Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/TNwJmtqkHoYERN-O3JSBX2aHKgo.roa
File: TNwJmtqkHoYERN-O3JSBX2aHKgo.roa (raw, json)
Hash identifier: tzwzsktxfS4xupgB+bJ8h2klxNBH7lVxFP5G2RulT7Q=
Subject key identifier: 4C:DC:09:9A:DA:A4:1E:86:04:44:DF:8E:DC:94:81:5F:66:87:2A:0A
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2A25
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/TNwJmtqkHoYERN-O3JSBX2aHKgo.roa
Signing time: Fri 01 Sep 2023 10:07:32 +0000
ROA not before: Fri 01 Sep 2023 10:07:32 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 180.177.60.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10789 (0x2a25)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:07:32 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=4CDC099ADAA41E860444DF8EDC94815F66872A0A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:6d:7c:ce:f1:9f:40:ca:dd:95:26:b5:41:4b:
3b:31:18:fc:78:0c:75:9c:53:b2:5d:3e:41:76:71:
bf:f5:c0:d3:8f:bb:28:50:61:62:71:3d:4b:b2:3e:
93:5b:5f:1a:a3:9d:cd:7e:e6:f3:05:93:a0:dd:99:
fd:dc:63:8d:82:c8:2b:5b:0d:27:5f:b6:e2:82:43:
e5:c9:dd:9c:80:dc:bb:9b:6d:d4:bf:f5:21:49:89:
f7:48:9c:c0:fa:50:ac:35:3c:0d:cb:5d:44:ee:da:
b0:5b:b0:2e:dc:71:63:93:5e:02:99:6c:4c:e3:81:
2a:c6:5a:26:49:ab:52:5e:35:0e:45:20:e7:ae:2d:
bd:38:4d:a1:e2:7a:16:62:72:18:d4:97:05:98:27:
37:da:0e:92:76:62:f4:9d:17:08:69:46:42:02:ef:
96:0e:42:9b:0e:ba:32:17:92:7a:25:95:0e:1e:a0:
8a:42:a9:7a:19:cd:3e:74:d1:26:f1:55:7c:07:b1:
5a:42:38:eb:cf:7f:8a:4a:fa:c1:d1:b5:b1:77:34:
0b:eb:7e:78:9f:ac:0b:94:f5:01:5d:ca:51:a6:d9:
c2:c4:e1:21:8c:8e:a8:33:50:05:3d:ce:44:3a:72:
2d:a9:0d:46:c2:3d:2d:5b:3d:ed:34:12:a2:01:2c:
26:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:DC:09:9A:DA:A4:1E:86:04:44:DF:8E:DC:94:81:5F:66:87:2A:0A
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/TNwJmtqkHoYERN-O3JSBX2aHKgo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.177.60.0/22
Signature Algorithm: sha256WithRSAEncryption
61:38:8e:92:9b:37:55:16:fe:f4:b4:54:34:aa:4f:95:27:9a:
ce:85:d0:4a:41:54:76:19:f2:84:e6:d6:91:18:8a:35:06:f7:
2c:e9:b9:ab:b1:d1:a7:ca:46:db:c3:57:5b:f1:0f:6f:c6:c9:
eb:a6:f8:f6:4a:89:12:55:ac:33:e6:f3:2e:15:9e:12:d0:50:
03:c3:af:3f:4a:58:8e:ed:5e:ff:bd:82:80:d8:6b:f9:8e:e4:
d3:e5:c4:a5:5f:e4:ac:3a:1f:04:68:50:2d:d8:ec:ff:90:9b:
4d:17:f9:5b:a9:12:8b:c0:cb:f5:de:66:8b:46:c5:c0:6c:5a:
f6:f8:59:22:b4:fc:12:de:8f:c1:1b:37:e3:77:97:60:5a:2d:
3d:33:60:97:44:c5:a6:d1:37:d6:fe:0a:44:2b:08:b5:65:96:
10:53:a0:4b:57:9c:64:11:2f:c5:0e:76:cb:18:8f:9b:55:67:
f9:9f:ca:c8:56:6f:2e:e8:1a:55:7f:25:90:89:9a:1c:70:78:
ff:ae:ba:f7:9d:cf:1b:4f:93:fc:9e:9e:e1:c9:8b:6b:72:53:
3f:3e:f8:8a:2d:4f:c9:58:93:ed:ae:e9:8a:1a:75:aa:7e:4c:
ef:f7:48:96:37:a7:5e:e4:09:c2:31:21:05:1d:f0:8a:2f:25:
a5:7e:35:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:22:12 2025 by rpki-client