Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/tLtoOr5I1Dhdut1XJZri39co3zs.roa
File: tLtoOr5I1Dhdut1XJZri39co3zs.roa (raw, json)
Hash identifier: k2pu9VRku7IXM5gQ1MqmDMZWiDYljy54wA11YWIBvL0=
Subject key identifier: B4:BB:68:3A:BE:48:D4:38:5D:BA:DD:57:25:9A:E2:DF:D7:28:DF:3B
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2B91
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/tLtoOr5I1Dhdut1XJZri39co3zs.roa
Signing time: Tue 30 Jan 2024 09:13:03 +0000
ROA not before: Tue 30 Jan 2024 09:13:03 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 45.64.28.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11153 (0x2b91)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Jan 30 09:13:03 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=B4BB683ABE48D4385DBADD57259AE2DFD728DF3B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:23:7f:f8:13:0d:a4:00:fe:54:21:36:4c:74:
31:c7:dd:00:76:24:ee:c6:27:4b:f9:b2:6b:b2:28:
d4:2c:2b:94:92:16:c0:15:e9:39:ac:eb:31:9d:2e:
9a:ad:20:0f:5e:7f:30:e4:8e:98:ec:b7:e3:db:8f:
60:0f:71:0f:88:fd:be:50:d5:3b:cc:68:d4:fd:14:
62:cf:7c:1f:d1:e0:e9:c3:6f:ac:a6:bc:94:cd:78:
b5:23:f7:a5:b4:5d:62:c6:41:1f:25:9f:cc:ac:a6:
74:17:82:91:5d:b1:f4:98:0b:19:00:15:3e:db:36:
b1:a6:61:11:5b:0d:d0:01:0b:f6:40:03:82:0e:f0:
df:f3:17:77:1a:27:84:e2:4c:e2:e1:72:6f:de:33:
21:dd:28:a1:74:f9:ac:ba:a0:1e:4b:27:14:ad:ea:
b7:3d:7d:9a:91:03:b1:89:fc:e9:5d:3a:94:18:6d:
fb:3a:25:99:30:58:54:32:b3:80:31:01:00:a0:4f:
00:02:2a:78:83:dc:cf:36:c1:f4:c4:d3:85:ca:b6:
af:70:59:40:3c:a2:e6:fc:7e:a0:91:e0:c8:ae:f7:
b1:c4:14:20:4f:16:2d:93:0a:90:33:7b:c6:ae:68:
5a:c7:b0:c5:00:24:c8:7c:1b:ae:c3:36:96:f0:42:
e9:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:BB:68:3A:BE:48:D4:38:5D:BA:DD:57:25:9A:E2:DF:D7:28:DF:3B
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/tLtoOr5I1Dhdut1XJZri39co3zs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
45.64.28.0/22
Signature Algorithm: sha256WithRSAEncryption
2b:8a:24:43:f1:4e:c2:b8:89:db:c1:49:5c:c2:d8:90:8c:91:
ff:8b:90:9c:b8:a1:7c:8d:3f:db:d7:e4:6b:76:cc:3d:d8:d8:
1f:21:65:b8:35:ed:e8:07:b1:25:80:a8:0b:34:31:d9:c5:52:
97:93:72:2d:de:88:4b:c7:f6:8b:d5:9c:c9:6e:0e:a9:68:8a:
18:f1:53:19:92:df:77:98:2f:30:7e:e3:24:ca:15:75:5c:38:
13:6e:63:08:69:49:36:0c:ce:11:29:5d:e1:5e:dd:fe:30:82:
86:f4:da:a2:3e:eb:da:fb:f1:22:c9:72:fa:6f:4b:ef:56:65:
de:0c:16:04:bb:c6:69:fe:ca:f4:50:68:23:ac:26:0f:ac:d6:
06:04:fa:67:78:99:28:0c:05:a6:7a:08:b6:ba:73:00:2b:3d:
5c:fb:57:e8:fe:93:a7:52:07:ed:d5:d4:96:4e:fc:80:39:e6:
2b:02:bd:0c:01:12:f5:8c:dc:15:f6:f4:6a:9d:fb:32:8a:0b:
86:81:cc:22:6b:12:81:36:82:99:9a:a3:6a:3e:15:84:a1:50:
d1:a4:75:62:cd:00:d7:c0:98:f1:93:03:6a:5e:a1:51:c6:e4:
09:f2:d6:73:91:cf:7d:66:cd:cc:78:db:9d:57:87:c1:11:b9:
8f:be:b7:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:42:38 2025 by rpki-client