Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/PGbRhXzn0ELtGaRlPZx8WpXac1g.roa
File: PGbRhXzn0ELtGaRlPZx8WpXac1g.roa (raw, json)
Hash identifier: 3OgHm05ntVy03L7QJFCYLX0EviBz4ZCxGCQ5pAOGspk=
Subject key identifier: 3C:66:D1:85:7C:E7:D0:42:ED:19:A4:65:3D:9C:7C:5A:95:DA:73:58
Certificate issuer: /CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B
Certificate serial: 08BD
Authority key identifier: 6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/PGbRhXzn0ELtGaRlPZx8WpXac1g.roa
Signing time: Sun 07 Feb 2021 11:45:12 +0000
ROA not before: Sun 07 Feb 2021 11:45:12 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 180.92.0.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2237 (0x8bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B
Validity
Not Before: Feb 7 11:45:12 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3C66D1857CE7D042ED19A4653D9C7C5A95DA7358
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:44:e8:cb:69:38:2d:64:df:b5:3e:14:6c:fc:
8e:1b:03:6d:0d:e8:ed:42:bd:ba:1d:72:3a:c2:b6:
a8:0b:92:b5:de:a7:e1:9a:ab:9c:ed:f5:b4:fe:12:
27:38:6b:d7:1d:46:fa:43:f0:08:bf:77:5c:b7:aa:
af:a7:3a:c9:7a:99:4e:e8:bb:71:98:96:47:27:fd:
aa:87:8e:67:e4:71:bc:b9:70:64:1b:dd:ad:6a:20:
fb:e0:17:cf:29:4d:21:d7:be:1d:8e:f3:63:04:ca:
89:12:a3:41:71:ab:6e:83:de:35:a4:dd:59:c7:38:
c9:d5:63:72:ce:97:0c:b0:45:46:9a:3b:d2:28:61:
61:5c:65:3b:7a:3a:7c:14:4e:9c:af:bf:e6:de:ec:
f9:01:df:bf:39:25:5b:de:d0:c5:18:9c:98:ef:d2:
23:f1:a1:16:09:76:0c:e4:99:a3:4a:2f:b2:fc:84:
50:d7:f0:dd:b3:f8:be:0b:93:18:13:4e:98:2f:c0:
48:a8:8d:7b:a3:ad:bf:e7:c9:60:a2:88:d6:20:dd:
b2:bd:1a:4c:e3:d3:aa:24:d7:0c:89:c7:f3:06:78:
f1:42:2d:a0:8d:4e:09:a6:e8:ca:3e:e7:e3:f6:d3:
51:7b:e8:e1:63:1a:b5:14:cb:29:a7:fd:e8:73:fe:
eb:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:66:D1:85:7C:E7:D0:42:ED:19:A4:65:3D:9C:7C:5A:95:DA:73:58
X509v3 Authority Key Identifier:
keyid:6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/PGbRhXzn0ELtGaRlPZx8WpXac1g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.92.0.0/20
Signature Algorithm: sha256WithRSAEncryption
1a:c2:5d:44:94:74:41:9f:7a:1a:86:51:bc:a8:56:98:b6:2d:
10:09:fe:c1:5f:9f:f1:14:c6:33:48:5d:85:c1:ae:31:99:89:
9b:a7:04:00:bf:70:94:d1:4a:e7:4a:f2:93:7f:0c:c7:65:36:
c3:9a:a5:36:36:64:d2:c7:a3:7e:47:b6:93:cf:f8:97:a0:f3:
d2:bd:d0:22:4e:5c:46:21:36:76:e7:0f:59:cb:3d:96:9b:43:
e3:67:c5:93:6e:03:c0:28:82:13:85:fa:39:37:2a:6c:9f:92:
97:60:28:08:2f:cb:3a:e8:25:2d:aa:da:1a:10:ac:e7:4e:43:
72:9e:65:80:2f:ed:fa:bd:72:c5:bd:4b:4e:7a:63:d0:38:b8:
01:1e:74:63:7d:b5:ea:0f:a7:33:cb:e9:81:35:d5:68:64:34:
a7:a8:50:9d:11:bd:b7:32:e7:17:c5:3f:2f:ed:e3:2d:d7:d4:
2b:6c:3d:f4:77:1f:87:7e:10:05:ca:a4:65:6a:e6:b1:d1:5a:
34:44:81:7f:3a:b4:af:f1:89:07:c6:06:63:89:4d:1b:3c:4d:
4b:89:ff:52:d9:88:d8:fd:f0:9c:ed:08:6d:a5:9d:85:e1:ab:
78:3b:37:fc:62:9a:91:aa:db:e0:c4:b9:5c:12:36:95:7a:3c:
c3:20:2b:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:59 2023 by rpki-client on console-fra.rpki-client.org