Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/qVxFUGINJatzzbnuk4eAOpC06r0.roa
File: qVxFUGINJatzzbnuk4eAOpC06r0.roa (raw, json)
Hash identifier: Jk+0iLU/Tg5w2haevmEtDW7FB8UczDbgFuNHmln2Lss=
Subject key identifier: A9:5C:45:50:62:0D:25:AB:73:CD:B9:EE:93:87:80:3A:90:B4:EA:BD
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2801
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/qVxFUGINJatzzbnuk4eAOpC06r0.roa
Signing time: Fri 01 Sep 2023 10:04:50 +0000
ROA not before: Fri 01 Sep 2023 10:04:50 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 106.1.130.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10241 (0x2801)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:04:50 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=A95C4550620D25AB73CDB9EE9387803A90B4EABD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:71:cb:ea:e4:86:e7:d3:3e:cf:a6:94:1c:13:
c6:3a:9c:d2:53:2b:d7:43:da:aa:27:aa:f0:86:18:
8d:8d:6f:2b:84:41:f9:c7:1e:92:7d:05:12:89:0d:
5e:dc:5f:54:71:96:08:d8:76:fc:ca:66:30:2b:4a:
6f:c4:e8:ee:b9:6a:01:da:34:10:61:49:c7:df:50:
60:eb:cd:a6:67:80:88:61:47:a4:e3:da:9e:56:17:
02:18:4a:60:e3:c2:d5:63:ff:bf:c1:a2:ec:f6:11:
d1:26:bb:0b:c5:90:2b:b3:72:20:b9:96:1d:62:af:
45:16:b5:54:b0:52:eb:e7:78:f6:31:b8:b3:9f:f8:
82:4d:f5:aa:e2:2e:1a:0c:18:be:02:08:e4:3d:f2:
16:4e:7e:ec:12:c4:78:9c:00:6d:9b:92:29:5d:34:
3e:24:59:1f:2d:10:5b:5d:26:c0:07:0e:28:75:60:
c3:04:5f:4f:7d:bb:df:89:ec:df:99:3e:2b:32:8c:
0e:5a:d1:dc:c7:f6:82:48:73:d7:ea:1d:4b:57:24:
74:c5:95:9f:e3:21:95:b6:17:06:d6:5b:e0:8b:20:
bf:d7:34:56:76:5b:68:c4:af:42:6e:72:24:71:7b:
03:14:8c:cc:64:ff:77:bc:51:58:8d:95:7d:88:91:
8f:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:5C:45:50:62:0D:25:AB:73:CD:B9:EE:93:87:80:3A:90:B4:EA:BD
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/qVxFUGINJatzzbnuk4eAOpC06r0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.130.0/24
Signature Algorithm: sha256WithRSAEncryption
55:71:0b:da:2e:14:31:a7:69:39:fb:af:98:2c:71:55:c5:8f:
aa:6a:09:e2:f2:f0:0f:5a:a4:da:53:09:83:b2:33:35:0e:f5:
b5:20:7a:4b:b7:65:9e:0d:99:5e:9a:03:72:6d:1e:00:e3:7e:
80:c0:55:03:41:b4:e6:e4:16:01:15:b2:df:ee:39:70:95:0d:
b6:c3:b3:e9:39:0e:51:66:c7:0c:d1:53:34:19:1e:a4:30:e4:
c8:04:45:b8:34:5e:b5:61:59:6c:0c:78:29:f7:1f:82:2e:9e:
7a:62:fa:f4:38:9f:d1:c8:3c:45:71:ec:1d:65:fd:d3:99:b9:
8c:2a:31:f0:b2:2e:25:0f:df:cb:b9:2a:61:51:13:f0:4d:f7:
31:31:70:ad:ca:fe:07:28:55:20:3a:02:b0:ea:71:85:ca:ea:
a1:ee:4f:28:25:e4:f5:40:e5:f8:0b:62:13:cc:c5:fa:6e:c4:
94:8b:f9:78:2e:bc:ba:89:c2:96:d3:65:03:9f:77:4f:94:20:
c7:c0:8a:5d:43:8d:0e:93:ca:85:19:b7:14:5d:2e:60:bc:f2:
87:eb:6c:06:e3:dd:36:3a:45:24:11:4e:a1:8c:bb:c2:ca:b9:
56:98:9d:6a:8c:5b:0c:b9:71:0e:d6:25:45:d0:25:52:ef:41:
01:5d:a7:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:16:09 2025 by rpki-client