Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NriiD3diR0fKit9T8p15-12PmSI.roa
File: NriiD3diR0fKit9T8p15-12PmSI.roa (raw, json)
Hash identifier: zXcXGzBnAOLerqjMZuD9m0CRfZG/4rl2DejwRMKL39I=
Subject key identifier: 36:B8:A2:0F:77:62:47:47:CA:8A:DF:53:F2:9D:79:FB:5D:8F:99:22
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 0F7D
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NriiD3diR0fKit9T8p15-12PmSI.roa
Signing time: Tue 29 Sep 2020 09:57:01 +0000
ROA not before: Tue 29 Sep 2020 09:57:01 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 180.176.236.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3965 (0xf7d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 09:57:01 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=36B8A20F77624747CA8ADF53F29D79FB5D8F9922
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:81:6c:2b:d5:d2:3d:d1:f9:24:be:e5:e1:72:
4d:28:00:20:f7:21:73:77:2c:99:de:8f:02:7e:a9:
45:34:d1:bc:1b:d4:8c:90:0e:5b:b6:79:88:76:40:
31:f8:bc:38:11:a9:f5:78:a3:fb:6d:0c:50:ee:87:
91:fa:bf:57:88:64:1d:d1:03:46:23:50:97:e2:d4:
2f:18:37:4b:4f:25:b5:2e:58:eb:79:91:cb:95:31:
ca:78:bf:87:61:dd:ba:b3:08:28:f6:93:ab:64:a9:
9b:ba:7c:09:76:24:84:d7:96:ff:18:fb:90:55:39:
09:6a:7e:ab:b0:6b:66:eb:ac:ec:3c:1b:58:dd:0d:
5a:6c:7e:ef:97:a5:85:b2:73:bc:6c:db:a9:58:95:
c7:be:04:00:b0:d9:a6:b5:3c:8f:d6:ed:be:0d:01:
d9:8f:a0:81:ef:d0:94:ca:65:df:57:45:b9:2f:aa:
f1:43:26:0d:7e:f2:f9:d8:1e:ec:af:1c:3e:c1:5d:
75:38:a7:5c:68:28:9b:73:85:26:5e:87:97:c4:d3:
e5:90:e2:3d:fd:ad:bd:45:9f:28:1b:a6:bd:cc:46:
ba:c9:cc:c3:3d:86:fe:70:d2:55:db:00:7c:5c:d1:
a0:9c:5f:a2:4a:de:ef:76:64:2d:d5:3f:7b:ad:b8:
fe:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:B8:A2:0F:77:62:47:47:CA:8A:DF:53:F2:9D:79:FB:5D:8F:99:22
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NriiD3diR0fKit9T8p15-12PmSI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.176.236.0/22
Signature Algorithm: sha256WithRSAEncryption
1a:49:f3:d3:6f:09:a9:5c:a2:18:47:cc:71:2d:f6:56:23:1f:
ff:b0:a7:41:b1:2a:2c:e5:e2:ba:d2:72:b9:61:f2:63:8a:1c:
4a:be:2c:98:94:9a:71:e3:85:6b:67:98:b2:50:59:72:87:2d:
e4:26:12:2e:01:e0:9d:70:12:a9:ef:31:46:15:5d:1a:ff:48:
78:41:aa:f5:f7:62:a0:bf:6d:40:19:68:ce:06:e4:9f:39:79:
ae:d6:ee:03:55:41:c9:49:21:4d:47:23:a8:6e:23:ed:b9:39:
45:ef:ff:78:42:fa:59:11:e2:42:8f:44:6f:ef:17:67:8a:04:
bc:a9:85:fa:60:77:f9:a9:3e:f5:b0:7d:ca:4b:a2:84:e7:15:
06:77:ad:a5:9a:2d:a0:bc:c6:96:e9:12:2d:22:0b:70:03:e4:
20:b7:10:38:25:c0:59:f4:10:3d:52:bc:bb:4d:64:f6:24:8e:
dc:b4:d0:f5:16:ef:76:3a:10:62:a3:4b:76:97:1d:ab:6f:7d:
9a:5c:8b:6e:56:13:97:f7:fc:4e:4b:a7:55:b0:ce:9d:bc:b9:
fb:0a:1a:84:31:8c:bc:b2:47:78:a6:d5:39:45:12:57:70:0c:
31:58:d2:7f:50:d9:74:73:7b:db:d4:36:29:c2:04:17:c4:79:
56:e9:ac:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:51 2024 by rpki-client on console-fra.rpki-client.org