Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/BQ7v3Zyy_k669I-6lzYrjmGrC10.roa
File: BQ7v3Zyy_k669I-6lzYrjmGrC10.roa (raw, json)
Hash identifier: kCwwcHWAoujrD1NrP3ae4QjxKeWwt/Ci4wmIke8cRi0=
Subject key identifier: 05:0E:EF:DD:9C:B2:FE:4E:BA:F4:8F:BA:97:36:2B:8E:61:AB:0B:5D
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2B1F
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/BQ7v3Zyy_k669I-6lzYrjmGrC10.roa
Signing time: Fri 01 Sep 2023 10:09:52 +0000
ROA not before: Fri 01 Sep 2023 10:09:52 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 180.176.152.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11039 (0x2b1f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:09:52 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=050EEFDD9CB2FE4EBAF48FBA97362B8E61AB0B5D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:e0:bc:49:2d:5e:e8:1b:2d:ba:39:fd:ed:36:
e1:0a:c0:74:62:2a:06:fb:a7:c9:ef:cb:ac:9e:c3:
3f:81:e1:60:6c:a2:32:61:e8:bf:a5:40:6d:bf:ae:
4c:00:d4:f6:09:fd:d8:6b:cd:04:d7:54:7b:eb:28:
9b:fd:ee:6c:1f:a2:a4:47:25:ee:c8:a7:33:ed:94:
49:63:21:1f:b9:03:8b:e4:53:6d:ec:61:43:97:0d:
a4:57:8f:de:5e:f3:c3:44:d3:d9:a9:16:7f:47:95:
5d:76:bb:df:49:ad:ed:43:3c:3e:a6:5c:f8:db:74:
ad:d7:f1:5d:bd:68:80:73:b7:f6:9e:f5:a9:84:8f:
da:34:cc:42:ba:2c:dd:22:94:5c:15:43:57:8a:1c:
8e:05:fd:72:97:86:7a:68:31:87:4f:66:5f:d9:14:
e6:b3:d7:7c:3b:03:be:6b:ad:f0:b8:44:8e:47:6b:
be:1b:82:06:ac:27:5f:7a:17:dd:e1:09:c8:b2:a3:
b4:14:7f:77:42:ca:ff:b5:24:43:d5:c8:1f:e4:c3:
c5:3d:d9:a1:25:6e:ee:13:b2:60:ee:8f:a5:26:b9:
58:fe:d5:3b:88:85:25:b1:5c:de:0f:1e:94:2f:6f:
70:bc:be:95:13:d9:b3:16:1b:64:46:cc:0e:d2:5f:
e9:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:0E:EF:DD:9C:B2:FE:4E:BA:F4:8F:BA:97:36:2B:8E:61:AB:0B:5D
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/BQ7v3Zyy_k669I-6lzYrjmGrC10.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.176.152.0/22
Signature Algorithm: sha256WithRSAEncryption
12:b0:c1:b2:f5:4e:8d:07:d3:2b:ce:7b:41:5f:86:2d:7f:48:
95:ea:49:e9:c7:13:f7:8a:f9:46:9e:2f:56:f9:fe:e7:63:8d:
a5:5f:01:bb:08:f8:2d:44:51:c8:50:6a:6a:68:1f:8a:46:5d:
93:7e:8f:3f:94:af:27:f2:95:04:d0:db:c3:54:87:bb:50:1a:
27:2e:54:94:9a:bf:9d:bb:59:42:e2:5b:2c:3d:10:a5:fe:fa:
a9:0a:61:ed:12:5c:64:66:a8:85:42:1e:5a:53:b6:23:b3:98:
df:88:08:e6:7e:4d:45:59:e3:6a:98:20:18:d0:1e:91:54:bd:
b3:9e:2b:8f:be:4e:89:dc:b4:3d:06:11:71:0a:f9:75:95:17:
7b:30:ac:5c:74:dd:3c:bf:95:5f:d2:26:6a:28:16:75:bf:87:
c8:c7:fc:ec:07:f5:88:9f:8f:4f:28:86:c1:69:c9:b6:b5:11:
2e:91:a2:05:fe:1f:26:91:76:f0:75:cb:0a:7c:41:1b:f2:a0:
53:95:05:21:d1:c0:53:c4:62:18:92:c5:18:6d:3a:22:d5:71:
14:3f:f7:b8:b2:70:01:eb:2b:8f:ad:6b:ab:46:a4:90:71:9b:
33:92:87:2e:26:65:11:7c:7d:d7:48:97:4e:17:5d:5f:b3:47:
10:78:a0:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:14:08 2025 by rpki-client