Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/YYR4R9uprrJkUwSzo-Nnf-g1rJM.roa
File: YYR4R9uprrJkUwSzo-Nnf-g1rJM.roa (raw, json)
Hash identifier: v3yF9Ishw2OQjpziQcU8u8J8Ds+GNZeHypi2DIIi/fY=
Subject key identifier: 61:84:78:47:DB:A9:AE:B2:64:53:04:B3:A3:E3:67:7F:E8:35:AC:93
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/YYR4R9uprrJkUwSzo-Nnf-g1rJM.roa
Signing time: Thu 15 Sep 2022 02:54:00 +0000
ROA not before: Thu 15 Sep 2022 02:54:00 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 180.176.136.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8098 (0x1fa2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:54:00 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=61847847DBA9AEB2645304B3A3E3677FE835AC93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:b2:0a:b6:ab:2f:9b:06:ae:b0:09:1c:f9:63:
22:e9:80:b4:6d:97:56:e7:4f:6c:26:38:e5:1f:24:
dc:bc:43:68:dd:5e:80:51:f2:ba:f4:8c:9a:83:4b:
93:59:79:c9:4d:63:af:90:ad:e6:5b:ce:52:6d:9c:
35:23:ce:80:4c:ce:df:de:7f:2a:8b:7e:aa:41:21:
b0:85:81:1f:52:9a:2e:ea:da:a6:62:9f:46:05:b9:
52:f9:99:23:50:ea:e1:b0:e5:40:79:ad:48:c3:c1:
9e:84:29:91:33:62:89:56:1e:67:02:92:e3:bb:53:
8f:0a:61:53:07:e6:32:d1:e2:d8:ca:1a:13:a1:79:
a4:aa:48:0a:40:f3:8d:6c:2c:64:93:01:b9:00:3d:
99:31:6a:c3:17:0c:1a:ba:4e:4d:3e:24:9e:79:7a:
1f:df:58:33:9b:28:08:09:46:79:5a:e3:17:65:e4:
6c:31:ff:e8:27:f3:c3:b1:3e:f6:53:98:4d:79:67:
1b:1c:1e:0f:c6:96:ed:22:72:79:63:4c:4d:82:d6:
ef:25:0f:44:99:d8:88:4a:3a:dd:46:61:18:85:db:
83:96:10:2f:60:18:cc:90:76:a1:88:c8:6e:ae:f1:
4f:46:5f:f2:be:d4:05:2e:45:d0:e6:57:29:8c:4d:
ac:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:84:78:47:DB:A9:AE:B2:64:53:04:B3:A3:E3:67:7F:E8:35:AC:93
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/YYR4R9uprrJkUwSzo-Nnf-g1rJM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.176.136.0/21
Signature Algorithm: sha256WithRSAEncryption
0c:f3:e6:b5:7c:12:e0:ce:79:de:64:30:31:bf:c1:6b:7b:b7:
a2:7b:3f:92:90:b9:ec:b7:6a:59:0a:8e:31:5e:80:86:cb:7b:
37:a7:aa:38:cc:b3:7b:c4:ab:91:74:3e:35:7b:3c:bf:c6:4c:
94:f8:b9:f4:aa:be:0e:2e:98:70:75:6b:86:65:6b:6e:ea:5b:
f0:57:6b:d7:6b:66:f9:d0:cb:a8:b4:00:27:d8:0f:de:ec:2d:
9c:b2:a0:ab:80:4d:af:27:6b:a6:ff:fe:16:25:24:76:62:d5:
e1:59:a8:46:78:75:83:3a:22:5c:ed:3d:62:0f:91:33:29:dd:
d5:5f:cf:b7:3f:88:0b:ff:14:c5:c5:d0:39:d4:0f:56:db:63:
2b:a3:f8:8a:f6:ab:c2:85:75:99:ff:5f:8e:5b:ce:11:95:60:
88:10:33:6b:b1:61:a9:0a:5a:e3:18:53:c9:75:16:0b:74:53:
19:13:2f:d0:18:97:d7:1c:6a:ca:39:89:79:52:2b:50:75:20:
3a:ca:2b:90:3e:59:2b:58:4f:c0:d2:30:33:cb:b5:32:14:9d:
62:d4:aa:25:9d:2f:76:37:08:34:f6:0c:4d:3b:6b:53:8f:28:
aa:b5:c6:ac:9a:74:7b:82:7f:51:0d:a8:81:eb:a4:c7:2e:ad:
96:61:ec:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:54 2024 by rpki-client on console-fra.rpki-client.org