Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QzaF3OdLh2I56wj-OXOHs_uQcTk.roa
File: QzaF3OdLh2I56wj-OXOHs_uQcTk.roa (raw, json)
Hash identifier: IPZi75hQz7dTiz0/uuXSXOELs3O6e72PcioQC+ydfZw=
Subject key identifier: 43:36:85:DC:E7:4B:87:62:39:EB:08:FE:39:73:87:B3:FB:90:71:39
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1D0F
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QzaF3OdLh2I56wj-OXOHs_uQcTk.roa
Signing time: Wed 29 Sep 2021 02:48:33 +0000
ROA not before: Wed 29 Sep 2021 02:48:33 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 180.176.184.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7439 (0x1d0f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:48:33 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=433685DCE74B876239EB08FE397387B3FB907139
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:1d:13:87:7a:02:68:87:c6:d6:d1:51:8a:d8:
58:2f:58:e2:62:0d:32:d9:8a:54:32:4b:4d:cb:89:
7f:f4:43:9b:c6:2e:72:83:ba:8d:35:d2:5b:28:84:
0a:d6:6f:38:c6:90:82:a4:5d:e1:59:bb:f8:06:b5:
49:a8:6d:90:f2:8b:c1:2c:78:d4:21:3d:a8:c1:7f:
53:dc:e4:a9:6c:a9:27:fb:5f:be:f7:5c:58:1f:7f:
cd:d1:de:95:48:a8:a7:34:4b:54:75:44:ae:6c:be:
7f:04:a2:81:78:07:a9:e5:63:55:99:2e:45:65:ce:
e9:6e:64:c4:39:2b:0f:5f:67:2f:f3:34:b6:18:4c:
f3:6d:70:1f:d3:ed:41:fe:b0:d7:b2:63:d0:66:63:
77:52:d9:db:bc:3b:19:0b:19:fb:e7:64:4b:e8:19:
03:b2:58:a1:38:6d:4b:36:d0:dd:fd:18:e0:5e:11:
72:c1:17:34:18:a1:f3:3f:fb:73:5e:fa:f5:3c:ad:
f2:73:ae:26:e9:d7:03:7b:e6:69:9e:58:de:18:f5:
69:36:0b:b8:e3:82:59:70:e0:68:04:5d:1b:b7:bb:
4a:09:3b:04:f2:fc:5f:de:78:ae:a5:d4:5e:35:32:
e3:2a:b2:32:bf:bd:37:1d:9b:52:a8:27:08:09:0e:
f6:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:36:85:DC:E7:4B:87:62:39:EB:08:FE:39:73:87:B3:FB:90:71:39
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QzaF3OdLh2I56wj-OXOHs_uQcTk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.176.184.0/22
Signature Algorithm: sha256WithRSAEncryption
a6:7d:d0:12:c6:e3:26:d2:c2:cd:36:ef:86:86:01:9d:00:54:
a5:1b:20:0d:3c:a6:c5:2b:60:01:d4:09:fe:65:a7:3b:24:ad:
90:d4:f6:f0:ee:63:90:72:6e:ac:39:aa:55:c8:1d:3e:45:50:
de:25:1b:a8:fe:e9:71:49:6e:b4:75:47:3f:1c:1e:72:3e:3c:
53:81:cf:d3:6d:f8:76:d2:44:7b:ff:ad:40:b0:1a:26:46:63:
19:6f:ae:8d:27:41:3f:b3:cf:87:43:e7:de:8a:a1:ef:fa:49:
4f:b9:fa:96:d7:15:ce:68:f1:1b:5a:f3:14:9c:bb:4b:9f:da:
80:55:3c:0c:f5:86:64:19:7e:96:e5:63:aa:ef:f1:6e:63:6b:
44:4a:47:43:15:b5:c6:76:4a:78:5c:28:4d:07:16:cd:fb:7c:
5c:00:90:3f:e4:e7:e6:72:33:c6:7c:40:9f:bf:c5:ce:d6:28:
0c:31:88:25:cd:a5:be:ae:ea:57:ff:e1:15:fa:d0:bc:88:9b:
32:20:b0:b1:06:db:5d:92:85:49:ba:59:ec:29:90:29:64:75:
63:73:e9:0d:d2:c3:e2:8c:32:f0:a8:3a:c4:d5:d2:89:6a:31:
f5:63:a4:f1:75:d4:a7:b6:d8:ab:fc:1d:34:86:fa:4b:d3:59:
de:f4:73:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:28 2023 by rpki-client on console-fra.rpki-client.org