Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/7l2TrYQnkO0cFZFK3IYR-wtEH5g.roa
File: 7l2TrYQnkO0cFZFK3IYR-wtEH5g.roa (raw, json)
Hash identifier: thgylI/176JIA4uAntkPSNs1u9+z3RRtZPswzio0Y6s=
Subject key identifier: EE:5D:93:AD:84:27:90:ED:1C:15:91:4A:DC:86:11:FB:0B:44:1F:98
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1889
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/7l2TrYQnkO0cFZFK3IYR-wtEH5g.roa
Signing time: Sun 07 Feb 2021 12:30:18 +0000
ROA not before: Sun 07 Feb 2021 12:30:18 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 180.177.192.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6281 (0x1889)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:30:18 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=EE5D93AD842790ED1C15914ADC8611FB0B441F98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:5a:56:a8:06:e2:1b:c8:47:6e:3a:e6:d3:27:
df:bc:be:90:bb:23:39:bc:4d:5d:51:cf:4f:ae:fd:
4c:06:82:d7:c6:cb:c7:95:6b:00:86:3c:03:31:69:
79:82:ee:ef:05:d4:eb:f1:d8:cd:32:c7:cd:c4:5a:
6d:11:e1:14:62:df:56:da:57:3f:e0:b5:02:c3:68:
69:48:60:19:92:f6:4d:fa:35:b7:3e:4c:72:27:36:
5c:58:3d:c4:2c:39:00:28:44:cd:f2:7e:65:89:9d:
c8:31:a8:f3:c0:e4:63:91:83:15:b6:b4:55:dc:a3:
0b:17:9d:82:a0:f4:4c:27:7f:e8:53:d6:2e:bb:02:
ce:1f:6c:ad:70:d2:9d:9c:bd:f5:13:bd:60:95:ae:
02:dc:ab:5a:71:7a:73:f1:44:81:b9:34:f8:e2:92:
bb:e2:de:4f:5d:78:17:60:6d:f0:35:e8:ae:c0:ad:
a3:8d:6c:26:08:b1:2b:32:44:ae:cb:39:9d:68:4a:
c8:17:f8:41:7c:13:ee:1f:fa:42:e5:73:0b:3b:e3:
9f:b8:b5:1c:1a:fd:ae:05:7d:99:75:5e:87:2b:71:
bf:6f:6c:d4:71:74:90:ae:0c:f9:36:df:00:b9:cb:
5e:37:70:97:33:d6:16:42:a7:37:3f:d7:49:50:ba:
55:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:5D:93:AD:84:27:90:ED:1C:15:91:4A:DC:86:11:FB:0B:44:1F:98
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/7l2TrYQnkO0cFZFK3IYR-wtEH5g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.177.192.0/21
Signature Algorithm: sha256WithRSAEncryption
26:2f:de:9d:82:f3:ba:f5:56:ee:d9:c7:7c:b3:f1:5e:b4:51:
0b:d7:0f:17:4a:d9:99:79:14:32:f9:f5:19:76:13:00:10:26:
dc:45:7b:a7:33:cf:82:0b:68:de:ac:b8:3a:6f:c9:f7:54:36:
68:a5:f9:bd:04:3f:c1:58:77:36:c2:5b:18:fc:4e:1f:22:a5:
4e:aa:43:4f:2d:d2:89:ff:9a:9d:47:a6:a2:a8:bc:0b:3e:d1:
f9:26:c7:9e:b8:7c:86:89:7f:d0:87:65:46:21:18:59:6b:2c:
84:c5:f8:04:78:a4:0d:ec:67:54:ab:8f:42:f4:87:f3:16:96:
27:88:52:93:09:60:13:7b:23:60:3e:e8:58:49:de:cf:70:e4:
28:71:7b:03:66:53:21:c1:f7:dc:15:a3:fc:e6:58:96:a2:0b:
70:47:f2:18:be:9f:71:82:8c:a6:ce:66:2b:5e:31:a8:16:56:
f1:1f:a7:bc:c2:52:aa:e0:e2:93:1e:05:2f:a2:37:2f:ae:61:
0e:a9:3a:5b:54:c3:7b:38:87:89:30:12:98:9f:8a:62:0d:dc:
69:36:73:da:39:5c:8e:4b:a6:c3:80:32:15:f0:d3:27:46:69:
a5:b3:7f:1c:97:b3:60:a9:3f:6d:95:c2:d4:08:99:51:9b:eb:
c6:5d:00:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:10 2023 by rpki-client on console-ams.rpki-client.org