Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/iU-faDS30p7up8m3Jhk1I_s90z8.roa
File: iU-faDS30p7up8m3Jhk1I_s90z8.roa (raw, json)
Hash identifier: VGnKR9F7CI2cIvnqm356IVlpRumd4igsha340KPqNlI=
Subject key identifier: 89:4F:9F:68:34:B7:D2:9E:EE:A7:C9:B7:26:19:35:23:FB:3D:D3:3F
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2207
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/iU-faDS30p7up8m3Jhk1I_s90z8.roa
Signing time: Fri 25 Nov 2022 04:40:41 +0000
ROA not before: Fri 25 Nov 2022 04:40:41 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 180.176.156.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8711 (0x2207)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:40:41 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=894F9F6834B7D29EEEA7C9B726193523FB3DD33F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:e3:ea:90:77:1b:87:1e:58:19:27:4a:25:34:
c7:dd:a2:b5:e2:d5:31:e2:fb:3c:24:ba:48:ac:31:
ed:8f:83:e3:5c:be:43:4b:b4:07:a9:d0:84:23:b2:
f2:d3:c8:59:2e:ec:da:59:8b:6f:09:11:93:e0:23:
6f:14:75:09:13:e6:a5:3d:e3:71:7e:93:75:09:ff:
d8:81:1a:c2:fc:1b:a2:88:0d:47:f9:de:1d:1d:ef:
0c:49:c9:0f:b9:8e:7c:15:b1:02:6b:83:6e:01:26:
20:ee:ba:66:ca:ee:f7:1e:af:c8:7c:65:53:3f:1d:
7b:bf:c5:48:53:2a:55:e7:ac:3b:ac:e4:33:c3:f6:
b1:b9:70:45:66:dd:86:98:21:44:f5:b7:93:07:5c:
06:95:bb:69:2b:b6:93:64:56:36:38:71:38:73:02:
dc:1c:d9:9c:75:33:5e:67:32:dd:7d:3d:1a:21:fe:
dd:98:be:a3:35:48:da:65:f5:11:a7:7f:1a:d8:58:
d5:28:e5:b6:16:4e:36:83:3f:7f:2f:97:b8:a6:c2:
e7:d5:3c:10:2d:03:5f:03:14:4a:a8:50:cd:ba:7c:
70:d3:55:75:25:e9:c9:f6:8c:5e:12:87:09:7d:69:
52:b2:e9:4c:2e:52:ab:d0:4f:37:8a:d1:95:8c:47:
09:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:4F:9F:68:34:B7:D2:9E:EE:A7:C9:B7:26:19:35:23:FB:3D:D3:3F
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/iU-faDS30p7up8m3Jhk1I_s90z8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.176.156.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:6b:1a:fe:c5:30:35:b9:a7:55:38:4c:d7:e6:32:98:be:54:
7b:45:00:ce:43:4d:6f:64:3d:3f:10:0c:7e:79:1f:14:ab:e1:
51:49:90:3b:90:ca:dd:1d:ea:47:80:c5:19:af:9d:6c:59:57:
29:aa:2d:d9:ea:43:03:f3:07:5f:d8:bf:7a:45:73:ce:6b:54:
82:76:65:57:3f:de:e4:71:f6:b1:8c:68:8d:62:b9:97:96:7d:
10:d7:7c:c4:8d:c7:9c:07:f1:a2:f7:cb:24:a0:c2:2e:61:08:
3c:c9:e3:d5:e4:56:e8:b5:69:b4:46:a5:48:f1:41:83:db:4d:
b0:9c:cd:b7:20:35:c6:89:36:7d:24:48:42:fb:5a:fb:5b:75:
14:be:a6:f6:09:06:e1:5b:ab:e8:af:dd:3c:85:7a:1a:1e:ac:
d3:cc:6e:3a:ac:b4:5d:36:e4:20:f2:f4:d5:b8:ce:1f:42:14:
ab:56:1f:1e:a9:d9:69:24:e9:98:45:e3:8e:8d:79:ca:2e:b7:
a4:d4:f2:90:ee:95:74:dd:37:2c:fa:ea:4e:4e:10:8a:dd:fd:
31:aa:d8:24:c2:85:98:f3:1f:67:60:66:8b:2c:ef:87:51:94:
4d:4e:45:9c:51:15:ca:3e:d2:7d:f9:85:f4:e9:cb:73:24:7d:
73:5c:89:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:37:45 2025 by rpki-client