Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/iRYqa0QqnD3JCyMrNTawpFPpJcg.roa
File: iRYqa0QqnD3JCyMrNTawpFPpJcg.roa (raw, json)
Hash identifier: B+OQpoluXLh5ZOHMuiFach0QODJxeNzF+1OHsCkE48U=
Subject key identifier: 89:16:2A:6B:44:2A:9C:3D:C9:0B:23:2B:35:36:B0:A4:53:E9:25:C8
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 297E
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/iRYqa0QqnD3JCyMrNTawpFPpJcg.roa
Signing time: Fri 01 Sep 2023 10:06:40 +0000
ROA not before: Fri 01 Sep 2023 10:06:40 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 180.177.80.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10622 (0x297e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:06:40 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=89162A6B442A9C3DC90B232B3536B0A453E925C8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:49:08:c3:52:08:e4:d0:5d:2c:1d:3c:4a:4d:
ef:3c:31:ed:df:8f:3b:9e:ae:e1:b2:c4:8c:c3:48:
1c:ef:3e:42:91:a9:9b:77:c2:89:d1:12:63:22:ba:
a4:4f:e7:13:2d:6c:d6:26:b6:d3:63:68:78:51:e7:
44:e1:53:69:b5:64:7c:c0:a8:a3:1c:c5:7c:27:23:
3e:56:d6:6e:cb:32:a4:44:5d:47:6e:f5:21:71:09:
45:27:fc:72:e4:2c:d6:4c:0c:6e:d6:c7:9a:c7:dc:
4e:94:cc:cb:50:f2:03:fe:9d:07:9b:03:ec:4f:d3:
eb:78:21:53:dc:3d:58:56:08:af:e2:f1:e2:04:31:
6f:49:31:f5:a5:23:fa:ba:38:98:89:1f:6d:2f:80:
e1:b7:87:1f:2e:15:f8:4d:36:a3:4e:81:9c:c5:4e:
dd:95:55:5e:38:ca:b2:85:03:e6:38:4a:f6:05:0b:
f4:1b:c2:45:1d:bd:9b:d9:56:bd:8b:c7:bf:9d:1b:
04:e1:a1:eb:18:48:90:80:b9:2f:a4:c3:6b:16:c2:
a9:a5:21:4d:96:10:76:5e:9c:45:9f:d7:f9:de:1d:
93:b0:1e:ea:32:62:30:a5:31:d0:58:cd:f7:6e:24:
30:c0:fb:43:3d:a6:ae:f6:1c:c6:c0:95:2c:c1:25:
47:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:16:2A:6B:44:2A:9C:3D:C9:0B:23:2B:35:36:B0:A4:53:E9:25:C8
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/iRYqa0QqnD3JCyMrNTawpFPpJcg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.177.80.0/21
Signature Algorithm: sha256WithRSAEncryption
40:0e:8e:c4:f9:1b:5f:da:3a:ff:e0:1a:5f:64:05:c3:2b:e6:
9b:ac:ee:be:a2:ed:b3:9b:3e:0b:6f:4e:50:65:10:84:ec:fc:
f5:f2:9f:02:ac:63:6f:cb:e3:68:7c:35:2a:65:a7:e8:81:b0:
a2:6e:08:8c:0f:7f:56:05:4d:4b:17:57:04:ad:ab:7b:9e:b8:
fb:31:94:45:81:11:13:eb:f6:f5:85:e1:69:f4:f9:29:16:f7:
48:f9:64:66:ac:6c:a3:9e:0f:a5:29:9d:09:22:3f:28:45:e3:
78:13:dd:a9:33:0d:93:0a:a0:97:9b:d4:49:35:87:35:73:5d:
99:b0:57:7f:10:7c:5b:83:1b:d8:ca:76:ff:47:11:e3:2c:12:
5e:e1:62:a0:ff:54:a7:bf:9c:d8:f6:de:6d:71:62:a2:d7:da:
b9:62:31:ca:6d:71:fe:e8:bf:03:0e:6b:d9:f1:2f:62:ae:7b:
b4:1a:f8:b3:8f:95:ad:54:81:eb:39:f3:82:d0:75:09:37:c6:
33:5c:ca:cd:bf:34:3d:bc:08:0c:5e:93:89:a5:b0:0d:2c:10:
a5:1e:02:39:2f:25:40:d8:d2:5e:80:09:b5:be:ac:07:a9:69:
eb:5b:2c:6c:94:55:a0:65:34:fc:0d:a4:61:c3:72:ab:b9:13:
3f:cd:e0:d8
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICKX4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx
MDA2NDBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDg5MTYyQTZCNDQyQTlD
M0RDOTBCMjMyQjM1MzZCMEE0NTNFOTI1QzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDtSQjDUgjk0F0sHTxKTe88Me3fjzueruGyxIzDSBzvPkKRqZt3
wonREmMiuqRP5xMtbNYmttNjaHhR50ThU2m1ZHzAqKMcxXwnIz5W1m7LMqREXUdu
9SFxCUUn/HLkLNZMDG7Wx5rH3E6UzMtQ8gP+nQebA+xP0+t4IVPcPVhWCK/i8eIE
MW9JMfWlI/q6OJiJH20vgOG3hx8uFfhNNqNOgZzFTt2VVV44yrKFA+Y4SvYFC/Qb
wkUdvZvZVr2Lx7+dGwThoesYSJCAuS+kw2sWwqmlIU2WEHZenEWf1/neHZOwHuoy
YjClMdBYzfduJDDA+0M9pq72HMbAlSzBJUeXAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUiRYqa0QqnD3JCyMrNTawpFPpJcgwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2lSWXFhMFFxbkQzSkN5TXJO
VGF3cEZQcEpjZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0
sVAwDQYJKoZIhvcNAQELBQADggEBAEAOjsT5G1/aOv/gGl9kBcMr5pus7r6i7bOb
PgtvTlBlEITs/PXynwKsY2/L42h8NSplp+iBsKJuCIwPf1YFTUsXVwStq3ueuPsx
lEWBERPr9vWF4Wn0+SkW90j5ZGasbKOeD6UpnQkiPyhF43gT3akzDZMKoJeb1Ek1
hzVzXZmwV38QfFuDG9jKdv9HEeMsEl7hYqD/VKe/nNj23m1xYqLX2rliMcptcf7o
vwMOa9nxL2Kue7Qa+LOPla1Uges584LQdQk3xjNcys2/ND28CAxek4mlsA0sEKUe
AjkvJUDY0l6ACbW+rAepaetbLGyUVaBlNPwNpGHDcqu5Ez/N4Ng=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:35:43 2025 by rpki-client