Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NlwFvx9vP5iWe67uzvTcVFR1fnE.roa
File: NlwFvx9vP5iWe67uzvTcVFR1fnE.roa (raw, json)
Hash identifier: 726YKb+135L4HxOEJYOn8xJVKDqmKMUjd0tkNDJFeNo=
Subject key identifier: 36:5C:05:BF:1F:6F:3F:98:96:7B:AE:EE:CE:F4:DC:54:54:75:7E:71
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 220D
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NlwFvx9vP5iWe67uzvTcVFR1fnE.roa
Signing time: Fri 25 Nov 2022 04:40:42 +0000
ROA not before: Fri 25 Nov 2022 04:40:42 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 180.176.232.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8717 (0x220d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:40:42 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=365C05BF1F6F3F98967BAEEECEF4DC5454757E71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:4f:19:92:dd:c1:48:81:bd:6f:fd:c9:23:95:
be:94:75:ca:1a:df:56:b6:32:83:0e:51:d6:b1:7d:
77:b2:2e:97:bd:c1:45:07:54:e8:47:02:27:5a:d7:
05:85:84:b9:d6:e6:42:28:66:9a:91:07:04:b5:03:
9f:9b:36:86:83:51:ff:b9:bd:18:6c:f7:12:3c:33:
1c:a1:d2:c5:09:4f:6d:60:f9:60:24:8d:d9:7a:34:
51:d8:d2:c9:da:9b:3a:dd:be:eb:0c:08:97:54:2a:
80:0b:37:a1:89:34:c2:88:51:4a:c5:b0:b6:57:cb:
af:80:4b:2b:5c:ba:4f:f3:88:3d:1e:c7:e6:e5:d2:
5c:ec:5d:bb:11:ec:f6:00:78:65:46:6e:ff:46:fe:
ea:59:db:d7:d8:96:b0:7e:30:c3:e3:d8:2f:67:29:
6a:b6:27:ed:c8:df:4b:3c:4f:ce:8a:35:26:b6:4e:
1b:f5:fd:29:7b:a4:7e:91:2b:6d:2a:87:8c:a5:3a:
0f:65:41:59:fc:dc:cc:cd:b3:a6:fc:e0:89:4c:86:
0a:76:4b:e2:5a:00:17:9c:c8:4f:4f:a1:a8:6d:db:
af:f9:1d:8e:9b:c0:93:16:29:32:ce:a6:ef:e8:de:
a5:96:3d:08:45:fd:65:d5:21:15:b5:18:22:78:85:
af:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:5C:05:BF:1F:6F:3F:98:96:7B:AE:EE:CE:F4:DC:54:54:75:7E:71
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NlwFvx9vP5iWe67uzvTcVFR1fnE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.176.232.0/22
Signature Algorithm: sha256WithRSAEncryption
02:e5:9e:77:87:a2:3c:e6:7d:34:97:93:47:3e:3a:2a:77:fe:
fc:75:40:51:33:7c:69:86:1e:c5:9e:c2:df:69:a4:a3:79:b4:
33:43:0e:ec:53:72:ea:d9:2d:bb:84:f5:0a:1b:e7:87:85:ae:
97:45:2f:c3:d2:87:0a:05:24:a5:98:fe:4d:e5:9c:8c:13:04:
d2:1d:35:06:95:d6:4e:89:83:a3:0a:34:dc:2d:e4:a8:36:b9:
ce:e4:50:4d:4b:9f:b6:8e:99:e3:58:91:af:03:6d:ad:87:f0:
9e:a5:2c:d7:09:f8:e2:5f:c4:9c:5d:c5:bf:9c:d9:cd:42:98:
94:a6:ee:fe:3f:8c:66:5b:55:4f:80:47:77:32:3b:c1:11:30:
5e:62:d5:f0:51:4c:4b:1b:be:90:14:67:62:6c:fe:c3:19:45:
37:c6:6d:32:69:f8:21:2e:09:d4:a3:fd:fb:23:36:58:c8:8d:
ae:35:1b:f0:6e:7e:d9:d6:0e:00:d0:a2:24:5e:02:45:fd:e2:
68:43:88:7f:86:5b:53:39:b4:bd:a8:58:6e:8d:ad:09:6c:9d:
47:77:4b:93:d7:46:40:64:cf:d3:1f:2d:73:92:ae:35:6b:47:
a2:96:e5:24:78:8b:76:c5:4d:28:9c:29:75:d3:37:ac:cc:ca:
c8:cf:0b:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:29 2024 by rpki-client on console-ams.rpki-client.org