Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Gsdb7OUqU6cHbQZKxfD3n7UFrTk.roa
File: Gsdb7OUqU6cHbQZKxfD3n7UFrTk.roa (raw, json)
Hash identifier: 9umE5aLfZTUxFUCMwaxltDJcnCWhhJBH9+8EyL8nC6Q=
Subject key identifier: 1A:C7:5B:EC:E5:2A:53:A7:07:6D:06:4A:C5:F0:F7:9F:B5:05:AD:39
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 0D42
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Gsdb7OUqU6cHbQZKxfD3n7UFrTk.roa
Signing time: Tue 29 Sep 2020 09:54:23 +0000
ROA not before: Tue 29 Sep 2020 09:54:23 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 180.176.216.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3394 (0xd42)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 09:54:23 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=1AC75BECE52A53A7076D064AC5F0F79FB505AD39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:29:02:40:89:74:29:ad:2e:d7:ea:3b:85:75:
fe:c9:db:09:d3:f9:79:ff:6d:d6:03:c0:f3:d4:b4:
fb:59:4e:30:24:f8:23:99:9e:b8:cd:fc:28:2f:4d:
93:17:d3:b0:a1:9d:b6:9b:de:46:dc:ef:89:7c:4b:
c3:41:28:d5:59:dd:c0:61:89:d2:75:22:4e:20:ea:
9b:5d:b0:b3:f8:0b:4a:f4:72:86:23:2f:6c:0c:83:
a7:24:ca:c0:db:f2:ab:3d:a3:13:50:03:3f:ca:06:
dc:f7:20:f7:4e:86:ca:fd:59:ec:f6:97:91:42:cb:
fa:c0:d7:7f:94:9d:e6:d6:61:9e:79:b8:35:cf:21:
65:75:08:2f:35:1b:ba:f4:18:07:09:42:ee:96:0a:
0f:bc:89:70:44:ea:ea:c4:c8:35:b6:fb:7d:20:49:
63:00:54:dc:f3:22:e6:54:d1:fb:e0:63:f0:c1:da:
5c:42:05:d5:ee:14:27:e8:b7:4a:0d:bf:02:14:ae:
68:b7:0a:85:19:a4:dc:5e:91:d3:e3:60:87:06:5e:
ab:47:ab:33:9b:85:5b:e9:e1:70:71:5d:32:a0:5b:
a3:46:da:cb:40:d7:1f:37:49:7b:2e:c3:4d:fb:c9:
37:e8:1d:a7:d3:d5:5a:c2:1f:53:a3:3b:0c:6e:c3:
74:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:C7:5B:EC:E5:2A:53:A7:07:6D:06:4A:C5:F0:F7:9F:B5:05:AD:39
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Gsdb7OUqU6cHbQZKxfD3n7UFrTk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.176.216.0/21
Signature Algorithm: sha256WithRSAEncryption
a1:0d:84:df:a8:de:4b:13:ab:48:c6:fa:65:f3:1b:2f:30:41:
81:74:82:ee:e1:17:b4:c0:25:93:9b:e6:c9:ca:20:c3:db:4c:
01:8f:ee:65:32:4b:8b:c0:68:ea:2f:8f:5e:9b:3a:b2:8a:80:
5e:23:f7:99:a2:22:2c:70:9f:ce:f1:98:89:09:73:4c:1f:14:
a1:c8:0c:c4:02:78:46:55:a9:a4:06:b4:37:98:db:99:b4:68:
d5:02:30:bb:df:23:42:97:63:52:d1:3c:02:55:89:30:0c:e6:
d2:d0:27:b4:c3:44:60:29:a8:57:e6:51:ea:c8:b0:13:99:9c:
bc:ef:c5:81:2c:74:12:e1:76:5d:f7:b9:c7:77:45:a7:6e:53:
47:ab:18:74:a2:b5:f4:eb:e3:02:e7:2d:4c:46:6b:fa:85:93:
6a:40:43:c4:82:47:8d:90:06:f7:6b:51:99:b8:55:03:d2:84:
a7:3e:28:5b:3c:60:29:c5:b3:bf:25:ec:40:41:ba:fd:49:62:
e8:77:44:ab:bb:74:27:8f:60:91:3d:46:76:a7:ff:27:ac:18:
64:c7:63:09:d4:28:ba:f4:35:0f:25:f9:c0:86:ba:3f:3e:36:
2d:a5:6b:82:f4:7c:ef:41:9b:8f:0b:09:be:25:18:a1:9f:79:
86:d3:66:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:27 2024 by rpki-client on console-ams.rpki-client.org