Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/4-CaGSnOMsZbk9VbHydd8q1_8FA.roa
File: 4-CaGSnOMsZbk9VbHydd8q1_8FA.roa (raw, json)
Hash identifier: o3IgZiyDKDb+fX8L/iHKYyDiXx8qhrgJIh0I53Cvcbc=
Subject key identifier: E3:E0:9A:19:29:CE:32:C6:5B:93:D5:5B:1F:27:5D:F2:AD:7F:F0:50
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 228E
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/4-CaGSnOMsZbk9VbHydd8q1_8FA.roa
Signing time: Fri 25 Nov 2022 04:41:20 +0000
ROA not before: Fri 25 Nov 2022 04:41:20 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9924
IP address blocks: 180.176.220.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8846 (0x228e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:41:20 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E3E09A1929CE32C65B93D55B1F275DF2AD7FF050
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:ca:36:9d:bf:e9:f2:3b:98:b1:22:10:60:1d:
2c:c2:44:f8:e4:cb:9a:67:ad:28:a9:9e:80:36:b7:
27:73:67:ef:d4:c1:00:5f:81:d3:5a:d2:8c:e2:35:
29:5e:fd:e9:9c:42:a2:e4:8c:8f:1f:4c:18:b5:35:
59:68:7f:c7:b9:b5:f5:49:05:2d:9e:96:d7:70:38:
48:50:5f:43:73:04:d4:58:da:fb:f6:b0:c8:05:ec:
9c:ac:dd:e0:b2:c7:96:33:34:29:98:30:8d:ac:45:
44:3a:1b:c4:75:59:dc:ef:19:02:7d:5c:be:00:13:
c8:8a:28:35:a3:6f:75:53:95:c5:e1:ce:fa:b4:98:
7a:d9:01:ca:6b:99:11:4a:65:be:56:dd:e8:14:84:
34:b0:50:7a:86:26:e7:99:83:a6:43:b4:61:08:ed:
3a:5d:3e:98:e8:11:ff:46:15:77:f5:d9:4d:df:38:
05:a9:52:5f:96:34:b0:4a:2a:ed:3a:f3:c6:8d:cc:
c2:02:45:3b:b4:dc:85:c4:90:19:2f:46:1d:26:af:
0c:74:9f:62:76:a1:a3:53:07:d0:a6:5f:11:29:27:
fe:fa:4d:79:8e:a0:05:e5:58:b7:ad:10:9f:25:de:
1c:aa:c9:6d:c0:67:5b:1d:e7:67:5b:d6:65:bd:ba:
32:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:E0:9A:19:29:CE:32:C6:5B:93:D5:5B:1F:27:5D:F2:AD:7F:F0:50
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/4-CaGSnOMsZbk9VbHydd8q1_8FA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.176.220.0/23
Signature Algorithm: sha256WithRSAEncryption
b2:c6:e8:d5:92:55:86:b5:45:a6:6e:aa:16:8c:5b:f6:ea:41:
50:fa:c2:09:76:40:7e:a2:81:e8:38:b4:b9:45:c4:85:54:25:
76:e7:b2:ab:9e:27:00:7f:c1:62:52:86:f3:40:37:fd:98:de:
69:4e:f0:03:ab:4e:de:fc:e5:7a:5e:25:c8:17:c5:1a:68:87:
c1:b5:a5:42:cc:3d:c3:cc:2f:76:06:57:3e:20:91:32:a6:40:
b9:6e:e1:aa:fc:51:cb:64:6e:2f:5f:16:25:a4:ab:d4:8d:df:
6a:da:43:10:82:10:06:03:4f:13:e1:85:ee:9c:2a:c5:01:c2:
b6:d0:39:43:1a:b5:69:19:3e:da:1a:44:aa:8b:9b:36:9e:61:
fa:a9:72:0f:c3:7c:70:ad:e7:91:c1:3f:1e:8e:05:45:69:0a:
58:5a:6e:81:37:bd:1b:06:9e:b9:59:c3:b1:bb:41:d9:92:e3:
31:fe:83:00:db:ff:bf:c4:32:00:17:7b:41:aa:4f:13:1d:42:
90:1d:2a:fa:9c:e7:fe:76:c1:98:69:7c:63:d1:0a:d2:20:7b:
10:ab:fa:3f:c8:72:85:74:b4:95:4d:40:63:5a:ce:4d:7c:c9:
39:7d:5a:87:6d:a2:ac:33:74:29:77:ca:cf:4b:03:71:e9:cb:
17:b9:64:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:29:58 2025 by rpki-client