Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OIIAPNgYrI1ytWEWTdsn5p3EyBc.roa
File: OIIAPNgYrI1ytWEWTdsn5p3EyBc.roa (raw, json)
Hash identifier: ds7sMqirak0p71C5Vkf9AVdsnb6+v4DxVjExyauD9S4=
Subject key identifier: 38:82:00:3C:D8:18:AC:8D:72:B5:61:16:4D:DB:27:E6:9D:C4:C8:17
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 15DB
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OIIAPNgYrI1ytWEWTdsn5p3EyBc.roa
Signing time: Sun 07 Feb 2021 12:06:54 +0000
ROA not before: Sun 07 Feb 2021 12:06:54 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 180.176.152.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5595 (0x15db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:06:54 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3882003CD818AC8D72B561164DDB27E69DC4C817
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:12:54:dc:cb:32:7d:28:c6:e2:05:78:e1:4b:
c9:15:93:bf:21:9d:0a:bd:cf:76:52:49:90:3c:2b:
18:00:56:4c:59:b4:de:7b:d5:f5:89:fe:b1:0e:8e:
14:44:83:ac:da:3b:72:d4:26:dd:f9:74:74:8a:61:
8d:bf:56:ee:b2:30:b0:3c:75:b6:c2:96:a3:5c:3d:
f8:a9:98:2d:b9:56:9b:69:4d:7e:18:8f:86:2e:19:
32:e9:97:59:8f:17:dc:9e:f3:c6:ed:2a:16:72:7c:
f1:fb:d1:d4:a5:d8:63:7c:91:23:08:1e:59:48:f5:
f5:69:67:51:be:aa:c9:76:c8:4d:9d:31:52:ba:44:
59:b7:99:de:c7:50:ed:65:a7:74:56:05:71:20:bd:
d8:d0:a9:56:c6:b4:a0:f6:18:7d:33:58:91:7e:8c:
62:ac:af:38:34:ce:0e:d1:e8:f7:66:c0:cd:6e:be:
d7:3a:eb:4a:a7:7c:1d:24:43:c5:b6:d4:d1:71:b1:
fc:58:06:d3:82:ee:c9:05:c0:f6:71:27:b1:ce:07:
ef:c3:05:e8:4c:19:be:ce:48:89:ed:3d:0d:83:c8:
b1:c6:f9:52:55:42:e6:2c:78:84:af:4d:18:f8:be:
6d:f4:df:1d:5f:28:34:d0:8b:f2:ab:7c:40:fd:c2:
bf:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:82:00:3C:D8:18:AC:8D:72:B5:61:16:4D:DB:27:E6:9D:C4:C8:17
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OIIAPNgYrI1ytWEWTdsn5p3EyBc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.176.152.0/22
Signature Algorithm: sha256WithRSAEncryption
83:77:72:96:8d:9c:32:06:b7:08:3d:51:0e:72:87:03:9c:15:
b8:15:7b:ca:3b:61:43:a2:4d:88:18:cd:1a:50:c7:62:58:c0:
d6:1b:30:5c:8c:21:37:e4:82:c1:c0:91:ea:94:31:f0:f4:ca:
d2:d7:05:d2:f6:8a:5d:00:98:43:5e:d2:7d:56:e3:9f:42:d3:
3a:6d:e0:3f:43:5e:e3:8d:9f:0f:72:08:3c:a9:90:b0:15:3b:
cd:c9:d7:1a:60:e7:df:40:23:30:aa:f7:b2:14:e1:65:02:fa:
df:6b:b0:b0:3d:0f:88:9e:61:d0:d6:a9:e2:28:b3:41:2e:fe:
6a:e0:11:8a:95:8d:89:6e:1c:4c:31:71:65:c2:6a:22:ee:07:
ca:7d:8f:63:41:c4:0c:6f:6e:28:5c:98:c6:5e:55:aa:3c:ed:
37:74:d1:07:a3:e0:1d:9d:fd:1e:95:1d:cf:50:87:f8:9b:69:
41:46:78:13:03:cb:66:0b:a8:a5:d8:f0:73:07:f4:31:2b:02:
de:5d:40:c5:86:e2:6f:d5:d6:e9:db:3c:e7:92:0c:de:dd:94:
6a:97:bb:69:cf:6a:7a:67:29:16:a5:fa:ce:16:8d:88:ac:61:
e0:26:8e:5b:d9:2c:ee:37:3e:0e:cb:e1:e9:6f:6d:db:72:87:
31:2b:24:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:18 2023 by rpki-client on console-ams.rpki-client.org