Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/22NtBYVJBkUEjrtRzDo22N9xAHU.roa
File: 22NtBYVJBkUEjrtRzDo22N9xAHU.roa (raw, json)
Hash identifier: 6x5kS40UuGdGFUFT6AM9DCanOhKz9L9VVLllW6iFqj4=
Subject key identifier: DB:63:6D:05:85:49:06:45:04:8E:BB:51:CC:3A:36:D8:DF:71:00:75
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 240C
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/22NtBYVJBkUEjrtRzDo22N9xAHU.roa
Signing time: Tue 06 Jun 2023 08:15:27 +0000
ROA not before: Tue 06 Jun 2023 08:15:27 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 180.176.0.0/15 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9228 (0x240c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Jun 6 08:15:27 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=DB636D0585490645048EBB51CC3A36D8DF710075
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:f3:03:62:9d:02:5f:cf:c5:1f:56:97:cf:eb:
f3:d3:9a:ed:e2:76:1d:29:b0:2f:de:7a:26:1a:02:
88:56:11:e1:6a:85:3f:80:43:a5:09:bf:d2:da:4d:
58:f2:3b:c9:99:c0:60:09:3c:57:77:8b:ba:4f:d6:
20:0f:9d:15:fd:1a:5d:e0:8e:69:b1:2f:46:92:21:
93:e8:d8:f1:88:e9:2f:31:c7:8b:93:1f:50:44:34:
c0:64:c9:8b:c2:a5:e4:c6:08:1b:87:02:d6:5b:56:
2b:82:00:1b:d1:43:9c:68:41:20:4b:14:24:32:54:
67:3f:93:66:8d:27:54:1b:7e:74:4f:1e:49:b9:66:
d5:af:0b:2f:27:a6:70:69:f9:42:0a:76:c7:df:e5:
7f:7e:78:1c:b0:f2:4d:82:e0:dd:2c:a1:7e:54:82:
fe:a3:64:7a:8d:85:ba:ee:0f:6d:cb:0b:0a:51:b7:
bf:78:ed:71:89:12:c7:f6:71:4d:d1:2d:15:8a:43:
2c:a7:79:dc:15:38:a6:b3:99:4a:a9:a4:12:41:11:
09:08:37:ee:3d:26:c8:78:2a:61:f3:e9:a4:89:fd:
f8:b1:d3:2c:09:ea:c4:37:3d:83:a5:a7:07:cf:10:
8e:98:61:f6:09:dc:e8:da:23:e0:f5:43:13:41:81:
f7:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:63:6D:05:85:49:06:45:04:8E:BB:51:CC:3A:36:D8:DF:71:00:75
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/22NtBYVJBkUEjrtRzDo22N9xAHU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.176.0.0/15
Signature Algorithm: sha256WithRSAEncryption
76:5b:da:43:92:ad:1d:5d:c8:d7:a3:e5:90:d4:a3:b4:f0:e2:
4f:26:2b:7f:6a:60:78:55:ea:ea:7d:97:67:60:67:eb:ac:32:
07:7d:d9:db:39:08:b2:f2:04:de:fe:de:8a:c1:8c:1e:b8:3a:
a2:12:5e:06:a3:50:ea:0f:67:c5:b5:e1:ae:4e:42:0e:6e:3d:
bf:ec:40:f7:2b:6e:d4:f0:ba:37:18:eb:f2:9f:91:dd:0a:dc:
b3:9f:57:cf:b5:b9:f6:dd:47:78:34:5a:1b:71:90:2b:cc:1c:
9a:bd:64:83:c9:69:7c:98:ea:17:c8:b1:12:97:9e:a7:64:16:
99:2b:f8:6e:03:86:89:83:bb:46:64:1e:67:ed:2f:1b:25:40:
ca:b9:a8:2d:a2:d7:6a:42:a4:ca:d1:dd:dc:6f:1f:93:11:1a:
4f:b5:00:9e:95:9a:ef:67:b5:6d:14:5a:de:16:91:a3:5d:d8:
52:73:52:b9:a3:1f:40:c1:f5:67:bd:cc:25:d9:0c:9a:ae:fe:
60:5d:f4:02:e5:04:bd:c8:b1:ab:73:a7:6a:60:b4:46:6e:cf:
18:ed:2e:95:83:bf:4a:67:d2:99:b7:c2:cb:17:a1:d3:2a:e2:
95:f0:60:e0:37:e2:c3:0c:8b:58:c3:6a:38:63:ce:f7:0f:80:
d6:42:93:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:44:19 2025 by rpki-client