Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/BshmgWsWSB2BNpMvNNZ6me5dLkg.roa
File: BshmgWsWSB2BNpMvNNZ6me5dLkg.roa (raw, json)
Hash identifier: ponZdDf+OC7sLmxKWT4CorZY1QrD3UFpSD6vTn+I5eM=
Subject key identifier: 06:C8:66:81:6B:16:48:1D:81:36:93:2F:34:D6:7A:99:EE:5D:2E:48
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2AEC
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/BshmgWsWSB2BNpMvNNZ6me5dLkg.roa
Signing time: Fri 01 Sep 2023 10:08:27 +0000
ROA not before: Fri 01 Sep 2023 10:08:27 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 180.176.104.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10988 (0x2aec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:08:27 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=06C866816B16481D8136932F34D67A99EE5D2E48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:1b:9b:8f:c6:f6:c0:10:fe:51:ce:1c:76:3a:
95:2c:dc:ca:e3:18:ac:15:fb:0e:77:1c:d2:06:80:
67:df:1c:4b:7d:80:2f:db:0b:21:ea:b3:d5:84:d5:
2d:4e:09:7f:15:3c:9d:aa:a9:91:af:10:08:43:18:
9d:ff:48:30:85:1b:d4:6f:53:02:7d:87:c2:2e:81:
9c:a9:e8:14:29:b3:c8:24:25:93:45:01:ea:7e:ec:
56:a8:dc:a6:69:fa:a6:7f:b2:4a:25:99:13:7e:ed:
ec:3d:5c:82:43:ca:f8:f0:c7:16:eb:81:86:95:31:
2a:e7:d6:54:ab:7b:30:1b:cb:84:13:0d:01:f4:d9:
dc:a5:93:d5:6f:2b:79:5a:87:b4:c2:56:ed:61:88:
28:04:b0:78:21:5a:3d:de:ad:34:68:33:74:5d:d7:
9d:ab:2e:83:a7:27:89:f9:6b:58:87:21:fc:61:29:
b2:6a:3d:a8:19:94:16:a3:bd:d4:fc:fe:92:85:e0:
bd:26:40:ce:bc:15:b0:54:8b:10:2f:a2:99:70:fe:
99:44:9e:80:5f:fd:2c:8f:33:db:58:d3:81:f3:c6:
34:bb:56:35:4e:f7:03:2a:63:ad:89:93:4b:16:66:
3e:45:d0:07:15:a8:07:fd:36:45:ae:0a:b7:51:7a:
63:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:C8:66:81:6B:16:48:1D:81:36:93:2F:34:D6:7A:99:EE:5D:2E:48
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/BshmgWsWSB2BNpMvNNZ6me5dLkg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.176.104.0/21
Signature Algorithm: sha256WithRSAEncryption
50:d4:db:af:4a:18:16:c2:25:13:0a:c4:83:4d:16:a8:c0:3d:
f8:0e:73:df:69:89:4e:73:14:06:b0:21:d9:49:f6:11:da:6d:
cc:fa:61:d2:ea:8a:ca:83:21:32:9e:34:cc:30:28:bc:eb:60:
d3:e1:05:c9:be:00:d3:8b:2e:7f:6d:0e:7c:72:b9:fe:d6:1d:
c2:7b:ec:ee:c5:ae:32:77:d7:29:6b:7a:f6:55:d1:56:6c:2c:
13:d6:b7:77:9c:09:1a:1a:16:7c:1c:50:60:b9:63:dc:d6:45:
03:50:77:15:7f:5e:f1:39:98:b6:54:11:83:bc:53:aa:68:eb:
06:d3:d6:55:d4:86:a9:cf:a4:c7:cd:b4:32:6c:ed:10:44:fa:
e0:49:b8:80:20:ad:17:3e:27:98:45:3e:61:38:90:d8:f6:75:
a5:f3:b3:b2:c4:c5:38:c6:30:32:3d:a3:fd:9a:ad:f4:cf:5e:
73:16:25:c9:a3:e1:23:68:90:e4:ff:01:91:18:32:9e:18:e0:
c3:7e:15:62:86:e4:4a:2b:a6:6d:b2:35:34:85:60:ff:f8:5a:
e6:07:cc:35:5c:c9:c7:30:6d:9c:cc:c2:00:0c:0b:d1:25:f2:
ff:af:18:d6:45:68:56:25:cb:df:5a:de:da:2c:2c:13:f4:f1:
b5:e8:d7:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:34:06 2025 by rpki-client