Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/UTWCE50aQKQy4vMfy-N5IvkLsXA.roa
File: UTWCE50aQKQy4vMfy-N5IvkLsXA.roa (raw, json)
Hash identifier: c7qOvUBjap5405DIZU0qP6VFWvlX5lGDwPtdD8eCoVs=
Subject key identifier: 51:35:82:13:9D:1A:40:A4:32:E2:F3:1F:CB:E3:79:22:F9:0B:B1:70
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/UTWCE50aQKQy4vMfy-N5IvkLsXA.roa
Signing time: Thu 15 Sep 2022 02:52:46 +0000
ROA not before: Thu 15 Sep 2022 02:52:46 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 180.176.168.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8098 (0x1fa2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:52:46 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=513582139D1A40A432E2F31FCBE37922F90BB170
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:f5:c2:93:ac:71:f5:16:80:d5:fa:cd:10:09:
ca:5e:7d:6d:d5:39:a7:a8:de:e2:a1:37:0f:fa:84:
1c:dd:3e:69:b3:d4:54:aa:17:5b:3c:47:b8:d2:fd:
5b:23:a2:dd:58:59:cf:22:56:58:2d:9c:33:7a:e5:
c0:04:30:4d:04:3d:b5:c6:d1:89:d5:d5:c4:76:d4:
b9:95:44:47:b9:99:4c:2f:9b:53:7b:ad:ae:b4:6c:
80:7b:33:82:5f:99:d4:90:47:1f:8b:72:fb:7f:79:
bc:83:e2:a9:1f:c3:34:8c:13:46:21:87:87:46:b4:
51:61:ba:1c:3d:41:b0:f6:67:57:65:31:10:4a:44:
ca:03:68:97:8f:0b:d2:48:e0:97:16:7d:34:f1:ee:
3f:be:64:cf:71:37:d7:25:19:83:da:a4:bc:f4:00:
72:39:21:ee:c3:6e:e8:0f:50:08:cd:3c:e6:2c:80:
e5:27:4f:f9:2e:00:66:c0:6b:b2:74:62:be:c8:b4:
a5:6d:b8:f9:03:4b:c3:57:eb:09:3a:d0:7b:c1:68:
3a:a2:a7:ca:97:cc:fe:2b:c6:96:5d:b4:df:e9:97:
7e:f3:85:e5:22:5b:d9:9e:80:54:c0:51:12:d2:04:
92:ac:72:27:27:f4:91:bf:db:44:af:76:e6:54:a6:
27:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:35:82:13:9D:1A:40:A4:32:E2:F3:1F:CB:E3:79:22:F9:0B:B1:70
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/UTWCE50aQKQy4vMfy-N5IvkLsXA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.176.168.0/22
Signature Algorithm: sha256WithRSAEncryption
24:fd:a2:b7:04:20:23:4b:d5:5f:65:b2:bc:51:52:52:49:f8:
45:2d:37:b2:e3:c9:a2:57:f9:46:fa:fb:84:87:c9:46:14:52:
23:86:67:61:cf:c8:04:c1:5e:55:66:4e:40:e2:ae:76:ad:22:
cb:4a:a7:7c:1e:15:c1:bd:15:b3:24:e9:e7:c4:e4:94:77:cf:
bc:96:96:80:68:56:4a:3a:2a:b6:5b:b4:b4:1a:82:09:7f:b7:
a4:f9:a5:fa:91:9d:2e:2e:00:87:c0:36:d9:66:6a:79:4c:6a:
aa:ee:2d:b7:7c:fd:e4:cc:f7:16:63:f2:ae:b1:64:64:71:af:
2d:5b:c7:98:5a:75:41:0f:b3:79:48:e1:6c:4b:f0:db:6e:2d:
f6:6d:41:62:e4:38:0a:58:58:06:06:fb:61:d0:3b:a3:0d:c7:
7c:88:0e:ec:b4:00:55:3e:79:9d:5a:9e:23:00:52:42:f7:7d:
94:fd:85:c0:d3:43:72:30:ff:44:25:46:9d:76:87:cb:d7:f4:
22:d9:58:fc:5c:d3:23:fa:6e:84:4f:d7:ed:81:e2:f7:ab:e0:
e6:c1:ad:17:38:61:0e:7b:f5:49:b6:b0:d7:30:c6:2a:3a:bd:
96:8b:49:74:1f:10:e4:80:71:c2:9b:59:b0:99:2f:72:45:f7:
b0:52:d0:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:32 2024 by rpki-client on console-ams.rpki-client.org