Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NYhzT2cBWV0mA54_uMcqy8SWxds.roa
File: NYhzT2cBWV0mA54_uMcqy8SWxds.roa (raw, json)
Hash identifier: RSx2xBtfsCp/el79miAu1sKSXflIDYezPMVWoiyHd+k=
Subject key identifier: 35:88:73:4F:67:01:59:5D:26:03:9E:3F:B8:C7:2A:CB:C4:96:C5:DB
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1A79
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NYhzT2cBWV0mA54_uMcqy8SWxds.roa
Signing time: Wed 29 Sep 2021 02:45:23 +0000
ROA not before: Wed 29 Sep 2021 02:45:23 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 180.177.64.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6777 (0x1a79)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:45:23 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=3588734F6701595D26039E3FB8C72ACBC496C5DB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:0f:58:11:57:bb:ca:3a:69:21:37:cd:f1:5e:
02:27:e6:77:2e:37:ec:ea:69:ac:92:42:04:51:96:
fa:f1:a9:6f:96:d1:e9:1a:86:18:44:07:02:56:f7:
66:7d:e8:2b:28:60:67:36:64:78:09:1f:58:3c:bd:
67:e5:c7:99:f2:40:cc:25:88:2c:66:69:4e:d5:47:
94:10:38:81:41:a8:f5:61:96:56:7b:8b:06:9e:01:
01:bd:78:84:88:52:9f:1d:78:03:9d:cb:cd:0d:ae:
a2:c6:b1:27:ad:ca:6b:6b:23:69:2b:7c:b2:42:d0:
e4:45:ee:3b:34:b6:52:b2:0d:4d:77:3d:dd:a6:a3:
27:41:1d:c7:10:4b:55:dc:4b:03:ec:77:26:42:06:
8c:38:97:17:9a:0e:1b:b7:86:6f:01:e7:81:de:83:
09:3a:5a:d2:f1:f5:43:92:00:64:7f:4c:c5:42:12:
64:15:86:07:4d:ec:ca:4d:ff:14:e2:6e:e6:f1:b3:
6f:f3:ac:f1:2a:f9:77:de:93:a8:cd:35:3f:6c:a2:
de:ce:fc:59:8a:7f:46:c9:a1:9a:97:80:d0:0a:5d:
6d:0a:80:e1:3c:d0:08:92:7e:66:ad:1b:1e:05:65:
e7:94:cc:80:26:3a:f3:4d:66:1e:de:01:cf:c6:0c:
96:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:88:73:4F:67:01:59:5D:26:03:9E:3F:B8:C7:2A:CB:C4:96:C5:DB
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NYhzT2cBWV0mA54_uMcqy8SWxds.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.177.64.0/21
Signature Algorithm: sha256WithRSAEncryption
31:72:1d:e9:75:be:8c:65:c0:e9:27:22:1f:52:37:4b:9a:4d:
55:05:e2:64:93:b6:a2:0b:93:c1:01:86:01:7e:77:33:9f:2e:
3f:f0:3a:3b:a8:d3:b1:9d:9f:70:ab:07:4e:ee:06:83:02:83:
93:3f:ab:44:cb:10:94:e9:0d:35:6d:dc:f9:34:47:b4:a8:65:
63:e4:14:df:d4:eb:38:2f:23:d9:2a:7b:21:70:45:1d:0e:1c:
69:48:be:22:b3:ac:87:d8:16:6c:3f:6f:ee:50:8b:f0:93:e5:
b0:8d:5d:ec:f0:7c:22:da:a8:51:45:36:66:31:15:24:7f:25:
00:4e:65:c6:71:c4:19:69:2c:c0:5e:41:ce:08:1b:4e:48:e6:
a8:f0:e0:e2:96:5d:89:76:bf:36:58:83:09:4e:59:66:43:1f:
89:5b:f2:3f:d1:5e:7f:40:73:f7:39:60:17:69:47:e0:91:be:
de:ec:c2:95:55:22:e6:60:f4:9a:4d:13:95:0b:5b:8a:ea:0a:
19:52:a8:d1:38:80:db:cc:9e:f7:c0:ce:16:96:84:31:df:b6:
2e:ae:23:32:0a:36:d1:2a:c8:ca:f5:03:4d:c1:7c:6f:b3:fc:
e9:a9:55:86:a3:bb:70:90:30:0f:54:79:b5:b5:30:d6:c8:a6:
02:b9:5b:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:29 2024 by rpki-client on console-ams.rpki-client.org