Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/r3NkvQvtfY1d4ZL6sETSCu6-3z4.roa
File: r3NkvQvtfY1d4ZL6sETSCu6-3z4.roa (raw, json)
Hash identifier: c9ljqfPZObEH6Qf7HWMXQeeA65WJUtWrxBIa0psriRI=
Subject key identifier: AF:73:64:BD:0B:ED:7D:8D:5D:E1:92:FA:B0:44:D2:0A:EE:BE:DF:3E
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1EFB
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/r3NkvQvtfY1d4ZL6sETSCu6-3z4.roa
Signing time: Thu 30 Jun 2022 01:48:14 +0000
ROA not before: Thu 30 Jun 2022 01:48:14 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 123.193.0.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7931 (0x1efb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Jun 30 01:48:14 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=AF7364BD0BED7D8D5DE192FAB044D20AEEBEDF3E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:83:ae:ce:e4:2f:3b:3a:01:0b:f9:90:27:38:
b7:6a:eb:23:d2:2e:12:21:70:dd:ff:47:db:ae:b0:
af:f1:f7:8e:41:2a:c5:1d:d7:1d:20:de:a9:0b:45:
ad:67:d7:ce:c2:36:4d:81:1d:5e:b5:a6:44:1f:f4:
0d:94:f6:92:e3:96:cf:30:4d:3f:2e:e3:d6:c1:c9:
a2:b4:b1:ce:9b:b4:30:1e:13:4b:5c:4b:ea:c1:8d:
0f:a4:13:c4:be:c2:39:f7:b6:e1:1c:0c:7a:38:cb:
ed:3b:67:5d:36:83:e4:87:eb:05:2e:68:f3:f4:63:
19:04:76:0a:95:a6:b6:0b:87:51:7a:90:a6:b7:cf:
82:c2:ca:0e:2d:fe:ac:c9:49:79:0f:ad:2b:14:30:
69:d1:ce:18:31:f0:57:e6:ba:e3:1e:e6:6d:61:16:
be:2b:ce:0b:ae:10:a8:e2:b5:05:26:eb:d7:75:e8:
2e:3a:a3:81:90:51:d2:37:2b:7a:58:a8:20:a0:23:
ff:0c:f2:ac:b8:1d:4a:d5:79:ac:5d:2f:b4:c4:7b:
87:59:62:e4:af:f2:d6:4a:d4:5c:22:24:18:8a:35:
66:d4:9f:a0:e5:06:e7:fd:88:c6:76:8d:5d:4c:6e:
72:52:38:58:27:a4:8b:58:b8:db:8c:5d:7f:ef:ee:
0b:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:73:64:BD:0B:ED:7D:8D:5D:E1:92:FA:B0:44:D2:0A:EE:BE:DF:3E
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/r3NkvQvtfY1d4ZL6sETSCu6-3z4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.0.0/21
Signature Algorithm: sha256WithRSAEncryption
5d:df:b4:ee:39:25:2f:c5:f7:37:38:7f:f3:19:44:9d:14:ce:
e4:0d:dc:00:b7:ee:86:07:9b:6f:6e:df:eb:6b:7e:9d:95:ce:
ba:76:5d:b3:db:88:33:d4:b7:49:8c:6e:64:84:f7:a1:06:9d:
82:52:8e:28:6d:43:f3:f2:98:e5:9c:b3:f1:d0:f9:b7:83:67:
ef:b9:d4:90:af:69:fd:76:72:ea:28:26:c6:f5:29:92:9c:9e:
bb:1f:ff:ee:d7:22:bf:5a:e8:ad:e1:d8:4f:03:a2:51:f2:a2:
11:13:b1:9f:2a:a5:24:ee:74:e3:d9:5f:26:31:4c:d5:c1:b7:
1a:4e:71:a1:d6:34:22:7c:26:07:29:7e:c3:65:d1:fc:b4:2c:
e7:e9:e6:65:9b:40:c2:ec:54:75:92:12:da:b6:ca:48:8c:ce:
34:a3:a1:83:90:46:d8:ae:72:00:12:ec:23:2a:3a:75:54:2b:
7d:6f:1f:ba:a1:e8:91:bd:12:af:77:14:c2:60:da:2a:07:d9:
43:7c:b7:2c:2d:e1:88:c5:9a:91:ec:d9:35:29:3f:3e:a1:53:
32:96:e3:43:aa:48:f2:83:ab:90:2d:f3:68:69:ff:e1:a2:09:
e7:1e:43:75:8b:0d:67:6a:53:82:8b:ca:fd:d9:be:2e:07:b9:
96:c0:20:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:36:53 2025 by rpki-client