Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/8bN7SXql5EtReFRzMBb9hOZROzo.roa
File: 8bN7SXql5EtReFRzMBb9hOZROzo.roa (raw, json)
Hash identifier: UwLMjIBzzZzOPYJ0hUmTIxuL7Re9+/5t/alCZ3075ug=
Subject key identifier: F1:B3:7B:49:7A:A5:E4:4B:51:78:54:73:30:16:FD:84:E6:51:3B:3A
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2204
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/8bN7SXql5EtReFRzMBb9hOZROzo.roa
Signing time: Fri 25 Nov 2022 04:40:40 +0000
ROA not before: Fri 25 Nov 2022 04:40:40 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 180.177.248.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8708 (0x2204)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:40:40 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=F1B37B497AA5E44B517854733016FD84E6513B3A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:85:5f:28:dc:36:d8:45:25:0d:0c:c1:1e:30:
77:b7:5d:93:db:fa:81:0e:59:de:69:fb:a7:0a:d9:
c7:de:e2:7d:05:53:c8:ee:98:80:78:0a:6f:96:a2:
f3:4d:b6:04:47:d1:04:50:64:6a:40:cb:3c:e1:6b:
99:38:a2:39:56:b5:06:27:83:88:56:87:d1:2d:e5:
9c:f9:32:07:13:f5:8c:2e:93:df:c7:bd:38:ac:15:
56:c9:96:1d:87:0e:04:af:b8:eb:97:86:3e:d3:43:
2b:6b:bb:04:db:33:7b:c9:7a:6a:f5:7a:65:0f:00:
2d:93:f2:a8:c2:ad:51:b4:ed:4b:6e:27:df:dd:8f:
65:d3:9f:dc:b5:8e:19:6d:1c:a7:bf:0e:63:38:36:
b1:27:9f:bb:eb:e2:55:52:bb:5c:d8:58:2b:33:11:
57:20:dc:99:28:d3:6b:c2:c2:40:df:ea:cc:61:3f:
a7:a1:92:ec:6d:aa:7d:6c:5d:4d:8c:59:a0:c4:6b:
54:73:fa:2f:4f:29:fc:90:1b:c4:88:44:6b:8a:56:
4f:39:85:b2:b9:ce:a5:85:55:c6:b9:d0:9d:fe:13:
ce:a8:89:8e:8a:5b:a3:7f:07:7d:86:b0:4f:5e:f2:
46:76:12:71:f4:f6:ea:e2:bf:7c:e2:41:29:d5:2c:
47:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:B3:7B:49:7A:A5:E4:4B:51:78:54:73:30:16:FD:84:E6:51:3B:3A
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/8bN7SXql5EtReFRzMBb9hOZROzo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.177.248.0/22
Signature Algorithm: sha256WithRSAEncryption
41:0a:71:2c:35:91:fd:f0:8a:5e:6f:69:ef:79:3e:e2:11:43:
72:8c:aa:ed:fa:65:43:88:7a:cc:8f:7e:de:c6:62:b5:1c:59:
05:b2:44:d6:f7:a0:ac:4f:40:52:fa:58:6d:49:9d:52:27:fb:
8d:ce:4e:e9:1a:74:ad:b2:fa:b1:d4:59:f7:0e:e6:4f:2a:5b:
cd:0f:59:6a:a2:ba:39:01:b2:e8:a2:13:43:72:9f:9b:37:f6:
05:2e:25:0c:18:7c:32:58:5b:d2:18:75:30:f1:d7:f1:7c:0b:
42:6f:29:f4:c6:4d:9e:8c:4c:17:71:ec:83:c9:01:80:d2:03:
1e:11:a2:3b:c4:45:12:72:0e:ca:2d:28:e2:db:db:20:cc:da:
65:f2:39:1e:aa:17:bb:1d:e2:5f:dc:26:d7:16:31:b6:1e:8b:
22:88:30:5e:2c:dd:e8:23:94:7b:c9:82:0c:93:cd:d5:b2:9c:
a6:50:74:48:8e:b9:12:09:ac:4d:d5:9b:9f:43:b8:8d:5a:c1:
56:6a:e4:c7:48:cc:4b:a2:c1:c5:b1:79:6d:0f:59:ae:a3:bc:
2a:b7:ea:5f:3e:21:91:8e:1f:9d:f1:78:7d:da:89:38:a3:2e:
bf:6b:28:90:d6:d1:22:fc:36:7e:ab:40:74:14:5f:b3:ff:d4:
1a:c4:97:94
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICIgQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMjExMjUw
NDQwNDBaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEYxQjM3QjQ5N0FBNUU0
NEI1MTc4NTQ3MzMwMTZGRDg0RTY1MTNCM0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCihV8o3DbYRSUNDMEeMHe3XZPb+oEOWd5p+6cK2cfe4n0FU8ju
mIB4Cm+WovNNtgRH0QRQZGpAyzzha5k4ojlWtQYng4hWh9Et5Zz5MgcT9Ywuk9/H
vTisFVbJlh2HDgSvuOuXhj7TQytruwTbM3vJemr1emUPAC2T8qjCrVG07UtuJ9/d
j2XTn9y1jhltHKe/DmM4NrEnn7vr4lVSu1zYWCszEVcg3Jko02vCwkDf6sxhP6eh
kuxtqn1sXU2MWaDEa1Rz+i9PKfyQG8SIRGuKVk85hbK5zqWFVca50J3+E86oiY6K
W6N/B32GsE9e8kZ2EnH09uriv3ziQSnVLEcNAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQU8bN7SXql5EtReFRzMBb9hOZROzowHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzhiTjdTWHFsNUV0UmVGUnpN
QmI5aE9aUk96by5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAK0
sfgwDQYJKoZIhvcNAQELBQADggEBAEEKcSw1kf3wil5vae95PuIRQ3KMqu36ZUOI
esyPft7GYrUcWQWyRNb3oKxPQFL6WG1JnVIn+43OTukadK2y+rHUWfcO5k8qW80P
WWqiujkBsuiiE0Nyn5s39gUuJQwYfDJYW9IYdTDx1/F8C0JvKfTGTZ6MTBdx7IPJ
AYDSAx4RojvERRJyDsotKOLb2yDM2mXyOR6qF7sd4l/cJtcWMbYeiyKIMF4s3egj
lHvJggyTzdWynKZQdEiOuRIJrE3Vm59DuI1awVZq5MdIzEuiwcWxeW0PWa6jvCq3
6l8+IZGOH53xeH3aiTijLr9rKJDW0SL8Nn6rQHQUX7P/1BrEl5Q=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:48 2024 by rpki-client on console-fra.rpki-client.org