Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/XqVoM0aq9HU6ff1IC3KRfrv3Gc4.roa
File: XqVoM0aq9HU6ff1IC3KRfrv3Gc4.roa (raw, json)
Hash identifier: 8o03ErsCRyuQ6NiWlVaFallmaDKdOcL6iCZpglFO6pY=
Subject key identifier: 5E:A5:68:33:46:AA:F4:75:3A:7D:FD:48:0B:72:91:7E:BB:F7:19:CE
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1429
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/XqVoM0aq9HU6ff1IC3KRfrv3Gc4.roa
Signing time: Sun 07 Feb 2021 11:57:36 +0000
ROA not before: Sun 07 Feb 2021 11:57:36 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 180.176.4.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5161 (0x1429)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 11:57:36 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5EA5683346AAF4753A7DFD480B72917EBBF719CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:c6:7a:cc:4a:16:af:77:95:78:8f:aa:14:3f:
cf:f9:18:a5:01:13:be:a0:e7:b8:5e:72:a0:ae:81:
de:81:de:17:7d:f3:5b:89:8b:d3:ce:a3:f4:80:b4:
fa:e5:6a:33:06:4c:c0:f2:03:af:8f:8e:51:22:be:
b7:a4:4c:72:a6:8b:a2:f4:03:e6:88:84:8d:46:42:
2c:5d:e4:4e:83:d5:e7:32:ab:48:0d:33:67:83:ce:
2b:c6:e0:f8:89:17:04:ae:0d:e0:76:ad:b2:51:cd:
4c:38:fe:fe:3c:4d:27:f2:0e:2e:74:be:be:fb:3b:
08:95:f1:b4:3e:6e:68:6f:8c:86:2a:1a:e9:ad:af:
e2:92:a5:ad:81:ba:2b:82:77:79:b0:54:9e:fe:84:
19:c0:5e:38:92:e2:92:8e:fc:d2:02:31:f3:10:e7:
8b:b6:db:a3:6e:10:2f:56:7f:d4:76:69:50:e7:b4:
66:d6:cd:c5:48:86:e5:e8:b5:a9:ed:00:b4:1b:6b:
78:93:8f:5e:60:3b:75:c0:52:e4:aa:c2:b7:39:cd:
d2:1b:3b:77:0f:ca:1a:a2:8a:fb:8b:2d:db:c9:d8:
72:54:72:4c:a2:6d:d3:e1:14:11:22:93:c5:f5:80:
48:1d:23:a4:56:b7:72:f3:46:69:f2:f6:cf:14:4d:
6b:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:A5:68:33:46:AA:F4:75:3A:7D:FD:48:0B:72:91:7E:BB:F7:19:CE
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/XqVoM0aq9HU6ff1IC3KRfrv3Gc4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.176.4.0/22
Signature Algorithm: sha256WithRSAEncryption
3c:69:7e:bc:29:a7:24:3c:3f:0e:38:37:50:c3:a6:b8:7e:7b:
52:67:c8:f8:38:e7:dc:d6:9f:bf:08:11:a0:d9:5d:8d:12:65:
93:20:95:20:5d:74:33:9d:24:a8:0a:57:5c:c4:65:af:f0:a3:
db:e6:ad:e9:8a:17:cd:da:64:6e:48:a6:b6:9f:81:f1:b5:31:
42:3d:36:89:63:19:ae:55:10:10:c1:f0:71:6a:6a:5a:5d:0f:
1f:cb:0e:88:6a:43:26:a8:e6:82:c1:fa:73:15:6c:46:c2:cf:
0b:2a:4a:77:14:4c:bb:be:9e:2d:09:1a:24:0f:96:9a:28:53:
0f:17:f1:c9:3b:83:60:91:46:4f:90:00:8e:77:3b:55:83:12:
6e:5a:86:9e:44:6f:32:9c:49:05:ab:e5:a7:32:50:22:f3:3d:
46:30:dc:2d:93:45:f9:27:91:1c:a3:da:f6:6a:a4:c6:42:c8:
f2:6d:9d:66:08:b6:db:be:04:c6:64:a9:41:06:c8:5c:18:06:
e5:e9:7b:a5:b0:df:20:fd:ee:e5:25:0c:8b:04:d5:2e:9c:05:
09:52:c0:f6:0a:79:60:34:a5:dc:ef:b4:dd:a5:cc:ca:99:c2:
79:79:c7:f2:33:70:58:3a:f8:63:d1:b0:1f:98:c8:cf:d9:e8:
a0:70:8d:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:33 2024 by rpki-client on console-ams.rpki-client.org