Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/LxT-rjGUPb5-WlQNJ5THh0GC0Wo.roa
File: LxT-rjGUPb5-WlQNJ5THh0GC0Wo.roa (raw, json)
Hash identifier: L+7xV3V2+84xEXjz5tkyeUvkJa9HPwOS7QWk6YDZJXQ=
Subject key identifier: 2F:14:FE:AE:31:94:3D:BE:7E:5A:54:0D:27:94:C7:87:41:82:D1:6A
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2A07
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/LxT-rjGUPb5-WlQNJ5THh0GC0Wo.roa
Signing time: Fri 01 Sep 2023 10:07:24 +0000
ROA not before: Fri 01 Sep 2023 10:07:24 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9924
IP address blocks: 180.176.222.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10759 (0x2a07)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:07:24 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=2F14FEAE31943DBE7E5A540D2794C7874182D16A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:47:75:7c:ac:4c:46:5b:03:43:89:eb:4a:29:
49:6b:99:92:22:71:2b:b2:3a:c3:4a:d8:48:16:11:
32:90:5b:46:a6:f7:20:bb:38:ea:fb:62:d8:3f:59:
08:0c:c9:81:48:be:09:00:2c:53:66:8e:62:08:b8:
27:c3:ae:08:ed:42:0c:c6:c2:eb:ab:d3:e4:7a:d2:
7c:e7:42:6e:df:cc:b8:13:94:bf:0e:94:29:84:27:
a1:b2:b6:a2:f3:16:86:73:8a:89:fd:ad:8c:08:a2:
0a:46:31:e0:0f:08:ba:7e:a6:da:1b:46:1f:b9:71:
61:d6:95:c1:ef:ee:14:fc:fa:3d:c2:f7:7c:6f:b2:
40:53:59:42:f8:d1:80:7c:f7:c4:3c:bf:fe:78:66:
74:70:08:9a:39:13:b1:a5:87:30:c2:c9:96:9c:20:
07:38:7d:bd:4a:bf:2a:7d:48:74:a7:67:fb:c5:ac:
56:01:8d:32:0c:4e:a5:5a:77:d7:b7:92:32:ca:2a:
a8:57:ee:98:7b:81:ea:32:3f:db:b2:db:74:e5:27:
4d:2d:d0:f1:ff:00:ec:be:c7:5f:dd:6b:db:8b:ae:
30:f5:c0:01:ca:9c:ef:93:7c:6b:59:44:4e:71:a7:
8b:21:6b:a2:c6:2b:76:67:f8:db:2c:65:e9:26:db:
87:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:14:FE:AE:31:94:3D:BE:7E:5A:54:0D:27:94:C7:87:41:82:D1:6A
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/LxT-rjGUPb5-WlQNJ5THh0GC0Wo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.176.222.0/24
Signature Algorithm: sha256WithRSAEncryption
40:a1:20:07:4a:a1:87:9b:ba:15:13:89:c4:f2:96:1b:af:4e:
a8:f9:bb:a1:4b:28:04:de:6d:7c:15:d1:3d:1b:8f:b3:b2:fa:
bb:5a:1e:b5:c3:03:d4:84:4f:36:a4:13:8b:a9:f6:fc:63:a3:
c2:b3:be:33:16:ab:35:82:e2:b2:dd:e9:ca:06:dd:a2:35:e8:
04:26:12:72:84:d1:ba:3c:72:8a:b8:2c:c0:ee:31:6e:dc:e0:
b6:0e:73:43:f1:19:38:5c:c9:4d:d8:3e:49:66:4c:1b:1e:5b:
9a:31:df:3d:0c:ad:37:8d:10:d7:50:6b:d1:70:b8:4f:58:b7:
c2:cd:e8:49:7d:3b:b0:36:8c:40:ed:71:00:f2:60:98:9a:95:
e5:f7:57:1f:e3:e1:9c:8c:6c:56:69:4b:cb:a8:7d:85:2a:49:
aa:e9:6e:c3:c4:84:1f:76:5c:b5:52:08:8a:35:5e:40:76:87:
ef:66:51:66:26:a0:1b:66:8d:ca:b1:7b:22:80:c8:33:12:77:
8c:3d:cb:a4:b3:fe:ce:76:1a:c6:07:f6:e0:29:75:3c:9f:58:
cb:33:dc:64:ac:9d:54:2b:f1:78:6a:42:8a:8a:b1:ae:29:19:
13:85:9c:77:d0:4a:71:f4:e2:ef:c4:1f:88:12:61:ec:16:89:
69:3e:a6:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:21:06 2025 by rpki-client