Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/vtgphWmSSV8pO2f7ukVcOBNTX34.roa
File: vtgphWmSSV8pO2f7ukVcOBNTX34.roa (raw, json)
Hash identifier: zXeahEqTwsNCUKUsmvFLL2aQQYKdtrH6TjdIlKh+A7M=
Subject key identifier: BE:D8:29:85:69:92:49:5F:29:3B:67:FB:BA:45:5C:38:13:53:5F:7E
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2248
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/vtgphWmSSV8pO2f7ukVcOBNTX34.roa
Signing time: Fri 25 Nov 2022 04:40:59 +0000
ROA not before: Fri 25 Nov 2022 04:40:59 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 106.1.172.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8776 (0x2248)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:40:59 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=BED829856992495F293B67FBBA455C3813535F7E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:a3:f8:e5:69:06:df:48:77:af:5a:4b:64:3b:
53:d7:27:02:2f:93:47:50:65:54:3c:0a:f0:31:8c:
f5:ec:6b:e0:59:dd:8a:43:7a:45:ce:81:43:e2:01:
f7:69:82:a2:6c:e5:5e:74:f5:59:e8:3c:5e:e5:60:
f1:b5:96:6d:02:ae:bd:73:6d:21:49:9a:2d:a0:18:
16:09:f9:e1:9b:78:4e:a9:75:94:8b:ac:11:20:72:
45:cd:99:b9:e2:b5:86:24:6d:14:a7:3c:ad:5b:e2:
08:72:1c:b7:58:a1:0d:b9:52:0b:3f:83:03:4d:73:
a9:32:2c:72:ec:b4:b6:b1:71:f2:fd:0c:11:48:26:
21:62:a6:23:4f:d0:02:20:ae:de:62:38:80:b0:55:
27:a2:62:a7:08:c3:0b:da:99:a7:e2:e1:eb:23:6e:
d4:e9:a0:b8:f2:f2:07:0a:bb:ae:3a:bc:17:5d:44:
e1:aa:bc:75:a2:82:39:10:f2:1f:1c:f7:f1:86:9a:
e5:b8:b5:41:5c:4d:f5:08:ef:a7:6f:44:7b:05:24:
7b:b1:c2:92:92:48:70:19:13:65:fd:5d:cc:d0:4c:
98:13:15:26:7a:bc:26:99:09:d1:ed:e8:61:a6:66:
af:38:fb:94:ed:9d:2a:bc:d4:4c:7c:62:5a:f0:63:
13:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:D8:29:85:69:92:49:5F:29:3B:67:FB:BA:45:5C:38:13:53:5F:7E
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/vtgphWmSSV8pO2f7ukVcOBNTX34.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.172.0/22
Signature Algorithm: sha256WithRSAEncryption
26:65:a4:30:3e:06:43:fe:67:ab:4b:f7:d0:87:4e:cf:c2:14:
9e:79:cf:7d:17:a0:5c:06:ea:08:95:89:c9:76:ee:e9:c4:c8:
cc:68:f7:d8:7e:31:39:f0:67:83:2e:17:5b:4b:ab:74:51:0d:
d7:a0:fc:e3:91:f2:7d:de:ed:44:c8:45:6d:75:46:34:fb:67:
2a:df:bd:ff:80:23:fc:ae:5e:0c:e7:71:1e:97:2f:d4:79:50:
81:78:8e:93:f2:d9:e6:59:03:df:00:07:61:f2:dc:9f:a6:c6:
73:74:59:4d:16:53:b8:2c:5b:dd:ee:f8:8e:16:c5:6d:63:5e:
d0:58:ce:3b:13:12:76:34:4d:02:0f:a7:97:14:4d:35:b2:33:
93:1c:43:7b:af:8e:16:54:12:84:de:7c:ba:d4:b4:23:9d:0f:
ad:5f:5c:c9:93:b9:fb:02:dd:06:86:a5:da:72:fc:ec:fa:ed:
d2:bb:d6:8d:66:de:7f:cd:41:45:e3:e4:4f:c8:62:3e:8a:6f:
70:12:db:42:da:c0:83:03:5e:cc:ca:70:17:e9:9c:e9:e0:9c:
b4:be:4a:bc:35:54:73:dd:d5:3b:df:e2:b1:08:66:91:3e:c4:
cf:f1:78:73:d6:c2:7b:d3:69:36:cc:88:19:78:c9:ec:38:d8:
21:34:63:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:20:08 2025 by rpki-client