Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/8Ge53HKpfb_m3hJgPx2rkvmYwzQ.roa
File: 8Ge53HKpfb_m3hJgPx2rkvmYwzQ.roa (raw, json)
Hash identifier: 7BpGGfLd+LuiYpKDiuGwwSCLaos6tISILVuu+r2Y8Ns=
Subject key identifier: F0:67:B9:DC:72:A9:7D:BF:E6:DE:12:60:3F:1D:AB:92:F9:98:C3:34
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 187D
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/8Ge53HKpfb_m3hJgPx2rkvmYwzQ.roa
Signing time: Sun 07 Feb 2021 12:29:51 +0000
ROA not before: Sun 07 Feb 2021 12:29:51 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 180.176.72.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6269 (0x187d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:29:51 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F067B9DC72A97DBFE6DE12603F1DAB92F998C334
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:2e:54:28:c4:e5:79:a6:99:35:93:7d:79:bd:
2d:7e:9d:79:02:82:68:5f:fb:17:fe:b5:b8:fe:c4:
85:38:0c:5c:79:15:5b:31:01:b9:a5:fb:00:fc:1f:
a2:02:aa:2f:9c:2e:ec:a0:20:a8:83:c2:e8:97:5e:
cf:f8:9d:2c:6e:dd:31:f5:56:86:81:2c:72:f9:e8:
10:d2:d0:5e:40:b1:f8:71:03:47:6b:68:d3:29:8e:
a6:07:99:95:2d:40:da:0f:82:b4:04:6c:4d:3e:0b:
d7:23:cc:7b:41:4e:ca:02:31:1e:cb:17:fe:94:fe:
07:7f:73:fb:8d:a3:f1:30:b9:56:4c:06:c9:b2:7e:
96:ba:74:f9:dc:00:3b:c6:df:cb:b5:c5:41:94:22:
18:7c:06:b7:b6:a2:1d:0e:b3:12:cb:46:b6:46:f8:
f5:0d:65:1c:f6:67:35:c2:f3:a1:85:2b:be:32:a6:
55:f0:27:7a:47:22:20:3e:a1:d4:02:be:68:a6:0a:
90:f8:be:04:e6:42:f6:63:7a:07:57:c8:c2:36:32:
a7:ed:0a:17:aa:40:b8:12:3f:3c:57:64:a8:07:fd:
ab:3f:a8:64:84:39:28:bd:a6:f8:da:97:83:a7:cc:
97:9b:27:bd:32:85:ce:f8:b7:01:63:d0:7f:49:de:
a3:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:67:B9:DC:72:A9:7D:BF:E6:DE:12:60:3F:1D:AB:92:F9:98:C3:34
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/8Ge53HKpfb_m3hJgPx2rkvmYwzQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.176.72.0/22
Signature Algorithm: sha256WithRSAEncryption
61:15:81:30:dc:81:c5:74:8a:22:75:88:16:2c:5f:cb:2e:3d:
41:99:d5:a3:39:d6:ef:dc:2a:ae:a9:5e:6d:24:e1:0a:cc:24:
54:1e:1e:08:b8:f8:44:e7:23:fd:c8:ff:5b:89:d3:cb:b4:3c:
0a:64:52:ef:de:70:54:4f:f3:00:2f:67:31:8b:32:06:f4:46:
86:ce:78:01:38:69:b6:92:9f:cb:89:a5:28:a5:cb:6f:9a:c2:
13:e3:7b:aa:f7:76:70:d4:de:47:54:8d:70:be:2d:21:ac:c2:
cc:bc:fa:4c:55:0a:40:a1:1f:70:aa:be:f8:b5:69:4b:df:4f:
30:e3:e1:dd:81:e4:16:d0:4a:a7:21:45:fc:ad:f3:c4:0d:ba:
5d:c7:5e:5c:2b:fb:61:9f:2a:21:57:c2:73:40:89:cd:7c:40:
22:07:a5:66:4b:06:3b:bb:f8:a9:21:fc:e5:45:35:5f:a9:cf:
bc:5c:62:a4:32:7c:bd:66:34:f8:7b:f7:67:83:b0:1a:0d:48:
41:49:58:e0:76:7f:75:62:06:32:33:39:26:44:d7:79:f1:67:
b1:5c:af:f8:8f:fb:79:c3:7f:3f:c6:3d:9d:31:d9:84:05:f8:
5a:b6:94:66:be:b9:a9:09:81:86:30:86:6f:d6:09:ce:de:6d:
c1:5c:cb:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:22 2023 by rpki-client on console-fra.rpki-client.org