Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/BM_o0Z8_MlkqqKuv6R4i1N2yPvA.roa
File: BM_o0Z8_MlkqqKuv6R4i1N2yPvA.roa (raw, json)
Hash identifier: MAaBtgRkJmXF9Pvf8y4xuAJC0q0Ws/QY3KAHq8ssiTs=
Subject key identifier: 04:CF:E8:D1:9F:3F:32:59:2A:A8:AB:AF:E9:1E:22:D4:DD:B2:3E:F0
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/BM_o0Z8_MlkqqKuv6R4i1N2yPvA.roa
Signing time: Thu 15 Sep 2022 02:52:29 +0000
ROA not before: Thu 15 Sep 2022 02:52:29 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 180.176.4.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8098 (0x1fa2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:52:29 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=04CFE8D19F3F32592AA8ABAFE91E22D4DDB23EF0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:63:f3:d5:07:aa:47:87:c9:de:8e:d3:84:dc:
dc:73:19:2e:39:64:a0:67:58:ef:7f:24:89:8c:89:
56:97:65:92:5b:ad:29:39:8a:9f:58:1b:62:13:63:
87:53:8c:8f:8a:10:8d:0b:a7:3f:ff:f3:bc:08:97:
c6:63:de:f6:58:20:52:cc:fc:24:20:b5:15:01:68:
31:26:94:a9:a1:75:82:d7:02:2f:5c:e2:2d:ad:28:
cd:02:b7:7a:cb:fc:47:bc:cd:9d:e6:fd:be:d5:18:
52:e5:8d:4b:25:74:16:ec:69:c1:36:fd:79:c5:2f:
21:27:51:43:85:82:55:bf:92:55:68:8d:32:c6:32:
0f:3b:c0:db:6f:a3:bb:1e:0c:61:a9:ab:37:7e:01:
fd:77:47:bf:67:41:01:b4:46:2e:c7:e9:37:94:4d:
ad:a2:81:0e:c1:b2:66:4d:48:3e:5a:02:0b:c4:92:
c6:04:cd:4f:47:20:32:6f:e8:75:cc:15:d1:7c:c5:
46:17:50:87:ac:99:d6:71:73:17:bb:08:e9:7d:d5:
8d:24:e5:3d:fc:ee:a2:57:d1:98:ff:45:b8:4f:28:
aa:6d:03:ba:c3:6c:dc:87:77:6a:95:cf:a4:91:e8:
74:d2:d8:97:95:74:db:07:81:47:ac:86:ab:aa:58:
7c:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:CF:E8:D1:9F:3F:32:59:2A:A8:AB:AF:E9:1E:22:D4:DD:B2:3E:F0
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/BM_o0Z8_MlkqqKuv6R4i1N2yPvA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.176.4.0/22
Signature Algorithm: sha256WithRSAEncryption
71:a6:c2:ac:a6:c4:c8:3f:cf:f7:00:2b:f0:7f:7e:38:d3:4b:
5d:53:28:7a:f3:9b:1c:ca:29:de:ae:a9:39:7a:9c:f8:e2:74:
1f:73:66:b1:54:c0:18:f5:1c:b9:ed:ae:ec:28:e9:b1:67:0e:
4c:e7:f1:5b:18:f2:ec:e4:6f:01:00:f4:04:c4:43:3f:f8:28:
3f:07:16:1f:57:e4:cb:17:e2:9a:c4:35:2b:d9:c5:61:73:b1:
61:b3:7b:00:8a:69:06:6e:37:f8:96:c8:0a:7f:cc:5d:41:3e:
43:f9:27:a4:5a:2d:5c:d8:5e:5f:c0:d2:97:bd:b8:f9:89:3b:
d2:fe:c4:c0:36:0a:ec:50:a3:08:4c:87:db:d7:61:83:2e:ef:
00:02:61:55:4c:bb:9e:13:7d:bf:2b:13:aa:58:ed:0c:ac:48:
89:66:92:67:97:47:f6:fd:d0:7f:4f:31:b2:0e:40:d1:89:32:
06:fa:b6:ff:ea:ec:9a:ae:d7:08:f8:d6:59:b5:d4:f3:20:8b:
d2:6e:c9:98:52:78:7c:ae:6c:e4:f5:6f:50:51:87:18:92:5c:
01:a6:87:2b:46:44:b4:fa:9d:a9:b9:53:b4:d4:f1:6f:b5:62:
33:d4:c9:cd:56:fd:c0:b1:cb:56:d3:4b:2d:cb:94:5b:ca:f8:
b0:cf:e2:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:48 2024 by rpki-client on console-fra.rpki-client.org