Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3yZ1OKEMfh10IpBKyLOQ0jrZaH0.roa
File: 3yZ1OKEMfh10IpBKyLOQ0jrZaH0.roa (raw, json)
Hash identifier: BC0S+46YqAxMjL88AD0jo5C6jpCug48dWAg3tbf1VTQ=
Subject key identifier: DF:26:75:38:A1:0C:7E:1D:74:22:90:4A:C8:B3:90:D2:3A:D9:68:7D
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 0D2A
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3yZ1OKEMfh10IpBKyLOQ0jrZaH0.roa
Signing time: Tue 29 Sep 2020 09:54:16 +0000
ROA not before: Tue 29 Sep 2020 09:54:16 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 180.177.24.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3370 (0xd2a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 09:54:16 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=DF267538A10C7E1D7422904AC8B390D23AD9687D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:ad:68:e6:81:77:5c:f3:fe:12:ab:47:61:e2:
78:d9:9a:18:ba:67:07:16:d7:2d:d3:62:bb:08:17:
04:75:92:fc:93:a4:c1:28:eb:72:1b:45:14:35:3b:
3f:85:ef:19:05:ff:98:eb:15:01:f4:77:f3:5d:46:
b9:99:66:f4:fa:c2:89:8c:ca:ed:dc:9e:e8:e8:a7:
d3:ec:64:5b:1f:b8:f6:42:df:5b:29:be:78:ab:bc:
d1:57:cc:cf:aa:b9:a5:43:ce:25:31:cd:41:2f:87:
5b:ea:9e:61:7f:46:84:ef:c7:bc:e2:3e:07:1a:86:
02:ee:65:c8:f7:51:5d:22:da:a4:64:3e:55:13:f5:
a1:da:a6:ab:22:86:89:72:55:b0:bb:69:4e:3b:d0:
11:59:b5:38:cd:65:81:f7:c4:50:df:5a:56:06:fd:
73:71:9d:b8:d6:f9:33:9f:f3:11:e1:1e:5b:5b:21:
be:3c:61:f9:d2:51:1f:57:dd:91:86:ce:5f:44:35:
75:4e:c6:72:aa:f5:5f:d9:f0:17:8b:1c:7a:fd:c3:
23:87:ab:07:56:48:82:d0:42:aa:06:71:91:73:95:
20:c5:16:7e:b6:3b:6c:2a:b7:0a:0a:ff:95:e8:1b:
7b:00:60:1e:e2:f2:df:61:c9:f2:6c:d8:72:b9:b4:
32:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:26:75:38:A1:0C:7E:1D:74:22:90:4A:C8:B3:90:D2:3A:D9:68:7D
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3yZ1OKEMfh10IpBKyLOQ0jrZaH0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.177.24.0/21
Signature Algorithm: sha256WithRSAEncryption
6d:d8:8a:84:eb:fd:bb:7c:a7:80:e2:85:b0:84:2e:46:02:eb:
1c:45:8f:a5:42:83:61:39:23:e0:78:d4:81:37:0d:61:af:e6:
3d:fb:97:4f:c2:bc:5d:e0:9d:e9:cb:d1:67:04:26:48:b2:b5:
fa:bd:d3:ae:67:42:f8:67:eb:45:01:18:21:37:30:d7:98:35:
21:ed:20:96:e9:33:2e:d0:66:fa:22:c5:4c:d0:15:44:42:dc:
ba:f7:76:60:9e:19:05:4b:c6:b6:0a:bc:c0:0f:70:44:fb:89:
89:a9:58:69:f9:18:75:4f:62:a7:e5:5c:dd:44:98:46:87:00:
42:98:58:36:e1:a7:30:45:7d:b2:18:e4:c0:e9:12:84:3b:51:
6b:ee:75:4a:73:4c:f4:86:4d:7a:da:de:f4:89:f1:45:9b:3e:
65:83:dd:47:61:97:84:e8:13:3b:45:13:7c:b1:53:77:d8:a8:
ba:3a:74:11:9b:06:9a:11:07:60:37:25:8b:ba:b8:e8:f2:1e:
5f:7f:f1:df:ee:0a:a9:cd:90:75:55:80:80:a9:cc:5e:56:6f:
77:33:e6:01:ae:ae:a5:52:23:22:e1:45:d0:e4:76:53:0a:47:
60:5c:ef:a0:e5:0f:e2:1b:5d:ee:e2:e1:a3:88:9d:36:62:3a:
d1:a1:64:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:23 2024 by rpki-client on console-ams.rpki-client.org