Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OjwFI7ynDY9zf1ig1_QgErm-J8s.roa
File: OjwFI7ynDY9zf1ig1_QgErm-J8s.roa (raw, json)
Hash identifier: VBPOSkNc99XrIY/BkYvEXve9lxUIK5vZzIYKbTmBmvs=
Subject key identifier: 3A:3C:05:23:BC:A7:0D:8F:73:7F:58:A0:D7:F4:20:12:B9:BE:27:CB
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2361
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OjwFI7ynDY9zf1ig1_QgErm-J8s.roa
Signing time: Fri 25 Nov 2022 04:43:30 +0000
ROA not before: Fri 25 Nov 2022 04:43:30 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 180.176.216.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9057 (0x2361)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:43:30 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3A3C0523BCA70D8F737F58A0D7F42012B9BE27CB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:27:0c:87:7d:aa:33:31:dc:87:71:80:1f:97:
ff:3a:ed:88:1b:2e:e9:d6:4d:e2:1f:78:dd:49:ab:
02:57:60:9a:bf:70:1d:a5:9d:5a:2b:5f:b6:25:10:
47:a4:92:e1:19:d7:ac:b9:e9:9a:7c:f6:e4:de:6e:
af:05:1c:0a:f1:56:0b:3a:a0:e7:35:e0:06:c1:d9:
45:5c:f5:99:21:1a:be:d2:a0:3d:c1:d7:a6:87:eb:
a0:d7:e4:8a:4d:12:2c:8a:4c:5b:72:a6:22:9b:68:
0a:d6:7e:f7:94:24:66:bd:95:47:71:cd:3f:34:e5:
b6:17:af:e1:82:d1:30:aa:8f:d6:e9:4c:15:7d:ed:
04:eb:d9:54:20:51:96:de:5f:f4:b6:d3:aa:1a:0e:
f2:f9:62:2e:a5:a1:f6:75:08:9a:3a:c9:ab:82:af:
97:75:7c:e3:e0:d1:d6:c8:74:6c:21:00:12:1e:b2:
f9:4a:1f:6d:81:c1:eb:32:86:4c:af:a3:df:1e:f5:
aa:36:36:8f:ed:d0:b4:49:14:cd:1a:a9:7b:33:41:
5b:c5:8a:95:d7:36:8e:95:c6:7f:77:ca:0e:20:79:
69:66:cf:0f:6f:52:b0:c7:4b:66:9e:ac:9f:6b:93:
c7:b6:4d:68:0a:80:fd:f6:f6:99:bb:7e:65:e6:e2:
1d:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:3C:05:23:BC:A7:0D:8F:73:7F:58:A0:D7:F4:20:12:B9:BE:27:CB
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OjwFI7ynDY9zf1ig1_QgErm-J8s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.176.216.0/21
Signature Algorithm: sha256WithRSAEncryption
2b:a6:2f:fa:01:f6:54:3c:c0:3b:f8:7d:d0:35:22:f8:b2:97:
ba:76:13:b9:7c:12:74:3f:ea:1c:6a:1f:47:75:1a:13:4e:39:
72:ea:35:4a:fd:50:86:e1:54:8a:bf:fb:b5:5b:12:24:de:0f:
f4:22:dd:60:23:87:78:14:20:9d:6d:2d:19:20:7c:c1:12:65:
a2:89:97:76:16:7a:cf:9f:0b:18:da:3a:62:6d:b0:71:f6:a6:
8e:c2:93:f3:d7:e1:71:eb:aa:11:63:1f:c2:67:42:24:df:be:
04:cb:de:a9:fc:b5:32:48:1b:f8:a0:d1:90:0e:75:59:e6:c2:
37:c4:e7:fd:d6:69:2c:bf:64:be:b5:48:36:de:90:18:6e:d9:
4d:23:9b:76:a8:bf:c1:0c:b2:eb:e6:13:6d:f4:a8:aa:25:1f:
87:a3:c3:fe:cb:10:46:5e:36:39:b0:9a:b2:8a:95:5e:77:3b:
13:73:93:55:bf:cc:08:0c:d0:77:95:a4:af:99:58:64:2d:28:
f6:88:b3:22:ec:b7:15:a5:af:3c:46:06:49:e6:8c:ae:8c:41:
52:39:2a:6f:e1:05:25:e1:99:c4:92:c9:94:61:eb:92:a5:59:
2c:f7:5e:8b:c8:3d:5f:b4:d2:3a:e7:75:82:8c:fe:d0:b0:a2:
40:23:c0:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:30 2024 by rpki-client on console-ams.rpki-client.org