Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/CZt8OaAmjGKEVbpn_btlTyki7XI.roa
File: CZt8OaAmjGKEVbpn_btlTyki7XI.roa (raw, json)
Hash identifier: DshMBNxZxHyliDvzKbzWOUx9KWGRCdjPKBgWIjvzKlI=
Subject key identifier: 09:9B:7C:39:A0:26:8C:62:84:55:BA:67:FD:BB:65:4F:29:22:ED:72
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 169D
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/CZt8OaAmjGKEVbpn_btlTyki7XI.roa
Signing time: Sun 07 Feb 2021 12:13:10 +0000
ROA not before: Sun 07 Feb 2021 12:13:10 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 180.177.160.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5789 (0x169d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:13:10 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=099B7C39A0268C628455BA67FDBB654F2922ED72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:e2:2e:f5:79:ac:11:cc:8f:f7:c3:e0:90:59:
34:9b:76:f1:56:e7:12:64:99:68:e4:d3:31:bc:e3:
61:67:6c:15:0f:72:3a:e9:ea:ce:91:21:cd:55:e5:
2f:1b:98:02:00:36:e4:bf:cc:b3:73:f6:16:4c:55:
d3:35:b4:b4:1c:5f:08:57:64:fc:11:14:01:70:65:
95:05:b4:aa:8a:88:b0:8b:70:0e:04:99:8a:da:f9:
fa:42:87:35:46:a6:a7:82:c5:d9:d0:f4:8e:b2:c9:
5a:b6:9d:60:95:df:52:ba:ff:1a:0a:28:48:2f:b0:
dc:3f:b1:21:08:27:69:b0:36:be:84:85:28:aa:28:
6c:db:c1:02:36:df:34:13:d1:73:a8:9e:67:c4:81:
a0:a9:a4:15:c0:c6:1d:86:d8:59:62:d3:c5:cd:12:
25:05:eb:7b:b2:be:ee:c0:2b:c8:29:7b:b6:e3:83:
15:2e:06:cf:51:11:65:75:93:13:37:e4:08:0f:3a:
2e:bf:0b:ab:ad:af:70:f1:07:c1:a2:f0:9c:9c:99:
cc:2c:f3:25:4a:1e:8a:af:b0:93:f0:e5:ca:83:04:
b0:3e:cf:41:c3:52:8d:32:d0:d8:d3:15:64:87:b3:
1b:ff:24:2e:aa:7d:6f:57:91:3d:40:8f:4e:b9:64:
00:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:9B:7C:39:A0:26:8C:62:84:55:BA:67:FD:BB:65:4F:29:22:ED:72
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/CZt8OaAmjGKEVbpn_btlTyki7XI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.177.160.0/21
Signature Algorithm: sha256WithRSAEncryption
a6:19:3f:52:35:c8:a4:01:54:40:a8:76:85:8a:0e:7a:a5:e5:
20:f7:e0:01:72:46:43:e6:cd:fb:e9:c2:30:0f:d2:33:1d:f0:
06:36:dd:0f:81:64:9b:0d:4e:2c:78:03:bf:d8:13:8c:3c:e7:
c7:d1:30:c5:b8:21:eb:b7:56:f5:37:43:b9:57:bb:25:9f:30:
f7:79:fe:6f:bd:a9:0e:a8:e5:9d:b2:f5:4c:47:c9:a1:65:81:
3d:53:29:9d:f9:73:d8:2a:74:b4:31:cd:00:8f:84:78:4d:fd:
e1:a1:25:88:e7:e6:54:b1:b6:d1:de:38:72:35:44:51:72:d6:
b7:fd:f3:00:58:8b:bf:0b:9c:88:ad:b4:8d:3f:c5:df:3f:e6:
dc:9d:1d:8e:67:95:3a:a3:7e:45:4d:7c:ea:bd:3e:57:8e:4a:
0e:06:ff:9e:5f:15:db:ed:5c:f2:63:d2:95:6a:26:4b:61:fc:
f1:dc:10:fd:ba:20:33:a2:1c:0d:5f:77:6a:41:13:06:07:9c:
13:b8:85:73:43:a2:55:c0:ad:09:09:e8:ff:0b:14:44:95:14:
58:2c:2a:ab:ec:05:69:9e:13:37:ba:77:58:2f:51:3c:67:ce:
6b:2d:9b:4e:ab:72:e1:15:d6:ee:32:55:25:42:e8:6f:25:18:
60:45:b9:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:23 2023 by rpki-client on console-fra.rpki-client.org