Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NaUd6D0I4AibXDkThKGESawg3iQ.roa
File: NaUd6D0I4AibXDkThKGESawg3iQ.roa (raw, json)
Hash identifier: dHSP0W4IM7LZQX6JzTTGJzPhxg5gHmYdWT5w+hgRMMg=
Subject key identifier: 35:A5:1D:E8:3D:08:E0:08:9B:5C:39:13:84:A1:84:49:AC:20:DE:24
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 28CA
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NaUd6D0I4AibXDkThKGESawg3iQ.roa
Signing time: Fri 01 Sep 2023 10:05:45 +0000
ROA not before: Fri 01 Sep 2023 10:05:45 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 180.176.23.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10442 (0x28ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:05:45 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=35A51DE83D08E0089B5C391384A18449AC20DE24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:ea:67:6b:cc:a2:d1:e5:24:5b:65:fa:3f:b6:
91:67:db:70:ee:af:62:85:be:03:1a:37:02:77:80:
b5:4f:eb:f5:db:10:2b:ec:e1:ad:86:4f:41:70:fa:
b2:40:31:2a:b7:7b:ce:5e:62:85:b4:8b:e0:3b:12:
f5:38:01:0a:51:35:b5:16:14:19:d2:ba:0e:8b:64:
fe:c0:70:37:1e:34:7e:e0:ed:9d:7d:61:e4:c1:3f:
ef:4f:d4:66:80:41:d8:06:ba:cf:bb:03:97:49:82:
cc:98:fc:97:94:56:be:dd:ff:49:2f:f4:b6:59:a2:
db:00:86:44:d6:53:f6:dd:d2:5a:7c:2d:41:d6:ca:
99:bd:31:3e:2f:6f:08:52:5e:b9:b8:8c:08:ad:bd:
81:ec:d6:ec:de:1c:d6:ec:ea:75:bc:14:60:1a:01:
2c:a7:40:dc:2f:91:2e:16:4d:6f:b4:54:fb:5d:a4:
57:ab:c7:47:f0:25:43:be:a4:c4:de:3e:c6:68:dc:
df:93:eb:3e:00:77:67:9a:8b:46:1b:b4:2c:33:b2:
87:c6:27:4c:33:55:09:42:98:89:88:9d:3d:c7:d0:
24:d2:40:44:cd:6b:ae:13:80:b7:dd:dd:6c:79:26:
27:46:45:4d:aa:e8:73:6d:60:2b:78:12:83:23:5b:
96:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:A5:1D:E8:3D:08:E0:08:9B:5C:39:13:84:A1:84:49:AC:20:DE:24
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NaUd6D0I4AibXDkThKGESawg3iQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.176.23.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:67:f8:ae:3e:ea:39:d5:0e:31:92:5e:58:af:8d:dd:15:13:
f4:6a:8b:06:d7:b2:a9:d3:19:11:c2:11:0a:01:06:b3:bc:37:
97:04:07:89:38:1c:b7:e2:80:db:7c:57:85:ec:c6:e6:f3:55:
cd:02:9a:c7:44:8d:9f:fe:e8:40:62:7b:05:d8:a0:18:38:0e:
a7:59:16:26:f9:d4:38:21:27:e5:8a:06:ce:b8:de:96:ee:ee:
6b:47:4b:7b:e0:6a:e2:48:b2:8c:fe:df:72:b2:84:0b:33:41:
e1:3b:32:6c:82:51:34:df:d2:47:c3:ae:6b:ac:24:da:59:69:
35:94:27:1d:c0:39:2f:3e:10:77:a7:ea:ed:f6:07:c6:8d:24:
c1:9d:e8:bd:f1:81:53:e0:97:c6:2c:7b:aa:e4:1b:e2:95:47:
0a:6f:f1:94:ec:d6:80:14:91:a7:c2:15:0f:83:dd:6a:0f:eb:
f5:6a:29:22:da:d8:7c:70:78:2f:be:80:7f:0b:65:82:8b:02:
2c:70:af:f6:88:d9:62:db:77:02:7f:16:f4:ea:62:fe:79:c4:
b3:1a:ac:fc:8f:3f:e3:52:d3:ec:d7:d4:27:4c:b7:14:dd:87:
ea:41:c6:40:e4:a7:ea:8c:31:ec:61:e0:a2:1c:3d:c7:37:d7:
b5:1a:67:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:25:46 2025 by rpki-client