Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Tpy3X9wJowCWvqi2KjRt1DQv2XA.roa
File: Tpy3X9wJowCWvqi2KjRt1DQv2XA.roa (raw, json)
Hash identifier: XRPFtZ0NobUEcIUL48umT+y/Zp3Fxvte+W7+iaks/50=
Subject key identifier: 4E:9C:B7:5F:DC:09:A3:00:96:BE:A8:B6:2A:34:6D:D4:34:2F:D9:70
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 0DF0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Tpy3X9wJowCWvqi2KjRt1DQv2XA.roa
Signing time: Tue 29 Sep 2020 09:55:09 +0000
ROA not before: Tue 29 Sep 2020 09:55:09 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 180.177.208.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3568 (0xdf0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 09:55:09 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=4E9CB75FDC09A30096BEA8B62A346DD4342FD970
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:4c:e1:ac:1b:c0:b2:91:81:4e:75:ec:fe:0b:
d4:40:9f:2a:a0:5f:2f:20:dc:19:2f:b7:b2:a1:38:
21:31:1a:29:9d:f0:22:27:cf:5b:11:cf:28:dd:43:
0e:4d:00:76:a5:ff:5d:4c:e4:ee:cb:5d:a1:69:63:
32:dc:b0:49:bb:e2:26:e0:08:60:43:60:be:2e:e9:
57:34:03:24:95:b2:4b:94:5e:3a:7d:a6:dc:b2:72:
32:c5:f0:a1:a3:f8:9a:4c:9b:4e:8a:6a:ce:9a:a9:
e0:d9:7b:b4:12:24:a3:0e:c6:97:dc:20:f1:35:d9:
10:ac:54:14:8f:d4:a2:04:f4:e6:60:12:a4:c6:72:
e0:51:75:c6:d0:f0:a7:88:ae:1a:3a:e8:ec:1a:11:
d2:5b:68:82:69:96:3b:72:0c:ed:13:ce:7c:fd:7b:
57:98:77:fd:97:a6:fc:08:2a:81:27:17:8b:d9:e8:
12:e0:87:1d:5d:0f:46:d0:32:b6:72:04:aa:52:dc:
9b:cc:72:8e:d6:ba:8d:16:0a:77:2d:b7:6d:00:62:
b1:50:e0:ee:15:68:1d:56:16:4b:a0:b0:f4:1d:2a:
6d:5e:d1:96:86:f5:a4:83:d5:cb:e7:ff:1d:f7:15:
64:50:a7:87:13:7a:e9:cd:44:40:4b:0c:8a:4e:75:
f2:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:9C:B7:5F:DC:09:A3:00:96:BE:A8:B6:2A:34:6D:D4:34:2F:D9:70
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Tpy3X9wJowCWvqi2KjRt1DQv2XA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.177.208.0/22
Signature Algorithm: sha256WithRSAEncryption
4b:e6:a6:41:de:07:64:dc:fa:59:18:08:49:a0:91:17:6d:5c:
d3:06:e0:4c:91:5c:e0:b9:1d:08:f2:8d:2c:7e:3e:00:b0:40:
18:e2:73:bd:23:f5:ba:87:16:5a:81:9a:b8:44:ad:7b:4d:6f:
5b:7e:c1:34:36:0b:3a:d0:f4:32:68:05:a9:4a:31:95:68:e7:
4a:c0:bc:1f:3a:ed:a8:ec:88:d4:d1:6b:1e:df:b0:a7:e2:1d:
95:33:cf:70:9c:a0:e4:66:23:2d:9f:2a:2f:61:be:ed:96:4d:
43:f4:0b:00:e0:c1:55:b0:d3:13:66:ff:83:47:25:0a:1d:d6:
56:65:94:f7:2b:75:76:b2:74:c0:ca:85:4d:27:0f:99:21:1a:
e2:81:11:70:a4:e9:8d:4d:10:51:97:54:ae:4e:4d:64:b5:1c:
43:bf:be:d0:ae:d9:51:2e:95:2b:f8:8c:07:04:2e:3c:ec:c4:
b8:5a:a7:77:b1:25:f1:9a:d9:9e:81:60:51:c0:30:41:8d:e8:
18:e4:f4:30:64:7a:d3:1b:b2:8a:bf:86:a0:16:92:ca:fe:90:
d6:2b:fb:ff:90:36:ee:e0:47:dd:8d:9b:b4:86:a9:4e:ec:a7:
64:02:c4:41:ed:8c:f4:3e:03:c8:2d:36:dc:5e:36:0c:0e:c8:
c8:ad:2c:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:53 2024 by rpki-client on console-fra.rpki-client.org