Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hLQ84BfI_N6ShawsD79xuQdBEro.roa
File: hLQ84BfI_N6ShawsD79xuQdBEro.roa (raw, json)
Hash identifier: 4cRYO0vXHOqnj1OmAHYejFy1EEct/3N4Xl7z2lbHKMU=
Subject key identifier: 84:B4:3C:E0:17:C8:FC:DE:92:85:AC:2C:0F:BF:71:B9:07:41:12:BA
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 16B3
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hLQ84BfI_N6ShawsD79xuQdBEro.roa
Signing time: Sun 07 Feb 2021 12:13:45 +0000
ROA not before: Sun 07 Feb 2021 12:13:45 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 180.177.64.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5811 (0x16b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:13:45 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=84B43CE017C8FCDE9285AC2C0FBF71B9074112BA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:75:c4:6b:75:76:6b:ed:cd:58:2a:dc:97:cd:
31:ca:44:6e:be:13:99:49:40:b2:30:4c:c0:4e:85:
6c:c1:6c:50:42:be:ed:ad:78:c5:bb:b7:9e:df:6b:
38:dd:cb:d7:e9:10:dd:b8:22:5d:aa:dd:dd:ec:4b:
5e:a9:c4:63:93:4d:87:9a:d4:d1:c7:8f:22:e8:7a:
2f:2d:99:51:fb:0b:71:b8:c7:73:98:4f:b5:49:6b:
89:5d:58:69:c1:8f:c5:89:46:3c:09:f5:83:32:83:
58:6a:30:a9:5d:0c:75:18:57:02:8b:8c:a5:29:0b:
ef:db:39:13:79:32:21:18:30:40:0c:e0:8c:67:3d:
42:c7:7e:41:fd:8c:0e:22:58:c3:eb:88:78:c8:83:
7a:2f:73:5b:d0:e5:22:b7:15:09:b4:6f:66:1c:9f:
e1:9c:c6:0e:d3:d2:76:48:97:17:1f:77:b6:5e:d9:
a3:71:ec:9e:0d:8c:5c:9d:09:44:65:91:fc:42:ec:
79:91:39:c0:7f:1f:f5:f6:c3:d6:98:1c:33:a1:48:
8a:74:77:bd:af:f1:d0:59:9c:e3:fc:0a:68:d2:6d:
75:5d:d5:3e:39:91:22:b6:75:e7:51:79:86:d4:07:
f5:1c:32:83:50:63:b4:15:e5:56:a1:31:32:17:44:
8e:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:B4:3C:E0:17:C8:FC:DE:92:85:AC:2C:0F:BF:71:B9:07:41:12:BA
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hLQ84BfI_N6ShawsD79xuQdBEro.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.177.64.0/20
Signature Algorithm: sha256WithRSAEncryption
5d:a9:0c:9f:b7:72:d5:cf:bc:95:30:7b:ff:a2:ca:db:45:cb:
6e:ca:ae:ab:77:b6:0b:73:4e:c3:85:a2:e3:56:96:77:8b:ab:
96:4f:38:73:9c:aa:3a:8b:44:a4:ac:bc:77:a9:3c:de:c1:5e:
5c:7e:57:84:22:5e:35:0c:bf:31:a8:be:a6:5c:c9:6b:37:37:
c6:dc:03:b6:68:9d:db:c2:b3:a8:35:5f:12:36:77:57:bc:ce:
9d:e1:e6:03:28:71:c6:1d:12:17:ad:42:92:a4:f5:99:b6:06:
61:9f:0a:b6:0b:75:59:60:8a:37:36:bd:1c:e9:89:3a:36:3d:
bc:09:68:79:db:91:f8:98:4d:91:79:7a:01:4c:64:b9:01:7e:
fa:e2:cc:6d:db:24:72:66:19:c1:3d:d7:b4:a7:5e:23:1d:70:
33:34:cd:b8:48:24:03:4a:91:b3:eb:24:97:ef:9c:5e:75:0f:
a9:23:d9:36:69:11:51:2f:79:9e:b5:e9:bc:f5:a9:e4:d8:c3:
34:44:48:74:5d:78:46:46:2b:7e:74:0c:a5:29:93:7b:9a:44:
34:e3:b6:59:0e:4d:13:ba:e1:35:6b:e1:a2:19:c6:75:dd:2b:
7d:af:19:f8:69:9e:a9:ce:e7:58:3e:f7:cf:48:13:5c:1c:79:
75:3d:39:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:56 2024 by rpki-client on console-fra.rpki-client.org