Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/HQPyZf7yqdVU6WYeOPkyobjNrX8.roa
File: HQPyZf7yqdVU6WYeOPkyobjNrX8.roa (raw, json)
Hash identifier: mhbtu91peZJH3dvsAZy0miEXHJyCT7aK3FmJpVqhyHQ=
Subject key identifier: 1D:03:F2:65:FE:F2:A9:D5:54:E9:66:1E:38:F9:32:A1:B8:CD:AD:7F
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/HQPyZf7yqdVU6WYeOPkyobjNrX8.roa
Signing time: Thu 15 Sep 2022 02:53:13 +0000
ROA not before: Thu 15 Sep 2022 02:53:13 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 180.177.124.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8098 (0x1fa2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:53:13 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=1D03F265FEF2A9D554E9661E38F932A1B8CDAD7F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:19:49:99:0f:88:69:87:93:9d:48:03:de:7f:
54:fe:93:ad:6d:e1:5c:23:15:97:0b:c2:65:43:dc:
c1:1a:d5:b2:87:79:e6:22:e9:54:5f:0c:db:86:80:
e2:9b:d1:27:d3:77:12:38:b0:65:84:d9:7f:91:e9:
6d:da:c1:e8:27:78:1e:a0:9e:96:6c:ed:a0:3f:ff:
85:ad:e6:dc:6f:ce:2f:24:d3:dc:65:42:b3:87:48:
b5:b8:22:8e:d1:1c:6b:63:1e:9f:ed:b7:d2:79:e9:
5a:ee:a6:57:8f:9a:0f:23:49:7c:37:87:58:b1:e1:
56:e1:a2:6e:de:2d:e9:ae:e0:63:e7:f4:2c:8d:c4:
5d:90:65:05:ac:86:9b:3c:35:7c:ca:1c:f7:5e:d3:
f8:b0:c6:94:cf:5f:4e:3c:ff:8d:6f:55:64:61:7d:
95:55:83:ba:93:5e:fd:42:7d:cc:47:53:02:59:d2:
16:d7:01:2c:59:a5:43:1f:a0:2a:f0:19:c3:f3:f6:
fe:c0:1a:6b:ab:63:f3:04:37:29:a4:05:a5:83:46:
c5:c3:f5:ec:12:c5:50:ee:1a:d5:40:72:aa:1c:1d:
eb:6e:5a:85:81:6d:aa:31:08:5f:a4:0b:70:01:e1:
dd:aa:71:91:ea:f3:17:3d:77:3c:45:73:35:5c:a7:
71:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:03:F2:65:FE:F2:A9:D5:54:E9:66:1E:38:F9:32:A1:B8:CD:AD:7F
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/HQPyZf7yqdVU6WYeOPkyobjNrX8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.177.124.0/23
Signature Algorithm: sha256WithRSAEncryption
a8:00:d0:f4:60:d7:f5:d7:6c:42:d4:92:40:70:ca:9c:45:f4:
16:d3:91:82:9c:fe:3b:da:12:2f:8a:71:4a:9a:84:6f:9d:f3:
cd:aa:03:b7:b1:11:ee:19:37:80:9e:1a:08:11:94:c8:45:e2:
1f:6a:88:89:9c:97:51:11:83:d1:82:b0:9c:ba:6b:1b:a4:e6:
80:a7:b9:da:7b:72:7c:77:21:53:4c:f1:1a:fa:bf:c4:49:1f:
38:c3:63:c9:0a:27:1a:06:55:b6:30:2e:28:6f:69:8d:54:3d:
c1:06:a1:f7:e1:52:44:ff:84:f1:a0:89:0f:36:47:3a:a2:0c:
01:6b:29:8c:5e:39:a1:aa:b2:e6:76:b7:c7:d0:c6:fd:a9:0b:
1d:27:ec:e1:df:7a:cc:92:58:50:28:97:d9:b0:0e:02:6b:9c:
c9:bf:3f:9e:d6:3b:87:23:39:5d:23:63:9a:bb:88:b3:28:86:
37:15:0f:bd:ac:59:10:25:96:8e:bb:b1:57:79:c2:c7:2a:66:
d4:53:99:1d:cb:66:de:e6:4e:ee:06:67:0b:be:78:36:2f:ae:
df:a4:da:9e:35:6d:95:33:73:d1:a2:03:70:b2:56:e1:3b:ca:
b5:e1:18:60:bd:69:78:0d:8d:76:d2:32:2f:a6:47:68:d5:35:
f4:52:93:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:50 2024 by rpki-client on console-fra.rpki-client.org