Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/MBSq_bcC1JDY-9zeajf82r5amUc.roa
File: MBSq_bcC1JDY-9zeajf82r5amUc.roa (raw, json)
Hash identifier: Pu+pL4jlN1fnqCSLuyhxC5smdHVpoHhkeXV3zg3L3+s=
Subject key identifier: 30:14:AA:FD:B7:02:D4:90:D8:FB:DC:DE:6A:37:FC:DA:BE:5A:99:47
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 16A1
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/MBSq_bcC1JDY-9zeajf82r5amUc.roa
Signing time: Sun 07 Feb 2021 12:13:17 +0000
ROA not before: Sun 07 Feb 2021 12:13:17 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 180.177.168.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5793 (0x16a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:13:17 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3014AAFDB702D490D8FBDCDE6A37FCDABE5A9947
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:6a:76:85:71:49:95:86:ef:2c:2c:a3:0e:37:
67:48:b7:fb:ce:f1:cc:d7:97:92:20:9a:0f:23:01:
ff:48:68:60:4a:69:4f:77:0a:51:4e:4a:37:41:21:
28:cd:20:9c:04:49:da:4d:c7:0f:cb:a5:67:5c:0f:
ce:bd:22:e4:73:b3:7c:1b:64:d4:d3:00:06:c1:34:
07:53:e0:54:55:e5:f6:1b:c4:b2:79:68:a3:bf:3a:
fe:65:af:52:1e:80:49:3a:90:a6:86:71:5d:9a:67:
2f:af:4a:f7:b1:1a:a9:62:91:d6:08:80:8b:61:49:
14:35:3d:86:41:e9:0f:3d:d4:0a:31:2f:00:11:f5:
95:15:a9:7a:e3:a8:f5:97:ba:fe:1b:6b:11:5a:cb:
d9:57:4b:67:39:f1:77:5e:ee:8f:6c:4d:86:30:a1:
4e:d6:e8:8d:00:7a:99:36:1a:fe:86:f9:39:e7:9c:
b0:db:1b:2d:3b:7d:db:8e:b7:b6:a7:1c:f2:b6:1f:
d3:04:4c:3b:68:02:61:19:21:96:c3:2c:e0:fb:8d:
e6:e7:e8:f7:be:9b:17:59:f6:bb:a0:24:2e:4c:db:
68:d3:62:ce:ee:02:aa:5a:0f:13:bf:23:5a:24:41:
1b:d6:55:ac:df:63:2b:c3:e7:0d:05:cb:11:ff:0f:
77:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:14:AA:FD:B7:02:D4:90:D8:FB:DC:DE:6A:37:FC:DA:BE:5A:99:47
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/MBSq_bcC1JDY-9zeajf82r5amUc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.177.168.0/22
Signature Algorithm: sha256WithRSAEncryption
1f:17:83:24:47:52:8c:f6:f8:1c:6a:7c:61:f0:f2:e9:0e:64:
23:e5:f6:db:50:43:99:61:f5:65:7f:2d:3b:29:6b:e8:dc:b8:
6b:fe:ee:ea:51:39:70:c7:05:db:b2:c1:89:9f:fb:8f:01:d7:
99:14:3a:88:e6:27:8b:85:b1:25:62:f9:4d:24:95:2f:8a:63:
e5:91:fd:33:e8:75:fc:f4:af:0f:fd:63:2a:45:e5:62:e6:3b:
6b:69:0c:02:4e:8c:eb:f1:dc:7a:39:74:c5:5f:9a:7f:53:a4:
38:6e:bb:9d:40:89:23:50:a9:3c:07:52:ff:9f:14:88:9d:35:
a4:d5:b9:06:43:8c:4c:9e:9e:11:70:61:47:09:e4:66:ba:61:
82:f8:44:f6:44:bb:85:5e:9c:74:59:f6:a0:3f:b3:9e:aa:49:
de:a1:b7:12:52:13:f8:2c:a0:03:85:43:4f:c1:8f:ff:6a:67:
2f:80:d9:64:c2:ce:03:e1:ce:ea:a4:fd:31:6c:97:9f:a7:92:
ba:f7:e1:04:8d:8d:bd:ae:33:6c:55:ee:a9:d3:2d:cf:53:c8:
8d:21:c3:13:ed:9d:a5:9c:87:a4:5a:01:9d:50:0e:c7:25:43:
ed:03:0a:1f:62:f3:b3:c7:f2:7d:83:6c:6f:d8:c8:9b:07:6c:
07:92:80:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:38:30 2025 by rpki-client