Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/31V2BnXLkMWrPRdhzx3mLRXYwPs.roa
File: 31V2BnXLkMWrPRdhzx3mLRXYwPs.roa (raw, json)
Hash identifier: cksFDn8f2N2XXiAlRUvJUkCLFYIbSng/YRwnYqtutVc=
Subject key identifier: DF:55:76:06:75:CB:90:C5:AB:3D:17:61:CF:1D:E6:2D:15:D8:C0:FB
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/31V2BnXLkMWrPRdhzx3mLRXYwPs.roa
Signing time: Thu 15 Sep 2022 02:52:49 +0000
ROA not before: Thu 15 Sep 2022 02:52:49 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 180.176.40.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8098 (0x1fa2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:52:49 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=DF55760675CB90C5AB3D1761CF1DE62D15D8C0FB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:21:ff:cc:2e:71:93:b4:89:c1:61:1d:d2:07:
b9:8f:f6:e5:32:bc:10:63:7e:15:1b:f8:ed:73:c2:
07:d4:9e:a5:0a:11:08:35:3a:3b:ad:48:cd:9d:f9:
96:4c:84:f3:95:d8:9d:24:37:2b:c1:6e:8a:da:bc:
e3:c4:f7:a0:01:4c:0c:f7:63:a7:2d:9b:d5:92:d6:
40:f6:3b:92:63:ec:8d:92:e4:70:91:a9:34:2d:59:
31:53:a3:1e:6f:63:16:aa:56:0f:3c:76:0e:44:9c:
4d:44:7b:e0:d9:81:27:d9:ef:53:ff:a9:1a:ca:1f:
69:8b:57:4f:53:b8:98:c1:67:0b:5b:a4:66:4c:90:
8e:bc:3c:a4:a4:e1:87:69:39:9f:c9:31:1c:32:69:
b0:e9:5a:19:ff:c4:43:5e:e1:04:dd:61:73:58:42:
5a:a1:d0:e0:3b:cc:e4:d7:9d:e2:b6:f1:d7:85:04:
3a:06:ec:4c:d5:d7:02:39:af:b6:12:59:55:fa:0e:
29:86:4f:5d:9e:f8:0f:fa:bf:cb:fb:50:b5:f3:e6:
7a:87:50:f5:c8:85:aa:fd:5d:23:48:93:f8:d1:aa:
04:e0:29:bd:eb:28:e8:b8:4d:e9:32:9d:6c:d5:24:
8d:72:66:1c:d8:89:c8:20:97:75:97:8a:37:f6:c6:
49:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:55:76:06:75:CB:90:C5:AB:3D:17:61:CF:1D:E6:2D:15:D8:C0:FB
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/31V2BnXLkMWrPRdhzx3mLRXYwPs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.176.40.0/21
Signature Algorithm: sha256WithRSAEncryption
90:86:01:46:b5:5b:5c:d7:09:2b:38:0d:42:8d:6d:02:e8:3a:
b2:b2:17:91:5f:37:3f:ae:4d:9b:2d:96:e2:b4:be:e8:a1:9d:
52:dd:a7:1f:82:a5:82:ea:66:76:3d:ff:64:9c:34:49:4e:be:
ce:6d:81:dc:f6:44:04:40:43:33:7b:a5:60:59:a5:09:61:85:
20:2e:94:70:dd:ba:a6:34:9f:58:d4:67:d7:77:07:a2:8b:3b:
07:3a:7b:08:62:91:94:a2:48:57:12:7e:10:b3:36:2b:0e:3e:
4d:b4:8a:9a:c4:40:7e:4b:13:32:31:00:5e:69:c9:d8:7b:1a:
a1:60:67:f9:1f:bf:a2:0b:8a:93:47:b5:d3:9d:ba:fc:9d:46:
b4:65:f6:37:25:54:31:6e:ac:52:46:53:f6:33:0c:74:36:74:
67:9b:70:25:41:e8:d9:e9:50:58:20:bf:9c:52:4a:ab:01:17:
a9:d1:31:19:c0:a8:49:47:e1:20:d5:5e:a0:e3:bc:20:75:4d:
31:c7:1c:bf:d7:ab:cf:a8:a2:fb:cb:fa:d8:0e:c6:b0:d1:03:
64:93:a1:cb:40:15:ef:ed:c1:31:ed:99:ad:d8:11:c6:be:a3:
d8:77:72:ba:43:32:59:d0:14:55:bf:ec:f7:13:03:79:6f:c7:
0a:82:54:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:23 2024 by rpki-client on console-ams.rpki-client.org