Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ZBh_9rzK0aQxyIfzlBiI9OjvuMM.roa
File: ZBh_9rzK0aQxyIfzlBiI9OjvuMM.roa (raw, json)
Hash identifier: aMrF3wcG/Fv1MyC7DmKbEecpuq8bfKxrXS8G8pkndQc=
Subject key identifier: 64:18:7F:F6:BC:CA:D1:A4:31:C8:87:F3:94:18:88:F4:E8:EF:B8:C3
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 169F
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ZBh_9rzK0aQxyIfzlBiI9OjvuMM.roa
Signing time: Sun 07 Feb 2021 12:13:13 +0000
ROA not before: Sun 07 Feb 2021 12:13:13 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 180.177.168.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5791 (0x169f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:13:13 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=64187FF6BCCAD1A431C887F3941888F4E8EFB8C3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:7d:ee:06:20:68:25:eb:de:29:65:d3:3c:f7:
45:a6:be:32:f5:e7:98:8b:20:e8:a7:af:39:41:ba:
fc:4b:db:33:72:f5:76:7e:0a:fd:3b:cd:52:43:5f:
0a:63:63:b1:d2:04:86:d5:a2:d5:a1:aa:67:86:8b:
9e:7d:6b:98:15:86:d7:64:90:45:ae:b4:d1:25:c1:
a7:f3:a6:6b:04:68:43:81:4a:5f:70:a9:21:dd:1e:
be:98:0d:b6:75:d8:ca:86:7b:9c:c7:08:31:3b:3f:
f4:92:c9:1d:15:c4:f1:ac:f2:55:76:6b:d9:11:aa:
81:fa:44:c1:b8:12:9f:18:b5:7b:3b:3a:01:c8:47:
db:7d:4f:d6:c2:58:e7:5a:7b:0f:f3:42:eb:e4:0c:
07:bc:6e:ba:60:ae:c6:43:e5:e7:27:52:59:37:16:
69:54:48:14:0a:68:a7:c4:7d:81:61:9a:cb:f6:49:
31:98:db:f1:60:65:e8:89:25:02:07:be:27:02:46:
42:90:0a:b6:b4:65:26:50:fd:46:05:e4:b3:d5:d8:
84:2e:b5:3d:23:ee:e7:2f:ca:f2:80:a1:e4:47:ec:
a2:b6:7a:95:1a:5f:9a:15:b6:13:ea:61:3b:7a:68:
9c:cb:19:00:7f:7e:cd:bc:2d:b0:22:82:c9:3b:39:
16:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:18:7F:F6:BC:CA:D1:A4:31:C8:87:F3:94:18:88:F4:E8:EF:B8:C3
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ZBh_9rzK0aQxyIfzlBiI9OjvuMM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.177.168.0/21
Signature Algorithm: sha256WithRSAEncryption
41:a4:8f:4c:05:40:12:17:6e:76:65:e2:61:51:06:01:79:09:
f5:b4:1c:29:7c:54:b3:df:5c:76:5b:b0:21:e0:d2:3a:1b:ac:
dd:91:a0:fd:fa:1d:a3:18:5f:07:c3:22:6a:d8:c6:8a:6b:8a:
1c:3f:9e:c3:65:10:c8:f6:9d:25:77:61:1c:e5:f2:5d:dd:a8:
47:27:b6:d4:3c:ac:15:fc:16:82:d0:30:e9:29:9b:a8:c0:56:
cc:b9:42:16:39:bb:6f:2d:c0:f0:3a:df:68:4e:2a:6d:6d:50:
09:3f:60:80:a0:03:7f:1e:29:21:84:d6:b7:1e:a1:fa:7b:d4:
ab:48:e9:9d:0b:65:e9:fb:d2:dc:66:44:2c:cb:38:4a:ad:6a:
8a:a4:49:55:de:cf:39:9e:6a:6f:a5:5e:94:c4:c1:e5:2a:66:
5e:fd:eb:bb:23:8d:00:f0:19:0c:80:ef:44:21:3b:41:ab:59:
5a:01:43:b9:e7:16:71:a4:27:83:fc:27:11:cd:10:8c:cc:58:
29:40:6b:ea:e6:bc:ed:dd:db:64:8d:c6:38:5f:51:8e:95:5c:
ec:d3:be:24:6b:95:00:bb:f2:f5:99:c9:60:3e:b9:0c:34:b9:
0c:7e:f0:92:5b:8d:46:93:38:78:2a:14:14:67:a0:24:df:9a:
a2:85:83:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:34 2024 by rpki-client on console-ams.rpki-client.org