Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OKHQQsAm32Joban0X0drZA0E3zs.roa
File: OKHQQsAm32Joban0X0drZA0E3zs.roa (raw, json)
Hash identifier: gBykHwciNhnSIfFhYQzQsfc+tKIRg6vYPkU899FiZBQ=
Subject key identifier: 38:A1:D0:42:C0:26:DF:62:68:6D:A9:F4:5F:47:6B:64:0D:04:DF:3B
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 0D4F
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OKHQQsAm32Joban0X0drZA0E3zs.roa
Signing time: Tue 29 Sep 2020 09:54:26 +0000
ROA not before: Tue 29 Sep 2020 09:54:26 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 180.177.46.128/26 maxlen: 26
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3407 (0xd4f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 09:54:26 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=38A1D042C026DF62686DA9F45F476B640D04DF3B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:2f:be:f6:a7:d9:1a:d5:1a:69:86:44:8a:ff:
09:8d:64:ba:47:b8:11:4a:87:c6:e9:51:90:59:77:
f2:a5:57:3c:57:29:1a:6d:33:37:30:d9:38:61:d4:
4d:85:7f:f3:31:32:16:11:dc:bb:36:06:69:bb:8b:
a7:15:a7:16:7c:53:e0:e6:02:76:25:08:cc:24:b0:
27:62:1c:cd:9c:36:13:94:3d:70:a0:35:18:97:23:
a7:b8:88:a3:35:38:55:e6:8f:38:74:84:b9:1b:7d:
31:4e:83:a7:93:f8:51:39:71:e6:43:72:c0:95:06:
b6:29:09:fc:3e:5e:59:50:9d:08:ac:12:ad:b9:ae:
69:41:f6:58:d3:47:f0:45:1e:34:f8:d0:93:90:f2:
81:48:3a:9e:ba:67:eb:9b:3f:e0:d1:39:a4:85:d3:
3a:31:a1:8c:21:58:ee:23:85:42:70:35:85:97:23:
e0:3e:cd:62:05:e8:a3:cb:de:1d:3d:f5:c4:97:3b:
76:96:fc:86:c6:02:29:44:53:0e:ea:5e:fd:b9:ae:
28:d4:02:33:72:07:e1:13:1f:94:c0:35:7b:10:f2:
66:4a:2d:62:e8:84:0e:13:3b:c5:0e:aa:57:46:8e:
1e:00:77:9c:01:8a:a2:a6:d3:89:d8:5c:34:c1:e2:
d1:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:A1:D0:42:C0:26:DF:62:68:6D:A9:F4:5F:47:6B:64:0D:04:DF:3B
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OKHQQsAm32Joban0X0drZA0E3zs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.177.46.128/26
Signature Algorithm: sha256WithRSAEncryption
a9:6e:14:87:5c:d6:c9:7b:14:e9:3c:08:82:d1:50:fc:59:68:
bc:6c:87:1a:5c:d7:58:61:c0:40:4b:98:96:f6:f6:4d:30:ed:
e9:b7:d9:ba:46:f2:49:99:9c:84:9f:49:5e:f0:7f:f6:a1:77:
00:e3:f9:0d:99:0d:4f:b0:9a:3e:cd:47:e1:4e:6d:16:7b:2b:
da:24:cf:e2:26:dd:f5:d6:68:dd:21:a1:60:d7:84:ef:9c:9e:
4f:6e:9b:b4:b2:1f:90:3d:6c:f3:21:0e:c4:9d:eb:1c:9f:ef:
e3:17:78:4a:a9:25:87:11:2a:10:65:2a:e6:01:47:4e:02:da:
6d:53:9b:20:1e:92:88:bd:e3:e9:58:a1:49:e5:91:29:49:95:
16:f2:5b:46:72:d5:42:d9:1f:ac:44:9a:71:18:67:9a:5c:82:
ab:fd:ff:fb:f8:9d:7e:21:c4:0c:a9:a7:81:f3:76:9e:59:8e:
84:f9:42:f5:68:ba:67:d2:05:c6:a7:68:e3:28:89:18:6a:a8:
84:bf:10:d9:1f:20:ea:53:02:cf:a3:f6:91:c5:d9:b5:2d:dc:
da:0d:27:f4:bd:ec:65:ce:1f:aa:5f:2d:e7:11:e4:79:8f:6b:
fc:cb:3a:73:8e:f9:bb:ad:2b:4f:7a:0e:95:e7:ec:cf:ef:05:
05:77:2c:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:27 2023 by rpki-client on console-fra.rpki-client.org