Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/bKJy1VZ3xCDbsqOcltFJOdTs_-M.roa
File: bKJy1VZ3xCDbsqOcltFJOdTs_-M.roa (raw, json)
Hash identifier: hBY6fyM2TsatmXzWSUIMTvX1VqoLYlRv6I4zs9w2bUY=
Subject key identifier: 6C:A2:72:D5:56:77:C4:20:DB:B2:A3:9C:96:D1:49:39:D4:EC:FF:E3
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1ED7
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/bKJy1VZ3xCDbsqOcltFJOdTs_-M.roa
Signing time: Thu 26 May 2022 03:31:54 +0000
ROA not before: Thu 26 May 2022 03:31:54 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 180.176.136.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7895 (0x1ed7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: May 26 03:31:54 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=6CA272D55677C420DBB2A39C96D14939D4ECFFE3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:5e:2f:94:54:5e:1b:4e:1e:dd:4e:45:d3:d5:
81:47:49:53:d6:09:d1:b5:a8:a0:a6:c4:43:35:94:
05:89:49:35:96:ee:a0:bc:d1:ec:b1:e0:f5:2d:88:
a9:6d:ab:ad:0c:2d:51:fc:f2:a2:de:13:af:69:86:
76:65:bb:01:c0:28:db:88:b7:b2:59:c7:29:7f:63:
db:a2:bf:0a:df:08:e9:fd:d0:09:60:f6:8e:12:8d:
da:e3:1f:6d:0e:00:ea:65:75:db:09:fb:a7:62:19:
20:5e:b3:30:5d:bd:19:23:e4:69:fc:75:ac:e6:e0:
05:df:95:f9:99:6b:9a:dc:aa:ca:c5:87:39:bf:d5:
dc:f0:4b:a1:d1:04:6b:88:93:55:84:eb:e9:71:5f:
f0:72:6b:95:d6:36:ca:dd:05:51:1d:5c:ca:8c:25:
4c:a5:ba:71:3a:99:19:77:6f:87:69:0a:f1:a2:d7:
e7:57:54:7a:ca:0b:7e:fb:09:38:8f:92:2d:d1:af:
2a:dc:e9:80:a5:ae:ec:a0:12:7f:3a:f5:29:bb:ed:
3a:e9:aa:93:78:dc:56:b0:0a:ca:54:3d:f0:79:46:
0a:a7:65:ae:c6:27:b8:d6:3d:e3:24:72:44:8b:24:
23:6b:57:d1:ea:31:d9:8e:02:c3:7f:a8:81:d9:13:
1d:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:A2:72:D5:56:77:C4:20:DB:B2:A3:9C:96:D1:49:39:D4:EC:FF:E3
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/bKJy1VZ3xCDbsqOcltFJOdTs_-M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.176.136.0/21
Signature Algorithm: sha256WithRSAEncryption
6f:4f:ec:a3:48:2c:f6:7c:86:ba:79:1d:81:16:08:c2:7b:1c:
29:e8:1d:c6:1f:d2:ed:11:48:75:a2:f8:07:c6:07:72:7f:69:
84:a0:e4:f4:9d:78:ce:93:f1:78:8e:45:bd:2d:94:c7:6f:9c:
e0:37:5e:45:6f:84:7f:36:e9:b0:5d:1a:2a:64:99:12:01:0e:
b6:c8:0a:c0:83:75:cf:9a:66:3a:0e:61:16:1c:8b:1d:2f:62:
f1:41:1a:a9:59:6f:fa:8f:e8:3a:5d:40:bf:5c:c9:ab:1b:86:
52:0c:ba:37:62:ac:85:86:16:c0:cc:78:c6:ac:31:3a:a8:fb:
be:17:f5:1f:1e:9c:d4:86:59:57:93:93:84:40:3b:ba:49:17:
2e:9e:76:25:b8:c4:e3:82:2e:be:ab:10:4a:61:60:60:2e:3d:
fa:af:bc:84:30:e2:eb:5b:30:01:38:4f:61:98:b2:27:97:b3:
3e:a3:74:4f:d0:c9:3f:2e:61:9e:e2:94:de:17:49:92:6e:14:
8d:a9:2f:0e:45:4d:ee:77:a3:e8:3e:72:fb:a1:24:2a:47:cd:
53:b0:60:fe:f1:41:9f:91:81:c1:e8:1a:cd:95:f4:ba:ec:1b:
b8:a0:7f:30:7c:1c:80:62:a5:06:63:b4:e2:54:c8:36:fc:35:
5f:3c:9a:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:35 2024 by rpki-client on console-ams.rpki-client.org