Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/i-pBbuf0qtT70U1LgLm4knHs730.roa
File: i-pBbuf0qtT70U1LgLm4knHs730.roa (raw, json)
Hash identifier: ySLek31W89ICDS2dOfsCrC+5dnzsR7uWUtyXhh8LpLE=
Subject key identifier: 8B:EA:41:6E:E7:F4:AA:D4:FB:D1:4D:4B:80:B9:B8:92:71:EC:EF:7D
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FFC
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/i-pBbuf0qtT70U1LgLm4knHs730.roa
Signing time: Thu 24 Nov 2022 04:06:07 +0000
ROA not before: Thu 24 Nov 2022 04:06:07 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 180.177.120.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8188 (0x1ffc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 24 04:06:07 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=8BEA416EE7F4AAD4FBD14D4B80B9B89271ECEF7D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:8a:6a:37:97:bb:1d:0e:18:86:0c:f3:b7:92:
c6:33:0b:22:1e:97:56:11:0c:ec:97:13:ef:39:74:
6b:28:a7:79:fa:9a:2c:a0:d7:58:0d:30:9a:75:ef:
79:ef:3d:55:15:49:5a:2f:5e:a7:1c:ac:5f:a9:52:
00:47:25:33:fc:cf:ed:65:9f:98:ab:2c:ee:27:6c:
a1:5d:9f:b3:4c:d0:2a:12:57:71:4e:3c:24:cd:53:
32:81:d0:1d:c6:ac:04:fe:a0:aa:96:fa:21:b8:de:
fe:e4:91:1c:02:f8:15:b6:9b:8d:42:e1:80:a2:ed:
04:c8:87:b1:69:03:0c:7a:d2:82:23:8b:8e:40:e8:
ae:88:ba:a7:b1:c0:48:a8:a1:98:c8:fd:62:c7:96:
cb:98:6e:7c:40:ce:19:97:64:64:7c:a6:2d:b4:80:
b2:5e:1e:1d:08:00:f5:08:23:ff:7e:67:18:81:3b:
cd:21:7a:f4:5d:4a:3d:3a:06:86:5a:79:f9:78:f9:
d3:97:05:ee:dd:1b:e1:8b:f2:7a:68:cf:71:ed:11:
ac:74:c0:01:be:ea:77:ba:a4:86:e9:03:74:2d:a9:
c8:38:f7:d8:71:4c:5f:85:4c:1f:33:29:d8:b6:78:
40:5a:33:e2:d7:e1:b8:90:a4:9d:95:ea:90:29:62:
65:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:EA:41:6E:E7:F4:AA:D4:FB:D1:4D:4B:80:B9:B8:92:71:EC:EF:7D
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/i-pBbuf0qtT70U1LgLm4knHs730.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.177.120.0/21
Signature Algorithm: sha256WithRSAEncryption
77:51:26:94:7c:5a:fc:22:81:5d:dc:b8:4a:80:2b:bf:c8:db:
e4:29:e9:a6:a3:c7:39:77:56:3f:ec:5e:f0:ed:7e:22:b5:86:
34:91:79:77:db:3b:01:69:61:f7:fe:b4:7f:48:94:54:f6:57:
84:49:10:52:f6:a4:f7:2f:59:62:32:fd:f4:4c:4f:6e:e2:dd:
ee:16:14:0e:6c:91:ed:a2:97:0c:a4:e1:d2:61:95:30:6d:20:
91:35:1b:fb:da:2d:4a:39:e2:7a:a4:dd:b8:64:2e:07:57:c9:
af:db:2e:82:8b:44:6e:dc:27:e3:fe:3e:32:e1:28:f2:5f:cf:
a4:7c:fe:8d:2d:59:58:7e:c7:58:82:2a:e5:14:2b:a0:e6:ec:
4d:28:29:f5:e0:7d:bb:ea:99:58:62:7b:4a:37:45:7f:44:ff:
40:52:53:9a:e9:47:65:86:b6:97:d8:37:c7:1d:73:5b:1b:cb:
97:78:a2:72:9f:47:27:75:ab:ff:15:53:b2:3c:c0:e9:de:a7:
52:77:86:16:70:d7:4e:03:45:7f:e3:73:e7:81:e1:5f:99:3e:
aa:dc:8b:ca:7a:c2:99:23:e5:20:16:65:35:a7:eb:b3:5b:fd:
72:e1:4c:df:f9:f4:f9:a6:e3:12:64:c1:6e:90:ba:8e:35:88:
c7:f2:ae:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:56 2024 by rpki-client on console-fra.rpki-client.org