Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/FkAnJEwTKS6mJXVcTmKLB0XoVUI.roa
File: FkAnJEwTKS6mJXVcTmKLB0XoVUI.roa (raw, json)
Hash identifier: 7/eZ0vXKYTxOE5dpZVR35OxWg7BVpe4JLIRCM/8i9wc=
Subject key identifier: 16:40:27:24:4C:13:29:2E:A6:25:75:5C:4E:62:8B:07:45:E8:55:42
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/FkAnJEwTKS6mJXVcTmKLB0XoVUI.roa
Signing time: Thu 15 Sep 2022 02:53:12 +0000
ROA not before: Thu 15 Sep 2022 02:53:12 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 180.177.220.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8098 (0x1fa2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:53:12 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=164027244C13292EA625755C4E628B0745E85542
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:00:20:70:47:81:8b:05:ef:91:43:97:2b:1c:
36:e1:fa:36:fa:59:72:84:6a:b2:d1:cd:89:5f:44:
4d:b2:e8:c2:c0:ac:fb:0d:fe:9b:20:99:89:d3:56:
a1:87:31:f8:be:a1:28:a4:3e:7c:ff:ed:98:0e:56:
96:2d:9c:f4:70:b8:d9:73:94:ff:4f:a2:36:7a:01:
a2:c3:91:53:40:39:48:89:ca:44:07:f2:15:70:c9:
f8:d2:e2:33:e9:f5:80:8a:65:45:52:33:60:b9:e7:
04:8f:d5:1d:ef:5a:ad:cf:d5:10:7e:cc:7d:96:1c:
8d:a7:90:3b:0a:02:c5:2b:c3:b7:cb:98:ec:fe:f8:
6c:6f:92:41:10:e7:ab:dd:f8:fa:e2:94:f7:2b:35:
c8:e5:67:dc:c6:6b:3f:e1:ea:40:28:44:63:d9:3b:
da:d0:5b:13:f3:d3:11:00:20:56:59:3c:f8:cb:5a:
c8:70:f6:10:19:50:aa:87:04:4d:d4:9d:fd:19:d2:
3d:d7:06:e8:f8:76:61:2f:02:8e:bb:96:7f:35:ec:
b1:5c:81:90:51:e7:89:d9:db:22:b3:d4:83:15:b0:
e2:82:ed:18:46:dc:ea:6c:ec:04:30:38:8e:7d:4c:
f6:c3:e8:ac:0f:d6:df:96:da:9b:84:53:ae:db:3f:
02:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:40:27:24:4C:13:29:2E:A6:25:75:5C:4E:62:8B:07:45:E8:55:42
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/FkAnJEwTKS6mJXVcTmKLB0XoVUI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.177.220.0/23
Signature Algorithm: sha256WithRSAEncryption
b9:32:9a:d2:79:5c:17:65:3f:c0:df:c8:19:cd:22:99:c0:69:
e8:f6:1b:85:41:7e:00:c2:4c:41:4f:a4:c3:dc:9a:27:d9:ba:
f6:31:6b:96:1e:7b:d3:61:01:33:d0:6a:cc:8b:d0:4c:20:63:
8e:77:42:3d:33:9b:3e:7d:bf:a5:e0:fb:6a:1f:2f:03:56:e9:
38:ff:c4:7f:11:8b:e2:6b:b6:d9:d0:22:5b:d4:e1:40:2f:26:
22:08:7f:10:eb:e6:ca:0d:7a:1b:15:88:90:21:6c:d1:09:42:
43:46:37:7b:57:74:73:00:ed:52:80:19:7f:4d:b3:39:a7:00:
c5:5a:ba:8b:30:9b:59:dd:ee:c9:43:98:c6:2b:6c:60:8c:64:
0b:28:bf:a1:53:75:a3:64:aa:e1:d7:81:a9:b0:bb:a9:42:03:
48:99:ad:ee:10:9c:e7:70:25:ed:16:43:73:e4:51:86:1e:59:
55:cb:69:11:ec:f3:1d:c6:d6:dc:83:4c:a6:40:5c:1c:d4:d6:
45:ae:5e:15:58:f1:02:46:f1:b9:fd:dc:74:98:89:93:e6:96:
0d:e7:b1:f2:34:2c:39:d2:b7:33:bd:5d:3a:83:4d:9e:89:55:
2d:ca:14:20:8d:55:63:52:82:56:a6:ea:fb:19:e4:be:7b:e6:
2f:d8:f7:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:50 2024 by rpki-client on console-fra.rpki-client.org