Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hQh1sYf0QW-62J2i06zQ2OW5Yu4.roa
File: hQh1sYf0QW-62J2i06zQ2OW5Yu4.roa (raw, json)
Hash identifier: YEV5xx2iboq4Mm1i+4ER0dyyYu9SeYvWkhJeLSf9XKU=
Subject key identifier: 85:08:75:B1:87:F4:41:6F:BA:D8:9D:A2:D3:AC:D0:D8:E5:B9:62:EE
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2AAA
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hQh1sYf0QW-62J2i06zQ2OW5Yu4.roa
Signing time: Fri 01 Sep 2023 10:08:09 +0000
ROA not before: Fri 01 Sep 2023 10:08:09 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 180.177.8.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10922 (0x2aaa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:08:09 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=850875B187F4416FBAD89DA2D3ACD0D8E5B962EE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d5:03:39:ac:d7:6c:2e:98:b1:46:83:cb:23:
ef:45:6e:ae:27:77:b7:09:aa:21:09:d8:42:51:08:
bd:31:9c:aa:58:09:7c:33:8d:a5:a8:27:4d:45:06:
d2:fb:ab:86:b2:9d:be:39:4f:f4:56:c7:d1:6f:11:
eb:48:0d:7f:a2:62:7d:5a:58:7e:26:92:3e:05:57:
dc:5d:c0:20:7c:ab:f3:27:3a:02:c6:4b:ae:48:87:
7c:13:ab:ad:4e:ab:53:94:85:9f:e4:a8:6b:89:9f:
15:be:2f:be:e9:f1:dc:3e:09:0d:23:04:d4:72:b4:
69:dc:e1:05:78:24:e5:b2:59:d6:50:74:51:87:92:
17:00:27:1c:3b:c4:10:31:a2:f4:66:4e:38:dc:f0:
1c:40:9c:b5:a1:f4:8e:4e:23:4e:e6:3d:ed:d6:9e:
69:5c:a9:4d:d2:ec:14:f5:f0:77:8f:fe:f4:21:bd:
e8:18:ff:8d:22:11:5e:5a:f3:b6:dc:e2:80:a4:63:
29:b5:fb:f1:41:e7:fb:67:d0:4e:52:09:aa:79:39:
73:9c:ef:69:e1:ce:a8:26:67:30:05:0f:92:8a:fd:
19:d0:a6:10:5e:dc:fc:f3:81:1b:24:2e:d7:e1:6f:
67:31:0b:bd:6a:2e:78:c0:d5:d9:0e:9c:d4:70:17:
9a:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:08:75:B1:87:F4:41:6F:BA:D8:9D:A2:D3:AC:D0:D8:E5:B9:62:EE
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hQh1sYf0QW-62J2i06zQ2OW5Yu4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.177.8.0/21
Signature Algorithm: sha256WithRSAEncryption
93:f9:2b:10:1f:55:a0:33:26:56:72:76:c4:f8:ba:1c:15:b3:
32:68:85:f7:ef:b5:74:2a:86:35:52:7e:e7:77:cc:f6:86:e1:
4f:c9:ca:68:5a:04:ab:6c:76:0f:81:f6:60:46:ad:07:09:99:
db:bc:bc:14:23:7c:94:07:85:b4:82:05:4f:44:87:00:63:9c:
e5:60:42:35:08:9e:92:ed:50:c3:87:e7:26:51:17:f1:73:c8:
d5:94:0e:fc:2f:96:1f:e7:b3:4f:78:59:62:59:14:66:ce:1e:
f3:5f:e9:4e:47:07:50:2a:bb:a1:fa:4f:1b:40:87:02:57:65:
19:e0:ba:2d:56:5a:e1:28:40:c4:34:58:17:c2:15:b5:36:61:
3e:12:fb:03:0b:b4:9a:0e:e3:fb:d0:0c:15:58:62:25:3d:6d:
18:40:3b:cd:33:0f:f4:83:36:2f:e2:72:dc:9d:79:b8:11:23:
6a:3e:68:94:0f:f9:7a:7c:c1:a8:e4:6a:5d:e6:35:18:56:46:
77:6b:42:92:09:19:5d:fc:79:d7:b0:71:e6:d6:46:06:e6:35:
cb:01:66:2e:90:d3:c3:1d:4e:b9:ae:56:15:bb:fc:23:72:b1:
28:b2:5b:f5:d5:01:65:bc:85:89:15:28:bf:89:15:62:b0:34:
ab:d4:e7:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:28:22 2025 by rpki-client