Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/iOzR70T_0w3QBaurPw8lb_qF2sE.roa
File: iOzR70T_0w3QBaurPw8lb_qF2sE.roa (raw, json)
Hash identifier: KnRD527h+MkgzbaAgoDXdHam2rNz6j3bpvnphN1J6NI=
Subject key identifier: 88:EC:D1:EF:44:FF:D3:0D:D0:05:AB:AB:3F:0F:25:6F:FA:85:DA:C1
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 0CED
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/iOzR70T_0w3QBaurPw8lb_qF2sE.roa
Signing time: Tue 29 Sep 2020 09:53:58 +0000
ROA not before: Tue 29 Sep 2020 09:53:58 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 180.177.168.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3309 (0xced)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 09:53:58 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=88ECD1EF44FFD30DD005ABAB3F0F256FFA85DAC1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:fe:29:69:7a:6c:99:3f:78:3a:73:12:15:34:
ef:e8:5d:b5:87:14:30:a0:93:4b:66:c1:e9:78:f5:
4b:fb:9e:43:fb:1d:d4:cc:a7:7c:44:6a:07:b3:f8:
77:00:8a:d8:27:f2:36:af:e4:da:de:84:84:e7:db:
8d:66:cb:58:70:0f:d9:b9:76:22:94:87:bf:6d:23:
42:bd:4c:12:97:72:20:2d:b0:55:cc:40:96:98:69:
91:71:bd:f8:a2:81:4f:70:15:05:d9:95:0a:02:c1:
53:5c:2e:28:4d:18:b6:7a:14:6b:8a:d3:e5:1d:a3:
db:e9:e3:f7:51:e8:91:f3:9c:5e:5d:f5:d7:17:d5:
7e:b8:f7:1b:fe:9d:be:57:dc:b4:c6:4c:ed:e2:70:
8b:3b:3b:c9:c2:a2:b9:4b:8a:e4:a3:31:ce:34:8c:
ef:72:dc:3b:16:d2:2b:87:b1:9f:22:36:2a:cc:c0:
58:95:18:e1:c8:80:ff:3c:8f:43:df:3f:e6:43:2f:
05:34:ac:e2:9a:ca:b5:85:72:8b:7e:05:1c:ff:ae:
f2:1a:56:44:d5:18:ac:bf:7c:9c:1e:1c:3f:61:f1:
01:6c:f6:c0:01:54:1b:34:b0:40:6a:f2:b1:d9:d7:
af:0d:cc:d0:66:50:c4:39:33:4c:10:81:23:cb:ad:
be:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:EC:D1:EF:44:FF:D3:0D:D0:05:AB:AB:3F:0F:25:6F:FA:85:DA:C1
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/iOzR70T_0w3QBaurPw8lb_qF2sE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.177.168.0/21
Signature Algorithm: sha256WithRSAEncryption
28:2f:bd:2e:b9:a7:a9:e6:91:68:d3:9d:a1:12:39:56:22:5e:
0d:66:7a:fc:da:90:97:f4:1f:33:92:22:33:a9:19:c1:e4:7d:
02:da:08:68:05:e7:63:30:ea:3f:2c:5e:b6:39:0d:ef:00:d9:
ab:69:44:70:f5:75:7b:f1:ef:5d:94:f9:9f:e1:8f:5e:bb:2f:
0a:8e:08:b5:7f:8c:ea:ca:18:5e:1a:18:f1:a3:af:06:20:04:
9b:fb:45:d5:4c:f4:27:58:5a:53:ad:b6:6c:60:de:90:35:50:
b7:b9:68:1d:d5:53:5b:da:d8:64:ca:ab:84:0e:28:0a:dc:ec:
b3:00:7c:50:d4:69:47:ab:18:3f:79:77:03:2c:06:57:9f:9d:
82:a2:59:5d:8c:24:1b:95:5d:db:25:d5:ca:de:ae:a8:35:80:
d7:b8:b0:8e:8f:a4:4a:a8:e3:6c:eb:41:3f:08:1f:49:19:8e:
e8:59:fc:3a:dc:41:fe:bb:b9:58:9e:3a:67:73:53:00:27:2a:
42:32:c5:c2:87:96:3b:eb:0d:e6:a5:f4:7d:16:2d:85:eb:5f:
4a:b8:7b:08:e8:c5:91:24:37:7b:f1:c6:fd:87:e6:2d:46:1b:
bc:69:0e:7d:2b:77:8b:fe:8c:ee:ff:57:b2:fe:4c:bc:96:9f:
30:90:b4:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:38 2024 by rpki-client on console-ams.rpki-client.org