Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Y8s33iNW8QB-PLbCqYvm1WIK7Ck.roa
File: Y8s33iNW8QB-PLbCqYvm1WIK7Ck.roa (raw, json)
Hash identifier: iDxeQN7Mi9B4jRxp+lrBnog4Yg7SUMNSzB2U+VyrZYc=
Subject key identifier: 63:CB:37:DE:23:56:F1:00:7E:3C:B6:C2:A9:8B:E6:D5:62:0A:EC:29
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 229C
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Y8s33iNW8QB-PLbCqYvm1WIK7Ck.roa
Signing time: Fri 25 Nov 2022 04:41:24 +0000
ROA not before: Fri 25 Nov 2022 04:41:24 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 180.177.40.0/21 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8860 (0x229c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:41:24 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=63CB37DE2356F1007E3CB6C2A98BE6D5620AEC29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:08:51:3f:87:e4:db:99:86:cc:43:9b:23:1b:
f5:9a:95:a1:d3:52:2c:ff:48:b1:14:b6:e3:e3:2c:
b1:a4:a9:cb:59:8c:03:dd:5a:66:2a:69:9c:5e:86:
f5:c4:52:1c:fd:32:07:9f:d8:47:05:34:4a:72:cd:
3f:03:b5:6d:b8:ac:b2:f1:9e:43:23:59:f3:16:95:
9a:ee:4f:6c:3d:f8:81:82:dc:c4:b4:f5:b6:1f:d1:
c7:a8:4f:c7:e6:79:91:f2:a6:19:cd:26:65:64:bf:
ef:92:6b:95:c0:78:69:a9:00:59:fa:c8:19:a6:c3:
3f:1c:20:2c:82:18:91:de:9a:0c:20:c4:be:bd:0f:
a8:61:4a:08:ca:42:e2:b2:eb:31:9b:e3:f6:49:32:
22:de:a7:ba:7e:94:36:31:59:f2:b5:f7:c7:98:9f:
53:7b:9c:83:61:94:aa:ad:97:5e:ba:04:b3:36:a8:
8b:d4:b9:59:23:56:3e:d0:47:00:89:57:6d:3f:ca:
2b:10:f1:00:83:8c:1d:53:81:45:bb:e7:fe:b6:a8:
1c:b2:77:e4:c9:25:d2:af:e4:b7:53:d9:83:0d:e7:
dd:43:f1:54:af:d5:c4:f7:8a:2e:7c:80:b1:d5:4d:
28:f4:a5:2c:28:0c:c0:02:5d:41:1c:38:39:fe:34:
54:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:CB:37:DE:23:56:F1:00:7E:3C:B6:C2:A9:8B:E6:D5:62:0A:EC:29
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Y8s33iNW8QB-PLbCqYvm1WIK7Ck.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.177.40.0/21
Signature Algorithm: sha256WithRSAEncryption
53:72:51:17:31:ff:e4:45:ea:54:bd:12:39:49:1d:f4:39:47:
f9:0e:7c:3c:5a:67:06:3c:12:5c:b4:20:ae:e1:c7:87:74:93:
a8:07:3b:15:c3:77:1a:56:1e:f5:6d:a8:72:07:8b:7b:84:93:
4a:6f:f7:89:ec:a3:1e:a5:54:f2:7e:62:7e:60:6b:78:06:62:
8b:9e:b7:f5:29:d9:aa:d6:20:be:c2:c5:20:28:47:9a:3b:b4:
ea:96:64:64:62:af:fe:11:0c:b4:3c:4a:92:f9:17:8a:79:dd:
4c:a9:4d:18:63:38:c2:d8:f6:ad:59:27:e9:64:ea:b7:87:a8:
6e:5f:9e:f8:31:80:83:56:af:78:85:96:92:2c:eb:a5:60:4f:
b6:5a:ae:28:9f:b5:e5:41:93:c6:33:24:64:46:d7:de:b4:a4:
c3:6a:59:b3:eb:04:0f:9f:ff:bb:91:19:ab:e4:a3:b6:53:39:
83:78:5b:11:80:fb:5b:60:d1:8d:fd:33:9c:5d:98:9f:3c:c8:
12:79:58:e0:2e:5c:c6:bc:2d:e3:be:df:67:e8:19:68:8f:84:
c3:78:36:87:cc:82:5f:bd:ae:f2:34:af:1e:cf:ca:78:d2:14:
a7:2d:34:8c:bd:cb:a2:fd:58:3d:b7:10:22:5e:0b:8e:cf:2a:
11:af:dc:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:54 2024 by rpki-client on console-fra.rpki-client.org