Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/FH3gMevRtDwgX7_INe8anb2-0g8.roa
File: FH3gMevRtDwgX7_INe8anb2-0g8.roa (raw, json)
Hash identifier: dLd6J8E3n7glP1Ul+gMcxua5Rk/ZoVxJvXq1Loqew4I=
Subject key identifier: 14:7D:E0:31:EB:D1:B4:3C:20:5F:BF:C8:35:EF:1A:9D:BD:BE:D2:0F
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 15D7
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/FH3gMevRtDwgX7_INe8anb2-0g8.roa
Signing time: Sun 07 Feb 2021 12:06:49 +0000
ROA not before: Sun 07 Feb 2021 12:06:49 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 180.176.144.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5591 (0x15d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:06:49 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=147DE031EBD1B43C205FBFC835EF1A9DBDBED20F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:a6:49:12:9c:bb:31:5d:2f:99:82:b5:4f:b4:
44:3b:67:e6:7f:fa:f0:2b:74:b4:45:90:d7:ac:d3:
08:9a:49:1d:5b:23:16:9e:e3:9f:5d:19:e1:36:b0:
48:6f:1f:74:3c:13:ee:4a:50:4b:07:b5:5f:b4:c5:
b0:14:22:a6:18:a9:8a:a0:a9:7d:24:cd:be:ae:c5:
d2:a3:ad:1d:38:ec:cc:7b:a6:a7:96:e7:bb:de:fb:
81:70:43:6e:4a:db:1d:13:ec:91:fe:f5:a4:c3:77:
54:7a:19:c9:a4:6d:43:1d:c1:f4:6b:e2:b5:16:72:
9b:4c:88:d9:00:eb:35:54:0f:c7:13:56:2f:fc:29:
9e:19:7e:3e:27:46:11:4f:35:43:c9:de:31:e7:3e:
e0:b8:28:35:cc:13:6d:55:20:9e:51:b8:7e:6e:7f:
b7:69:03:77:38:2f:a9:f4:87:c1:9f:eb:b8:06:93:
11:56:0c:b9:ac:46:8c:e4:ec:41:95:4c:12:20:fc:
d1:c1:c3:22:0d:49:2d:52:f4:81:e5:10:76:70:19:
2f:fc:ae:5a:5e:f0:e6:b6:dd:71:6a:5d:7e:7c:43:
f5:dc:2c:7a:cd:df:fc:40:05:4e:7e:54:7f:fd:2c:
4b:e8:e0:7e:2a:ab:b7:3c:fe:ea:6d:02:67:10:e2:
4a:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:7D:E0:31:EB:D1:B4:3C:20:5F:BF:C8:35:EF:1A:9D:BD:BE:D2:0F
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/FH3gMevRtDwgX7_INe8anb2-0g8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.176.144.0/22
Signature Algorithm: sha256WithRSAEncryption
1e:f1:cd:e1:65:a0:b6:30:e6:e5:24:dd:ba:6c:54:d9:4d:7d:
81:c5:30:24:70:43:3a:83:60:d3:10:e0:6b:2e:24:a3:8e:88:
39:0f:16:f6:54:a6:4c:6d:01:32:f2:32:e1:d9:8e:ef:08:a2:
0b:5a:51:f3:c8:1b:67:c3:7e:97:e6:1c:0f:23:59:5f:d5:be:
35:eb:4b:13:08:7c:a3:17:db:97:52:66:ed:5c:66:d5:5d:ca:
fb:99:f4:45:d3:48:7d:79:bf:d0:58:af:c0:14:99:b7:b5:cb:
23:31:90:03:97:96:58:38:07:35:32:89:09:cb:b9:d4:41:36:
ba:3c:4d:87:29:34:1f:9d:08:60:36:86:fc:2d:6f:3c:bd:5d:
21:8b:1a:45:94:0d:2a:be:23:64:65:0e:8f:35:19:ba:81:c8:
49:0c:b9:e2:72:8a:36:91:e8:36:c4:72:83:99:12:4b:a3:c9:
a1:77:f9:d3:94:80:c5:a8:75:5b:96:37:a2:15:16:4e:03:43:
5c:72:b5:a4:c3:97:a0:1f:b0:22:7e:f5:df:63:5c:70:34:4f:
b8:01:8c:8f:a5:4b:85:9d:90:c3:85:b4:17:79:1f:21:59:73:
0b:40:a8:1b:a0:6e:23:6d:38:b6:8b:18:18:5d:01:26:3a:9f:
fd:ad:94:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:34:02 2025 by rpki-client