Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/cdPmImw52tIW7BXbohG1kKeP_pQ.roa
File: cdPmImw52tIW7BXbohG1kKeP_pQ.roa (raw, json)
Hash identifier: vk1LAFfCtA0PV9Kk7ty4ZhLsCDeFVz0j1bAVNKaxH1k=
Subject key identifier: 71:D3:E6:22:6C:39:DA:D2:16:EC:15:DB:A2:11:B5:90:A7:8F:FE:94
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 0DC2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/cdPmImw52tIW7BXbohG1kKeP_pQ.roa
Signing time: Tue 29 Sep 2020 09:54:57 +0000
ROA not before: Tue 29 Sep 2020 09:54:57 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 180.176.168.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3522 (0xdc2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 09:54:57 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=71D3E6226C39DAD216EC15DBA211B590A78FFE94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:10:c6:83:3a:53:9d:a9:ac:75:a5:e1:01:ca:
32:db:a9:a0:b5:65:17:a9:3c:0d:71:de:cf:a9:4a:
bd:27:55:45:59:ea:ff:d9:f8:ff:94:0d:fd:38:7d:
11:f8:64:34:55:6d:79:45:b0:b1:f0:f3:f4:41:a7:
b2:b0:ca:7a:53:e0:db:80:db:86:c6:1b:f1:6d:78:
23:64:0e:68:a5:be:ed:25:67:ca:5b:06:db:8f:ff:
2e:b1:b1:0a:c8:d6:e3:9c:02:f1:36:40:14:41:84:
91:2c:5f:96:9f:55:c9:54:ee:2b:27:b6:43:5c:3c:
65:f5:35:45:86:f1:8b:7a:84:16:74:b8:e2:6d:a3:
56:1f:51:03:28:bd:8d:39:11:d0:0b:a5:dd:23:54:
75:d8:0b:40:5e:e3:1f:31:19:61:0d:43:66:0a:a0:
06:11:9b:1a:f3:09:03:bf:36:51:4c:44:bc:d4:b7:
d3:be:55:d7:14:71:7f:ff:57:8a:c3:6d:e8:6f:8c:
3c:7c:3c:73:5c:40:ca:f5:1a:9f:8b:38:23:90:bf:
af:00:d0:c1:95:70:88:3d:b3:a6:11:2d:db:86:ff:
20:d3:71:e9:6f:3e:a2:54:71:55:d4:1f:33:3c:86:
f2:ed:3c:b1:82:8e:cd:77:70:68:e2:a1:88:3e:a3:
c2:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:D3:E6:22:6C:39:DA:D2:16:EC:15:DB:A2:11:B5:90:A7:8F:FE:94
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/cdPmImw52tIW7BXbohG1kKeP_pQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.176.168.0/22
Signature Algorithm: sha256WithRSAEncryption
77:fa:43:41:9e:2c:06:e6:1d:78:f7:3e:73:8b:10:9a:cc:bc:
c2:76:c7:aa:58:67:a9:3a:40:4c:7b:a8:8e:1a:3d:7d:7b:c6:
c1:98:f2:be:04:5c:ec:89:69:af:0d:d6:e9:38:00:bb:76:c5:
33:26:af:39:7a:33:70:07:27:ac:95:58:ec:4b:8c:78:7b:3b:
d7:51:66:a0:97:b8:db:73:e1:0c:b0:d5:31:ac:8e:ef:3f:39:
cb:a5:dc:6f:01:bd:ec:c8:66:1c:97:03:98:78:94:87:86:ac:
9c:ad:a3:f9:50:0d:54:d6:01:2b:47:3d:4a:23:b9:21:f4:f3:
e5:c3:dd:bd:ad:66:b7:8a:5e:9e:10:f4:ef:99:e0:d3:65:5d:
68:76:ff:b4:65:7d:52:bb:fe:93:1d:65:5e:8c:a6:be:dd:9b:
53:11:57:95:0a:4f:64:3e:36:42:67:bb:86:fa:ae:f1:57:16:
5c:e2:23:41:25:76:74:8f:41:bc:c6:7b:ce:e1:16:4f:d0:56:
60:02:70:5d:fd:cb:57:64:02:b2:06:e3:4c:42:5a:bc:ec:c1:
2f:32:c4:85:72:e8:30:64:24:72:e1:b9:0a:75:8f:90:e7:85:
7e:5f:b6:d4:d0:d4:60:fe:6d:9b:80:c5:71:05:b0:e6:92:db:
4d:63:49:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:36 2023 by rpki-client on console-fra.rpki-client.org