Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/LaD_O9N3xxJXSeUDAitCgbgi4_0.roa
File: LaD_O9N3xxJXSeUDAitCgbgi4_0.roa (raw, json)
Hash identifier: mPTtFeSmzr4bef24IkyAza5iUmHpDJwMdM8lytLLDLM=
Subject key identifier: 2D:A0:FF:3B:D3:77:C7:12:57:49:E5:03:02:2B:42:81:B8:22:E3:FD
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2A7C
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/LaD_O9N3xxJXSeUDAitCgbgi4_0.roa
Signing time: Fri 01 Sep 2023 10:07:57 +0000
ROA not before: Fri 01 Sep 2023 10:07:57 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 180.177.168.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10876 (0x2a7c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:07:57 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=2DA0FF3BD377C7125749E503022B4281B822E3FD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:9b:12:ff:62:5a:e6:0d:7f:f0:f9:65:45:47:
8e:a9:2d:73:89:47:cb:e9:84:e7:35:ae:d7:99:07:
7f:af:33:ef:c6:f5:82:e2:a8:76:81:c0:84:7e:0a:
7e:25:ac:43:32:12:4d:12:43:37:43:9a:c1:6b:96:
91:f8:e2:f4:60:a8:79:89:f8:3e:d9:cc:62:1f:cd:
2e:8f:31:31:18:e3:12:26:45:40:1b:0c:7b:dc:24:
04:cd:a9:57:ef:f5:9c:53:ae:48:c0:97:61:9c:33:
f8:17:60:93:6c:cf:d6:ad:13:3a:00:ed:76:ff:1b:
a4:0c:5e:14:49:ac:a6:59:b8:5b:c3:4b:7f:17:dd:
27:61:c5:d1:ad:05:1d:8a:72:4b:59:ba:34:c5:9c:
1f:5b:6c:7a:bf:96:86:98:e7:e1:07:9d:03:a1:77:
71:c4:72:05:65:f1:86:7a:99:81:96:ff:c7:40:06:
1d:08:60:bc:38:57:c5:cd:08:16:b9:bd:e8:21:3b:
87:8f:6c:00:c2:8a:5c:9a:20:7c:95:41:0a:51:81:
14:15:45:ff:b0:2b:57:03:a3:2a:4d:74:18:77:08:
1c:a6:3c:73:f3:a0:01:5e:d2:06:ec:27:96:e7:1d:
18:f9:44:8a:6d:b2:d9:f0:98:a0:5f:e5:04:d1:2b:
c8:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:A0:FF:3B:D3:77:C7:12:57:49:E5:03:02:2B:42:81:B8:22:E3:FD
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/LaD_O9N3xxJXSeUDAitCgbgi4_0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.177.168.0/21
Signature Algorithm: sha256WithRSAEncryption
1a:5f:1a:a0:21:77:b0:f8:6d:71:24:56:71:d3:c8:9e:fc:92:
a1:a2:80:b6:64:68:8a:b5:ac:87:e5:2b:0d:20:ad:09:3b:cd:
73:0b:40:d6:ee:6b:09:be:c1:3b:a2:a3:a7:7b:be:91:6b:84:
2b:0c:cb:a2:b0:e0:8b:f3:e4:1b:d1:09:84:d6:5b:b7:50:3a:
75:5b:40:be:cd:a4:b6:a3:cb:e2:b2:1e:d6:6c:00:90:08:19:
06:68:43:11:17:98:78:48:0b:88:48:d0:69:74:c9:4d:a2:4a:
fd:e5:9f:00:7e:18:e6:2b:98:95:52:7f:32:cc:41:16:af:34:
ff:d7:8c:e5:65:14:89:58:18:e1:fc:51:46:98:37:4f:13:f8:
0b:00:be:34:99:8b:5e:13:ea:49:b2:87:b0:de:aa:2c:5b:e4:
e8:e5:5a:e9:17:01:f5:4b:17:e0:20:2a:4a:38:34:94:a3:82:
c1:39:54:68:e7:e8:04:8e:0e:10:09:8c:53:fe:3b:d4:26:80:
36:ae:65:d5:e7:3b:37:2c:86:16:ed:d1:1c:e7:4a:fc:d9:1b:
2f:c1:c6:1b:f2:74:11:ef:11:b5:ad:29:f2:9e:9d:76:09:76:
fa:fb:6c:10:21:0a:58:59:6f:49:db:42:70:aa:0e:4d:85:ee:
58:8b:49:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:37:41 2025 by rpki-client