Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/MTe0LahCBDuyml5J_3qSPRndSps.roa
File: MTe0LahCBDuyml5J_3qSPRndSps.roa (raw, json)
Hash identifier: IqXN0LLS5t/lNrAHLpR3PTVyc/PkcRita/dYKjCd4xs=
Subject key identifier: 31:37:B4:2D:A8:42:04:3B:B2:9A:5E:49:FF:7A:92:3D:19:DD:4A:9B
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/MTe0LahCBDuyml5J_3qSPRndSps.roa
Signing time: Thu 15 Sep 2022 02:45:59 +0000
ROA not before: Thu 15 Sep 2022 02:45:59 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 180.176.248.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8096 (0x1fa0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:45:59 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3137B42DA842043BB29A5E49FF7A923D19DD4A9B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:34:8e:d8:30:03:10:ce:32:bb:67:61:e5:b5:
0c:2c:76:1d:b5:d3:68:76:67:75:a6:c6:3c:a7:b5:
39:84:d3:2c:c2:9a:97:fb:1b:32:1b:b8:ce:7a:94:
61:d3:01:17:e1:34:1a:7b:fe:25:44:c7:26:a6:0e:
9a:23:09:1a:29:a6:8d:75:ac:3e:1f:42:ea:b6:bd:
b1:83:5d:0b:8c:95:0a:48:73:a0:eb:3d:7f:1c:95:
1f:bc:4e:b1:db:13:cb:66:53:9f:8d:42:7e:5f:3b:
0f:6a:44:83:6c:bd:c5:38:3e:fc:18:2c:e4:ed:01:
f4:39:98:99:bb:21:fd:64:23:fe:08:ea:47:70:68:
85:2b:b3:02:41:d1:38:e2:1b:c3:14:e0:c1:b9:d8:
ef:d0:62:9f:c4:26:26:e7:e4:07:9b:89:a0:23:f1:
e9:78:83:83:76:4c:06:aa:40:35:57:7d:72:e0:1c:
12:ab:b4:ae:a6:8b:e9:4c:61:d6:40:29:87:c8:91:
1b:2e:04:1f:08:d7:f1:0d:16:69:e0:c0:3a:3a:51:
ef:d8:b4:77:a3:19:22:a9:a7:6e:80:5a:40:ea:ce:
98:6f:dd:35:a3:bf:8f:79:77:bb:e0:63:2c:e0:c0:
13:7f:7b:dc:0e:62:e9:5e:52:77:a4:b7:7e:82:02:
0f:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:37:B4:2D:A8:42:04:3B:B2:9A:5E:49:FF:7A:92:3D:19:DD:4A:9B
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/MTe0LahCBDuyml5J_3qSPRndSps.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.176.248.0/21
Signature Algorithm: sha256WithRSAEncryption
9d:c6:18:c4:60:91:6b:c7:6c:06:40:0d:dc:7c:ae:e6:f4:57:
23:77:80:b7:0d:d7:d0:7d:dc:39:55:03:70:60:39:94:a6:c7:
36:c6:5c:67:ce:b2:3e:b6:54:76:26:d0:ea:25:3f:6d:08:ff:
ae:e1:51:d2:2d:82:bb:f5:3c:bf:14:90:6c:e1:01:d7:af:a9:
55:53:5e:25:6a:9c:7e:14:72:42:d8:be:58:e2:50:32:bc:c4:
83:26:bd:25:f4:f5:b5:4f:7c:72:e5:cc:f6:9e:5b:e5:cc:81:
f6:04:f1:b4:27:a9:38:03:67:5d:7f:b8:b7:29:c3:42:6a:fd:
5b:da:2a:1e:bb:c4:81:fc:ed:5b:4a:7c:57:1a:21:4f:b1:3a:
78:2c:c8:99:a9:23:58:a6:ba:f2:5f:6e:fb:39:88:eb:4c:3e:
00:75:bd:27:50:d5:65:fc:d6:80:bd:ad:a6:52:8a:d7:c8:a1:
00:f5:15:e8:d5:6a:9b:9c:0e:43:3b:f9:eb:19:ba:83:c6:de:
3f:62:66:8d:d4:0e:b0:c7:8f:78:43:ce:a4:06:59:4f:94:b3:
a2:a7:9f:c8:0a:fb:84:4f:39:f9:ba:17:74:aa:31:b5:9c:3f:
7d:cd:97:64:e4:83:5f:8a:29:c3:cc:4f:d1:f3:22:71:60:c9:
9d:97:f0:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:51 2024 by rpki-client on console-fra.rpki-client.org