Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/SZnWlDz-Myv17N7IDbW3YdVTq3w.roa
File: SZnWlDz-Myv17N7IDbW3YdVTq3w.roa (raw, json)
Hash identifier: R2lCQlJpaPq/jLa2h/5M4T+GSy2wR4xauc+mlo4FdkQ=
Subject key identifier: 49:99:D6:94:3C:FE:33:2B:F5:EC:DE:C8:0D:B5:B7:61:D5:53:AB:7C
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2058
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/SZnWlDz-Myv17N7IDbW3YdVTq3w.roa
Signing time: Fri 25 Nov 2022 04:38:36 +0000
ROA not before: Fri 25 Nov 2022 04:38:36 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 180.177.32.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8280 (0x2058)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:38:36 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=4999D6943CFE332BF5ECDEC80DB5B761D553AB7C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:05:85:72:41:52:6f:4e:3b:86:fb:50:be:a5:
bf:05:87:72:79:7f:b6:0d:de:86:cf:1e:7c:58:3d:
38:00:41:a7:21:3e:0f:26:e1:39:6c:50:7c:ba:61:
4c:c3:06:94:80:a1:91:7a:86:17:05:7a:d8:8c:e8:
e5:e1:fe:6f:48:c9:7e:c1:f4:fb:5c:a2:65:82:58:
52:2b:f2:0b:5a:b0:d7:74:2c:66:a3:69:41:6e:a1:
fc:00:61:1d:ac:66:d1:bb:26:f7:f1:6c:e1:0c:52:
a8:41:9a:6e:c4:3f:4d:0d:bb:f4:66:4d:30:96:a4:
f9:26:16:a9:7f:fb:0e:f4:6a:cb:4e:7e:db:79:2a:
2d:7e:4e:5e:31:c5:a4:ba:de:00:f2:e5:5d:08:ec:
06:8c:8d:55:a5:3d:5a:dc:19:eb:9a:fe:e6:01:47:
1a:f4:f9:56:a3:59:cd:18:e3:01:fb:04:cb:79:ab:
24:df:2c:0d:eb:b0:e9:b7:0a:83:0c:7a:bf:7d:1e:
bc:1f:32:e6:7d:10:b4:c5:9f:2a:28:67:a6:cb:be:
e1:f9:45:5a:32:4c:f7:76:5e:ed:b4:31:7d:e5:e9:
32:f6:a7:ce:0e:07:bf:33:36:37:58:70:b0:ee:b1:
63:68:94:b6:a7:f6:ae:92:68:37:d6:77:a2:ee:6b:
aa:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:99:D6:94:3C:FE:33:2B:F5:EC:DE:C8:0D:B5:B7:61:D5:53:AB:7C
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/SZnWlDz-Myv17N7IDbW3YdVTq3w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.177.32.0/21
Signature Algorithm: sha256WithRSAEncryption
9f:50:f0:40:5b:a0:96:e4:ce:5d:10:7e:c7:61:9c:2d:b7:eb:
cc:c9:25:81:8f:97:9b:89:a0:38:91:4f:ba:50:29:af:ad:f1:
ca:a1:f5:06:0f:d2:0e:46:0b:07:df:cb:37:16:2e:e0:bf:51:
4d:c2:87:4c:7f:25:be:82:ab:8f:cf:b2:be:63:ee:fd:37:c3:
97:ab:d1:91:87:9f:23:8c:2a:8e:05:df:85:50:52:b0:7a:0a:
38:99:45:c0:e8:14:d9:e4:d3:fe:4f:7f:bd:87:54:79:24:0c:
5f:85:38:03:c6:9a:a0:79:7f:8b:6a:b0:f1:09:94:52:59:0b:
6a:22:7a:b0:9e:a5:c2:f9:3e:c6:4d:17:92:ac:a7:ec:70:74:
a4:3f:63:9e:9b:67:c5:85:a2:5f:90:41:bd:39:a8:b2:02:2f:
b0:80:8a:46:8c:7a:6d:17:1e:29:ff:3f:d0:3d:40:7c:80:f6:
1b:ee:b5:36:be:65:70:77:aa:9e:d8:5a:cb:53:bc:8e:17:9d:
ab:e0:fa:15:a1:76:7d:1b:7b:f1:d4:33:d2:0b:c1:7a:01:51:
5a:5b:58:74:6c:8b:44:d7:4d:53:61:70:7c:74:43:bc:8b:e2:
7e:0c:98:9c:8d:d6:8e:30:5f:75:dd:a3:f8:35:f6:fc:7f:76:
56:6c:6f:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:31 2024 by rpki-client on console-ams.rpki-client.org