Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/AO9JBb_lz9Ax2VPTk1CZRSmHj7E.roa
File: AO9JBb_lz9Ax2VPTk1CZRSmHj7E.roa (raw, json)
Hash identifier: O0Y7OYFAgP9K+id9TBvop8ExRYxQjWutYZQEAEgGZEM=
Subject key identifier: 00:EF:49:05:BF:E5:CF:D0:31:D9:53:D3:93:50:99:45:29:87:8F:B1
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 223C
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/AO9JBb_lz9Ax2VPTk1CZRSmHj7E.roa
Signing time: Fri 25 Nov 2022 04:40:56 +0000
ROA not before: Fri 25 Nov 2022 04:40:56 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 180.176.68.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8764 (0x223c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:40:56 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=00EF4905BFE5CFD031D953D39350994529878FB1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:a4:c7:bc:d4:29:e1:c9:21:a4:65:8f:f9:7a:
a8:ca:28:d6:ea:c3:72:1c:25:48:60:ef:cb:7a:18:
63:7f:03:97:4d:b9:04:b8:87:79:84:8f:4a:37:8f:
0d:47:42:ab:02:c8:30:60:85:85:8e:8e:6c:f7:36:
71:cb:cc:07:2e:26:f5:70:fc:c4:39:b9:d8:18:eb:
d6:23:b4:ed:96:70:36:5a:aa:19:e9:4f:e9:76:34:
70:7f:1c:0d:27:9b:ab:df:6a:cd:73:2a:ec:39:c9:
3e:8d:2c:99:71:0b:1e:ba:24:5c:a0:8d:e8:3f:ed:
18:21:7b:da:5f:d6:bd:3c:17:ae:07:53:7f:a4:9e:
2e:46:92:15:d0:43:a4:2b:a6:ce:77:ea:cb:48:70:
3d:ee:6a:71:3f:fe:91:ce:42:40:84:c3:23:85:99:
9e:9a:f6:75:6a:44:11:1b:50:84:6a:52:c6:e7:c0:
04:5f:1c:33:c2:f7:62:a7:73:f1:a8:99:7d:9d:6d:
5c:2f:23:1e:55:ab:1d:f7:6a:75:09:d1:32:94:9c:
be:8e:90:cf:9b:d1:5e:d2:8e:3a:55:61:16:13:3c:
56:8e:63:19:87:1c:a2:2d:81:0c:f7:94:9b:95:2a:
c8:d5:24:0e:1f:98:f8:e8:76:dc:e4:c9:d6:4f:2d:
20:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:EF:49:05:BF:E5:CF:D0:31:D9:53:D3:93:50:99:45:29:87:8F:B1
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/AO9JBb_lz9Ax2VPTk1CZRSmHj7E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.176.68.0/22
Signature Algorithm: sha256WithRSAEncryption
b6:2c:e0:b5:d5:f1:16:a0:c8:c2:5f:a5:dc:db:0f:47:26:de:
5d:a2:3a:9c:16:83:8b:fb:c7:2a:c5:13:90:bf:41:5c:3c:26:
a6:f2:85:ac:a9:9e:33:51:36:d2:e8:c0:62:6f:ec:30:16:91:
0e:59:87:53:3e:f9:e1:14:2a:05:5c:2f:9c:db:9c:ba:63:da:
78:f6:6b:57:0e:2c:be:ec:cd:0b:09:05:f7:c5:79:a5:55:4e:
0c:30:45:23:d0:80:89:be:de:8e:43:59:bf:ab:cf:49:ea:04:
e4:e0:62:d0:9a:1d:a5:de:aa:14:33:5a:97:43:be:6b:ae:c1:
3e:30:c2:79:20:9a:ef:8a:16:4b:68:f3:df:ad:09:0d:0f:78:
d2:a0:7f:09:01:c4:0b:56:9f:05:77:1a:78:97:e3:e0:0b:a3:
c2:9f:1d:ca:bf:4e:6f:39:af:9c:1f:24:b5:52:22:ea:09:23:
b1:0d:a3:ef:2c:c3:70:ab:63:11:7c:01:2d:7f:8e:29:d5:73:
80:26:0a:bf:0c:20:a2:83:48:26:6f:7e:7f:ae:85:8a:1f:32:
46:df:74:c9:dd:96:a8:72:6a:89:8b:f7:6a:65:5b:bf:2a:54:
f7:70:5b:92:99:b9:67:03:d5:1c:e3:78:d5:25:35:0b:14:5f:
79:d3:be:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:48 2024 by rpki-client on console-fra.rpki-client.org