Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/4J_wQoalyWqg-sV9HIsJ_kfLiLg.roa
File: 4J_wQoalyWqg-sV9HIsJ_kfLiLg.roa (raw, json)
Hash identifier: FG0te9o3kUyfXtxABSRx6ucJaMR7Q/2nzf2mKQ4l0R0=
Subject key identifier: E0:9F:F0:42:86:A5:C9:6A:A0:FA:C5:7D:1C:8B:09:FE:47:CB:88:B8
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2265
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/4J_wQoalyWqg-sV9HIsJ_kfLiLg.roa
Signing time: Fri 25 Nov 2022 04:41:07 +0000
ROA not before: Fri 25 Nov 2022 04:41:07 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 180.176.72.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8805 (0x2265)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:41:07 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E09FF04286A5C96AA0FAC57D1C8B09FE47CB88B8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:7a:be:1f:e8:8a:f9:d3:14:f0:57:7c:d4:de:
d1:15:1c:08:e5:2f:60:0f:88:33:09:6c:8b:2c:c5:
ef:4f:84:56:c6:0e:37:88:92:91:93:20:51:dc:48:
9e:4a:83:58:22:39:61:ea:4d:ab:2d:ca:71:9d:21:
09:a4:4a:27:7d:bf:4d:73:6d:8e:73:f0:5b:68:f4:
61:24:44:11:14:e1:30:1c:4f:5d:80:e3:64:1f:a8:
85:02:c7:75:01:7d:c2:a1:d0:cb:e6:14:ba:df:59:
88:b4:5b:00:60:60:be:87:52:6d:9a:cf:c9:53:70:
6b:1c:c9:d7:fa:2e:be:c8:31:1a:ef:38:b6:0d:26:
7e:e5:f7:64:ec:dd:72:47:1f:e0:7a:8d:44:28:3f:
a9:09:da:e0:7b:10:64:46:6b:2a:ef:85:d2:d3:e9:
23:43:de:7d:5c:b7:ef:6a:1d:3b:e9:dd:d4:74:20:
98:6d:47:3f:5c:c8:dd:25:70:9e:17:a6:0c:c7:cf:
29:6f:e4:79:dd:4e:6d:3c:57:25:c9:b0:ae:42:24:
3c:0d:a4:ae:a8:18:ef:45:29:31:43:4c:0c:27:b5:
7d:ef:30:1a:df:b7:11:bb:18:24:3f:57:da:cf:2d:
df:f3:3c:19:27:8b:36:b0:5d:06:28:4b:e4:59:82:
11:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:9F:F0:42:86:A5:C9:6A:A0:FA:C5:7D:1C:8B:09:FE:47:CB:88:B8
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/4J_wQoalyWqg-sV9HIsJ_kfLiLg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.176.72.0/22
Signature Algorithm: sha256WithRSAEncryption
65:e5:9a:9c:31:4f:32:72:eb:a3:35:df:0d:40:41:c3:9c:bc:
12:ce:fd:6f:9d:84:8d:d9:2a:cc:21:70:89:23:a9:6e:77:86:
34:df:1c:4a:27:ef:77:51:69:4c:5a:e3:0d:ec:0c:1b:bb:63:
fc:f6:34:e2:f6:66:22:74:4d:68:e4:52:72:bf:1d:16:33:55:
4c:f7:22:4d:ab:29:f1:01:31:ff:16:00:44:64:63:59:a9:b0:
27:95:70:9d:da:17:67:fa:ea:90:24:23:38:4d:57:24:71:44:
3e:7a:ec:64:28:44:59:5c:9f:28:12:76:59:f9:b3:1f:a1:88:
9c:05:85:fc:fe:1b:fb:fd:2f:ea:2c:13:23:b5:54:19:e6:20:
fd:da:fe:8a:2a:fb:8f:87:c3:6c:96:31:e9:f5:01:55:65:62:
ff:1a:c5:43:7d:45:12:e6:15:33:30:9b:e1:7c:57:3d:8d:1f:
e7:af:00:a8:c8:d9:50:fb:9f:be:82:ba:3f:ea:af:bd:b7:3b:
e6:7a:e8:7e:d6:f4:5a:ed:20:1a:bb:d5:92:fb:3f:af:85:a1:
b3:6c:8c:dd:84:73:ec:01:af:3a:bd:83:2a:a8:2e:e0:70:65:
23:14:09:b3:ac:05:e0:e4:63:f1:1e:6e:4a:ad:e7:0d:c8:03:
1a:fb:7d:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:23 2024 by rpki-client on console-ams.rpki-client.org