Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5Yy7ZWZqkXK7ZrJut86fTZUcr2k.roa
File: 5Yy7ZWZqkXK7ZrJut86fTZUcr2k.roa (raw, json)
Hash identifier: Y9hd7S93PnKvEPQeJSbfyfnsMNpO7gomBep4gCcq2/w=
Subject key identifier: E5:8C:BB:65:66:6A:91:72:BB:66:B2:6E:B7:CE:9F:4D:95:1C:AF:69
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 211D
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5Yy7ZWZqkXK7ZrJut86fTZUcr2k.roa
Signing time: Fri 25 Nov 2022 04:39:31 +0000
ROA not before: Fri 25 Nov 2022 04:39:31 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 180.177.104.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8477 (0x211d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:39:31 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E58CBB65666A9172BB66B26EB7CE9F4D951CAF69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:0c:e3:4b:37:7b:4a:f5:20:3d:ba:a4:80:c0:
81:67:fc:b6:3e:4e:8c:56:57:79:db:7c:0e:55:70:
8e:e0:5a:29:9e:c9:16:65:a6:8d:ff:94:d6:26:42:
ef:17:be:02:81:93:e5:55:bb:f5:b4:71:fb:d3:ce:
b4:d4:16:12:51:0e:97:af:08:3f:94:8a:f9:aa:b7:
28:bc:0c:7b:3d:06:bc:a5:fb:75:49:3e:cd:26:d3:
7a:46:60:a0:5e:d3:f9:ba:fc:fd:62:95:40:02:9b:
49:1f:b5:5a:48:86:fa:25:c9:23:80:fd:90:38:18:
0b:64:82:db:84:52:7c:0c:a5:04:35:a1:d2:95:41:
e7:a4:b2:e2:2d:13:ba:23:47:b3:a3:4f:34:f6:f4:
df:4a:2e:bb:31:da:53:d0:ad:42:71:01:c7:58:d9:
e0:d4:1a:1e:b5:d2:bc:21:4a:f7:a1:a8:98:d5:82:
4c:a3:b4:f1:58:29:fe:9d:f3:64:a7:8f:ea:9a:24:
35:23:ff:06:db:e4:77:18:11:ef:4d:0c:87:71:7e:
ab:c0:80:4b:f8:2f:0b:c4:cb:44:af:99:e5:2b:09:
1f:18:18:af:5d:36:7b:80:6f:c4:d6:a9:2b:72:79:
53:b2:e6:e1:2b:44:b3:51:4d:c2:ab:6e:66:c2:78:
02:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:8C:BB:65:66:6A:91:72:BB:66:B2:6E:B7:CE:9F:4D:95:1C:AF:69
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5Yy7ZWZqkXK7ZrJut86fTZUcr2k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.177.104.0/22
Signature Algorithm: sha256WithRSAEncryption
37:15:13:68:57:52:3c:e6:f9:84:f3:a9:cf:90:76:d2:5e:ac:
d6:e4:5d:61:90:87:01:ad:22:43:4c:4d:42:20:1e:5e:9e:c0:
9b:b3:74:61:1c:d9:b9:37:44:57:ab:d6:21:21:0b:3d:70:ad:
d3:72:7e:37:e4:e1:9e:75:cd:5c:9b:57:5b:2d:5d:cd:6c:f3:
92:49:64:69:32:7b:8c:2e:82:bf:a9:08:c5:b9:e8:0a:a1:8d:
c4:44:52:27:60:69:19:37:e3:0e:26:86:05:06:31:ff:0a:1a:
ab:a5:ed:d8:6a:53:d8:3b:57:dc:6f:5a:3a:a8:74:00:95:eb:
01:9d:dc:f4:50:bf:c0:3a:af:82:e3:4e:7c:1c:fe:a2:7e:bf:
b1:85:4c:6a:f1:43:05:2b:cd:3f:7e:58:75:68:89:f9:d1:9b:
5d:f4:92:3c:de:59:e4:91:71:86:63:6f:89:ed:5f:d7:e7:02:
ac:28:f6:96:0b:b9:63:46:34:0c:fa:59:34:bb:53:8f:2d:4c:
68:fd:5a:27:24:72:89:dd:cd:a5:f5:11:1c:11:a3:80:38:35:
de:87:a2:7d:c1:9f:62:56:b3:81:b8:2b:dc:c2:12:fd:20:a6:
5f:89:c4:53:fd:ef:1b:83:19:44:61:04:b8:8e:a9:fe:2f:f2:
4d:1f:65:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:23:05 2025 by rpki-client