Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/iMJZGmagUKx5V2OarTu755iVYdo.roa
File: iMJZGmagUKx5V2OarTu755iVYdo.roa (raw, json)
Hash identifier: 44fkZA2rvf4K8Y7g299jPyJxXLEE2cyyZNMzNDbjzU4=
Subject key identifier: 88:C2:59:1A:66:A0:50:AC:79:57:63:9A:AD:3B:BB:E7:98:95:61:DA
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 29E2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/iMJZGmagUKx5V2OarTu755iVYdo.roa
Signing time: Fri 01 Sep 2023 10:07:13 +0000
ROA not before: Fri 01 Sep 2023 10:07:13 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 180.177.4.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10722 (0x29e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:07:13 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=88C2591A66A050AC7957639AAD3BBBE7989561DA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:e4:6d:30:f0:5a:e5:ae:34:96:8a:53:e4:51:
e5:42:08:7e:89:d1:13:9a:0b:16:08:89:3e:82:f2:
b9:99:fc:00:fb:d8:88:c6:76:df:b0:f1:6b:d5:39:
1b:1a:40:60:39:8d:0d:fd:b4:70:cf:a9:c5:5f:70:
9f:5f:c5:59:00:b6:f0:0b:42:75:3b:f8:57:e2:7e:
ea:28:25:54:18:6e:d2:90:dc:d7:8a:8e:5d:4b:06:
00:66:9b:0b:b5:8e:69:ac:63:df:59:ea:ef:b9:e9:
c6:8d:35:ca:2a:c7:5b:30:36:49:4a:6c:e2:69:51:
38:2c:59:4a:91:ef:d9:c9:a0:88:1c:c5:5c:73:54:
1e:54:f1:17:67:a3:52:61:7d:cb:35:ae:ec:ed:8e:
8a:39:4b:a8:8f:b0:7a:56:54:8a:df:f0:e0:67:80:
e0:69:63:25:24:13:b7:b5:19:13:e9:16:41:5a:6c:
6c:e2:fd:a7:ea:65:66:97:6f:35:f8:46:e8:40:f4:
ff:23:34:7d:44:3c:6e:16:34:09:b2:cb:8c:3a:72:
fe:c9:1d:d7:e0:10:c1:78:2b:4a:97:64:e6:5c:e8:
bf:24:82:51:51:c7:2f:52:59:91:42:2b:47:61:20:
de:56:89:47:f5:39:bc:d3:73:05:0a:2f:ef:25:df:
4e:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:C2:59:1A:66:A0:50:AC:79:57:63:9A:AD:3B:BB:E7:98:95:61:DA
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/iMJZGmagUKx5V2OarTu755iVYdo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.177.4.0/23
Signature Algorithm: sha256WithRSAEncryption
91:ac:93:a2:90:ea:be:45:e7:24:a1:db:48:7f:b5:34:77:0f:
6c:2f:46:cb:f4:46:68:78:4a:8c:a1:49:2a:a3:87:1a:a0:d9:
98:de:08:55:be:de:c8:f1:ad:1e:1d:aa:98:f0:0d:09:16:a3:
75:f6:75:b4:9b:12:18:0d:14:5c:65:b5:8f:ef:57:f5:cc:1c:
8e:24:b2:a8:4b:17:01:5f:dc:c9:31:30:e0:c4:ca:9d:c7:d0:
f9:d1:aa:b8:f3:7e:04:c4:96:bb:3a:03:38:55:48:c3:5a:98:
58:48:ca:38:8e:07:e8:d7:75:7f:cd:09:dc:fd:b7:f5:49:34:
f9:3a:8e:c6:25:2e:e5:e7:cf:25:3f:4d:28:03:28:d0:ae:15:
a6:7b:50:f1:84:25:a5:5f:65:e9:ff:48:8e:2b:8c:48:71:f1:
7f:b2:7b:1a:e0:62:83:03:6e:fa:b9:b3:fa:51:9f:30:ad:82:
f1:08:32:05:66:0d:da:77:23:43:b1:b8:f8:26:23:a4:e6:60:
32:c4:9f:42:94:1c:42:b9:d8:86:c6:73:d9:f7:e8:44:3a:02:
57:5f:be:46:4b:34:ea:b7:cf:8d:09:e6:86:02:f3:33:41:25:
08:72:1f:7f:aa:5f:78:57:61:d2:dd:76:e9:31:76:b6:be:26:
44:a1:7c:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:22:48 2025 by rpki-client