Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OYU3AeVbnBxHixlB77OYW9as73o.roa
File: OYU3AeVbnBxHixlB77OYW9as73o.roa (raw, json)
Hash identifier: XWD+YTuSnhxZgxv6PI5tL0dnhqKYAHEE4qiifAoT/EI=
Subject key identifier: 39:85:37:01:E5:5B:9C:1C:47:8B:19:41:EF:B3:98:5B:D6:AC:EF:7A
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1CE6
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OYU3AeVbnBxHixlB77OYW9as73o.roa
Signing time: Wed 29 Sep 2021 02:48:21 +0000
ROA not before: Wed 29 Sep 2021 02:48:21 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 180.176.76.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7398 (0x1ce6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:48:21 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=39853701E55B9C1C478B1941EFB3985BD6ACEF7A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:44:f1:3e:c4:cd:68:95:4c:c5:e5:20:36:c5:
c9:87:27:98:2b:5d:73:10:a3:d7:3b:fd:18:90:9f:
41:bc:47:8e:ef:e1:6e:98:88:91:73:39:a3:ef:6b:
b6:c0:1f:91:51:f2:12:8c:bd:ed:58:95:94:5b:3a:
1f:d9:0e:94:5b:fa:9c:2b:a0:e4:d8:81:d0:06:29:
70:80:ab:16:05:b9:32:ad:cd:42:48:b5:99:87:de:
f2:e1:9c:5a:19:a8:6b:61:56:8e:ae:49:cd:5c:35:
6e:f3:89:5a:3e:fe:89:ae:cf:de:7b:77:a7:65:5d:
8e:04:24:59:d5:81:3f:3e:c3:a5:22:ad:6a:71:59:
0b:17:a5:d4:58:c8:17:cf:ab:ad:32:12:35:62:dc:
2b:1f:d3:74:8e:55:13:60:5c:a4:5b:b8:37:d0:32:
d1:a0:16:c0:c0:2a:99:20:1d:1f:b8:f7:0c:4b:93:
25:3a:04:ed:b2:0d:4a:57:4f:78:6a:0b:ec:67:ad:
5b:0a:58:05:10:86:04:af:e4:06:60:7e:4e:ff:d8:
b9:5e:4e:91:86:29:eb:62:1c:fc:2f:d9:54:04:bf:
ee:c1:71:2a:b9:49:fc:62:46:c9:15:33:e0:dd:7c:
b9:3f:11:09:7b:ff:c9:72:82:f2:ac:75:b2:ef:b2:
d5:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:85:37:01:E5:5B:9C:1C:47:8B:19:41:EF:B3:98:5B:D6:AC:EF:7A
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OYU3AeVbnBxHixlB77OYW9as73o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.176.76.0/22
Signature Algorithm: sha256WithRSAEncryption
5e:68:29:47:5c:74:49:80:25:67:03:31:13:e9:a6:f4:3f:ae:
7f:c4:a8:d2:5d:b1:36:9d:70:6b:c3:ab:09:26:0e:e9:19:63:
ef:8b:fb:8f:79:98:f1:d8:5a:48:fd:ce:ed:81:34:eb:d2:7a:
57:f9:2a:c0:a6:39:3d:41:bd:22:e3:5f:f1:7d:41:3d:63:a5:
8d:5f:81:cc:8d:ef:c4:db:00:19:00:32:3a:61:ea:3a:ea:17:
e6:85:51:43:d4:2c:25:f8:d1:7c:4c:4c:ac:5c:c2:fd:c9:2d:
42:c2:13:c0:d8:5e:c9:5d:74:1c:3b:62:9c:98:20:57:3b:41:
05:52:64:f3:36:ff:5e:56:b7:c2:5d:63:7c:81:7e:30:b7:c7:
d9:c4:29:da:93:81:1a:e1:03:bc:6f:58:1f:54:ec:66:aa:18:
b8:98:34:cf:1d:37:c2:06:4e:ce:ea:0e:66:e3:f9:65:e7:13:
3b:ec:83:5e:f7:0c:76:14:11:b6:55:2d:90:13:80:05:91:cb:
a7:eb:50:d2:bd:72:25:02:42:d4:1c:6f:f4:03:5f:85:b2:ec:
9d:0e:f9:ab:41:13:5f:20:00:0c:ca:86:e6:c2:73:ae:76:99:
d6:d0:b9:43:77:34:8d:ee:b5:0d:f7:5c:8a:e8:21:81:84:60:
29:5f:4d:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:52 2024 by rpki-client on console-fra.rpki-client.org