b:39:c3:e2:d4:
18:c2:e0:b7:c0:1e:d4:7a:5e:f4:be:81:54:dc:3b:1c:f1:46:
4e:76:e4:79:0f:c8:32:6b:f5:ad:46:1e:24:12:a7:e5:1c:54:
56:99:ad:48:a5:a0:fd:ac:0f:e9:10:02:da:72:99:ef:2c:75:
35:ab:88:05:5d:29:19:70:48:ee:97:86:33:cf:5c:3f:f6:85:
b5:b5:8e:68:5a:70:aa:fe:9c:1e:c2:57:16:d2:bf:91:74:f4:
a3:dd:b1:cb:08:b0:7b:da:3d:cb:7f:97:b6:e8:87:0f:42:98:
4e:49:48:93:ba:b0:25:60:0f:3d:f1:e8:f4:59:c8:4c:92:e7:
25:6a:a4:7f:e4:b9:19:a2:db:72:9c:3a:d1:7b:74:7d:a2:94:
1c:28:be:77:28:33:8b:68:dc:46:bc:ee:cf:d4:c4:1d:38:b5:
5e:98:57:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:22:25 2025 by rpki-client