Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Rkj6NsjPkYwl_XtDDPSMgAWSM5Q.roa
File: Rkj6NsjPkYwl_XtDDPSMgAWSM5Q.roa (raw, json)
Hash identifier: uRY1AiHRMAlPktcRVGKoPHjFGZahsOCNjIK9a8DXUZQ=
Subject key identifier: 46:48:FA:36:C8:CF:91:8C:25:FD:7B:43:0C:F4:8C:80:05:92:33:94
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 294B
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Rkj6NsjPkYwl_XtDDPSMgAWSM5Q.roa
Signing time: Fri 01 Sep 2023 10:06:21 +0000
ROA not before: Fri 01 Sep 2023 10:06:21 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 180.177.240.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10571 (0x294b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:06:21 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=4648FA36C8CF918C25FD7B430CF48C8005923394
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:95:e2:eb:02:e7:d2:2b:36:64:c9:47:bc:c7:
0c:51:68:de:8f:c0:89:e2:cb:a8:cb:1a:20:03:49:
cf:40:49:30:ae:e2:84:72:ce:33:80:15:9b:b3:eb:
b5:e3:cf:88:10:2b:a6:d1:ed:a9:6e:26:77:85:4b:
8e:20:32:af:19:ab:bc:e0:0d:e0:59:64:ee:a3:d2:
3c:ab:ba:e4:77:a1:fa:84:76:ea:75:47:1e:ae:2e:
1d:38:52:92:8b:3d:82:fe:25:be:59:aa:8e:d0:41:
37:6f:b6:7a:69:6f:79:ab:29:4d:26:d4:7a:d8:db:
95:42:9f:2e:63:c7:66:5c:bb:88:d3:67:8c:64:29:
31:0d:ab:53:e6:97:20:94:22:57:03:1b:71:7f:22:
a3:98:ba:13:bf:bd:a8:50:d6:d2:77:52:71:62:68:
74:e7:ec:42:8e:bc:f5:e6:2e:a2:72:a4:16:30:5e:
6b:66:11:2d:61:8f:47:b5:07:8f:d1:2e:48:43:07:
dd:39:86:8a:e2:09:d3:5e:97:29:d7:52:d5:1d:01:
97:75:1f:4b:70:d3:04:bc:1c:40:43:fd:e1:29:39:
e2:75:54:05:0e:30:44:df:d2:3c:5d:35:5b:e3:45:
d0:1f:1d:14:77:4b:4c:ca:93:4e:79:77:24:e6:a0:
4b:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:48:FA:36:C8:CF:91:8C:25:FD:7B:43:0C:F4:8C:80:05:92:33:94
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Rkj6NsjPkYwl_XtDDPSMgAWSM5Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.177.240.0/22
Signature Algorithm: sha256WithRSAEncryption
2d:07:15:9e:94:d0:fd:45:47:dc:78:ca:49:1d:7e:a2:56:6c:
87:5f:0e:00:97:d7:75:86:1b:8a:fd:bb:4a:cb:3c:6c:70:cf:
88:1f:fd:72:72:2f:ef:36:a2:8f:2a:bc:54:25:3a:08:ce:3d:
5f:a4:18:b1:cf:dd:92:2d:36:b9:85:67:ad:02:b5:d3:4a:13:
62:9f:45:29:2e:ed:ce:c1:40:12:05:43:49:bf:c3:de:49:9a:
27:e2:cb:9f:54:82:3c:bf:ca:1e:f4:12:c2:74:6a:51:9f:5e:
e5:7a:68:da:56:97:9f:2f:ca:7f:a8:a2:22:61:79:dd:e4:4f:
95:92:b9:5a:dd:44:eb:1b:01:88:44:24:07:63:a1:6f:a3:03:
4b:25:36:97:01:d2:c9:4e:8a:1a:64:92:8e:f5:7c:9a:a6:7b:
1d:ef:51:85:00:7b:8b:b6:fe:9a:8c:29:1e:10:b8:18:2e:52:
30:34:c3:3e:6e:cd:5c:2f:3c:3b:1b:5f:fc:6f:e9:ed:7d:58:
24:24:6c:da:92:ba:e5:95:a2:9e:28:1a:2c:35:a4:23:5f:8e:
64:91:af:62:29:a7:d1:3e:a7:fa:fb:8b:19:8d:7b:5d:55:05:
c2:94:13:23:53:5b:70:f1:27:89:ac:bc:17:eb:8d:13:a4:4f:
9b:36:da:92
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICKUswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx
MDA2MjFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDQ2NDhGQTM2QzhDRjkx
OEMyNUZEN0I0MzBDRjQ4QzgwMDU5MjMzOTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDLleLrAufSKzZkyUe8xwxRaN6PwIniy6jLGiADSc9ASTCu4oRy
zjOAFZuz67Xjz4gQK6bR7aluJneFS44gMq8Zq7zgDeBZZO6j0jyruuR3ofqEdup1
Rx6uLh04UpKLPYL+Jb5Zqo7QQTdvtnppb3mrKU0m1HrY25VCny5jx2Zcu4jTZ4xk
KTENq1PmlyCUIlcDG3F/IqOYuhO/vahQ1tJ3UnFiaHTn7EKOvPXmLqJypBYwXmtm
ES1hj0e1B4/RLkhDB905horiCdNelynXUtUdAZd1H0tw0wS8HEBD/eEpOeJ1VAUO
METf0jxdNVvjRdAfHRR3S0zKk055dyTmoEvLAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQURkj6NsjPkYwl/XtDDPSMgAWSM5QwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1JrajZOc2pQa1l3bF9YdERE
UFNNZ0FXU001US5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAK0
sfAwDQYJKoZIhvcNAQELBQADggEBAC0HFZ6U0P1FR9x4ykkdfqJWbIdfDgCX13WG
G4r9u0rLPGxwz4gf/XJyL+82oo8qvFQlOgjOPV+kGLHP3ZItNrmFZ60CtdNKE2Kf
RSku7c7BQBIFQ0m/w95Jmifiy59Ugjy/yh70EsJ0alGfXuV6aNpWl58vyn+ooiJh
ed3kT5WSuVrdROsbAYhEJAdjoW+jA0slNpcB0slOihpkko71fJqmex3vUYUAe4u2
/pqMKR4QuBguUjA0wz5uzVwvPDsbX/xv6e19WCQkbNqSuuWVop4oGiw1pCNfjmSR
r2Ipp9E+p/r7ixmNe11VBcKUEyNTW3DxJ4msvBfrjROkT5s22pI=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:35:44 2025 by rpki-client