Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/4qii8BT9607uPHm8lwEOrhZwxLo.roa
File: 4qii8BT9607uPHm8lwEOrhZwxLo.roa (raw, json)
Hash identifier: W864hcl4wkXMCVuqudQgcNiyEziHqWBwPMSYw1ETHAg=
Subject key identifier: E2:A8:A2:F0:14:FD:EB:4E:EE:3C:79:BC:97:01:0E:AE:16:70:C4:BA
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1A7F
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/4qii8BT9607uPHm8lwEOrhZwxLo.roa
Signing time: Wed 29 Sep 2021 02:45:25 +0000
ROA not before: Wed 29 Sep 2021 02:45:25 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 180.177.40.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6783 (0x1a7f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:45:25 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=E2A8A2F014FDEB4EEE3C79BC97010EAE1670C4BA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c9:20:53:31:51:52:e9:95:2f:fd:0b:9e:ec:
09:b6:0f:81:de:40:5e:77:8b:13:94:b2:81:ec:ac:
ed:34:78:35:d7:64:0f:36:09:e4:56:16:a9:52:01:
c9:73:b8:93:4d:c5:c8:a0:73:70:5e:e6:2b:5a:ba:
97:af:6f:1c:61:06:e3:77:93:cb:d7:22:af:67:69:
d2:66:02:b4:47:f2:e8:f2:2f:65:1e:1b:bf:44:ed:
ff:23:db:3d:9f:6d:23:9b:d4:f9:7d:cc:03:c6:05:
75:1d:54:85:c1:fa:02:70:c5:3d:5e:a3:05:e7:0d:
d2:a0:41:cd:20:95:61:ae:4c:cf:dd:d6:f6:00:14:
41:4a:ef:38:5f:3e:a6:bd:ff:bc:e2:84:0c:72:f0:
11:02:b5:24:31:5a:dc:e6:1b:0d:2a:86:dc:94:cb:
b9:d3:fb:5f:12:30:e8:7d:82:10:d1:a8:44:b5:e6:
33:51:1d:49:af:cb:e0:c6:0a:b2:ad:51:66:da:d6:
f2:44:61:3f:10:13:b1:3f:dc:3b:e6:8c:6b:bd:72:
21:77:68:0b:5d:4d:f2:a0:fa:d2:41:49:5c:bd:3f:
21:1b:ce:9c:d3:c6:9d:f2:0c:21:22:11:ab:50:6b:
bb:dc:34:84:1b:46:6b:c9:56:04:b4:20:36:08:86:
cd:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:A8:A2:F0:14:FD:EB:4E:EE:3C:79:BC:97:01:0E:AE:16:70:C4:BA
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/4qii8BT9607uPHm8lwEOrhZwxLo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.177.40.0/22
Signature Algorithm: sha256WithRSAEncryption
ae:86:82:30:7b:ac:3d:b4:95:e8:6a:3a:d2:d0:c4:42:a9:28:
4c:ef:53:09:08:1c:e6:58:38:74:e2:8d:23:b6:40:c9:db:31:
11:aa:01:c2:80:28:91:b5:6f:e2:e5:f2:3d:c2:02:35:92:76:
db:a7:0b:8a:71:64:98:75:16:d0:32:64:4e:9a:a7:3f:35:30:
36:43:e3:68:86:d5:24:1c:56:14:59:f4:28:ae:1d:46:e5:3b:
34:58:f7:1a:67:9c:f4:ba:e9:0b:8d:32:de:ff:98:08:38:bc:
d1:4a:0e:43:c2:ab:67:a4:c7:24:84:72:7d:3a:a4:83:d4:9b:
79:af:e2:b7:79:05:06:5d:79:36:32:32:3f:d4:c9:a2:9b:45:
8f:05:ba:44:ad:43:20:af:c8:48:97:d6:5e:bc:1a:6c:3e:44:
23:39:d2:3e:77:0e:de:ea:b4:df:3b:7b:90:d7:39:71:1e:95:
96:df:52:52:49:57:e5:aa:55:b0:6b:e2:bd:5a:94:6b:6c:c9:
29:24:2b:23:a9:04:69:7f:c3:88:3f:34:af:b6:42:96:2f:f0:
c6:d9:9f:b1:3a:ef:1d:4d:9d:23:5b:6c:41:ec:ba:5e:76:ac:
48:a3:ae:cf:20:9e:ae:b6:e4:be:0b:17:b7:b1:7c:10:5a:b9:
55:2a:11:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:23 2024 by rpki-client on console-ams.rpki-client.org