Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/0dN7-ZXaxwclGiTa8VllqvF_ls8.roa
File: 0dN7-ZXaxwclGiTa8VllqvF_ls8.roa (raw, json)
Hash identifier: TsbSLTKQaFvQdZy2KYSBYitqFn9IR8mzt1OpKMz928U=
Subject key identifier: D1:D3:7B:F9:95:DA:C7:07:25:1A:24:DA:F1:59:65:AA:F1:7F:96:CF
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1AAF
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/0dN7-ZXaxwclGiTa8VllqvF_ls8.roa
Signing time: Wed 29 Sep 2021 02:45:37 +0000
ROA not before: Wed 29 Sep 2021 02:45:37 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 180.176.0.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6831 (0x1aaf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:45:37 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D1D37BF995DAC707251A24DAF15965AAF17F96CF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:ae:e5:e1:54:e3:ce:13:a7:6e:e0:b1:c6:2a:
b7:34:86:22:ab:5a:6e:02:4f:15:dd:33:62:8e:2c:
0e:8f:b9:17:64:3a:45:17:45:bc:35:a8:cc:35:f1:
d5:47:59:d9:c5:26:38:36:2d:c5:e1:86:05:c8:78:
79:a5:b0:66:75:4e:fb:7e:5c:2e:94:9e:fd:3b:2a:
2e:d6:94:6e:af:50:aa:cc:03:2c:c9:64:3d:18:77:
a9:26:53:91:61:25:91:d3:04:3a:42:84:24:9c:53:
94:3d:c3:73:72:20:61:d6:d8:79:4a:ab:31:dc:9a:
7e:da:02:f9:f9:ef:43:da:99:95:39:97:52:aa:96:
74:43:e8:5c:b4:0f:91:b6:1c:8a:42:c5:c9:d0:16:
49:1f:18:fd:c2:1d:9b:db:90:f0:b5:1f:83:ee:a5:
55:22:4a:6c:85:91:17:1b:a2:60:ba:99:92:85:98:
8f:6c:f3:89:c5:34:0b:56:7e:32:d4:93:ee:dc:f0:
ff:1d:09:98:cf:a6:39:56:9b:7f:10:78:af:ab:84:
f1:d1:c2:2d:b3:68:51:84:51:51:2e:01:ec:62:bc:
d8:b2:17:6a:56:0c:11:a4:f2:f1:d8:87:4e:60:51:
c2:35:d3:99:1b:da:91:0f:a6:e9:6e:f3:0f:cc:46:
4b:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:D3:7B:F9:95:DA:C7:07:25:1A:24:DA:F1:59:65:AA:F1:7F:96:CF
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/0dN7-ZXaxwclGiTa8VllqvF_ls8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.176.0.0/22
Signature Algorithm: sha256WithRSAEncryption
47:43:31:13:ac:a8:1b:28:81:b0:87:39:7e:c7:24:a5:17:1d:
38:21:c6:db:07:90:ab:84:29:60:ad:84:1d:a2:23:53:1a:c2:
f6:7f:98:8a:c0:a2:fb:89:15:7e:f4:24:bb:f4:90:28:9c:3e:
4c:e2:b8:50:a3:57:f5:df:dc:8d:98:52:30:d4:49:7d:5b:df:
0c:a9:1b:6e:ad:a7:f3:34:70:2b:ee:45:cb:b6:0e:51:1c:e7:
29:67:2a:53:6e:be:38:0e:d7:fb:41:19:19:22:e8:0b:21:bd:
2a:c7:8a:f9:02:b7:65:0e:13:66:89:12:aa:d2:93:c7:d1:4b:
68:a7:89:d5:0b:33:2a:38:24:4e:e9:89:95:b3:d5:70:fc:9d:
48:2a:bf:26:4f:7a:65:bd:70:ea:4d:2b:b8:00:c2:4b:f3:2e:
b6:ef:31:60:fa:5b:c3:c8:dc:9e:80:23:a5:08:d9:c5:cf:3a:
02:3c:53:97:b9:dd:32:ba:1f:bf:1f:2f:4b:1a:d2:3d:ad:51:
ec:67:3b:a2:64:67:d3:c6:b4:e4:67:cb:af:26:95:c9:3e:f1:
cc:44:86:8b:9a:97:3f:7e:0c:c9:de:ab:33:a1:8c:24:68:75:
10:22:74:27:7a:42:1a:9b:49:2e:f8:1b:51:0b:ec:7e:22:58:
f0:a8:2c:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:46 2024 by rpki-client on console-fra.rpki-client.org