Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/jLjuHt4E3U5LLmIwyhfM1mI75sQ.roa
File: jLjuHt4E3U5LLmIwyhfM1mI75sQ.roa (raw, json)
Hash identifier: fxlEVwDh+UF8ABqhe0tWl4izr2Cty45qnW2ylFga0CQ=
Subject key identifier: 8C:B8:EE:1E:DE:04:DD:4E:4B:2E:62:30:CA:17:CC:D6:62:3B:E6:C4
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 15D5
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/jLjuHt4E3U5LLmIwyhfM1mI75sQ.roa
Signing time: Sun 07 Feb 2021 12:06:47 +0000
ROA not before: Sun 07 Feb 2021 12:06:47 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 180.176.140.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5589 (0x15d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:06:47 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8CB8EE1EDE04DD4E4B2E6230CA17CCD6623BE6C4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:c3:8a:da:ba:12:2c:81:74:a1:9a:a2:0f:ed:
a6:ae:53:7e:37:a3:c7:84:03:2c:61:d2:5e:7f:6c:
c4:5b:e7:e5:f7:d2:d3:06:82:09:15:ce:ac:39:77:
b9:7b:71:1b:b0:2f:12:d9:5c:5e:30:18:15:3e:97:
03:a1:3e:5f:51:b5:50:1b:e1:f5:9b:f0:c5:9a:4a:
a4:e9:6f:fd:83:01:ba:fd:84:af:9f:27:53:a2:14:
10:fb:48:51:82:f1:46:29:79:00:76:de:8c:f3:35:
08:34:51:62:4d:f3:75:d3:8f:b1:f0:f3:e2:4f:09:
4e:3b:23:f2:03:fe:5c:24:7b:0c:11:e1:6c:10:93:
33:aa:6b:20:ea:ef:69:83:23:6a:10:9c:6d:a9:75:
29:5f:fe:f6:85:f4:cb:88:a0:1f:9d:c0:76:55:cb:
11:92:d1:84:2a:97:d9:f4:05:aa:d3:45:f0:2c:b1:
59:ac:26:d8:e7:e7:d3:3a:e9:f1:c3:c9:c5:63:5c:
aa:41:98:16:ef:90:df:a8:ea:0e:dd:f9:42:71:71:
7b:e6:a2:57:8f:b0:bd:cc:5b:fa:f0:16:c2:ab:a4:
28:89:8a:bf:48:20:f1:ef:99:93:be:3e:25:e9:2a:
84:09:1f:b1:b0:c4:73:0b:07:5e:46:40:dd:26:b6:
cb:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:B8:EE:1E:DE:04:DD:4E:4B:2E:62:30:CA:17:CC:D6:62:3B:E6:C4
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/jLjuHt4E3U5LLmIwyhfM1mI75sQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.176.140.0/22
Signature Algorithm: sha256WithRSAEncryption
63:c7:9b:76:fe:e2:71:37:0f:63:e7:38:4a:fd:02:39:34:6b:
c2:56:ee:26:33:82:20:1c:58:d7:97:4f:3c:52:bc:88:e5:52:
de:a0:bf:04:89:ec:e0:93:0c:ab:51:fd:08:1e:71:7e:41:af:
2f:cc:40:3a:33:e9:dd:94:bb:14:b9:32:2f:a3:86:e3:dc:df:
58:28:00:6d:59:6c:a9:5f:4a:6c:17:8d:30:ed:07:5e:37:9e:
4b:28:7e:1e:35:47:4e:c0:88:95:81:fc:8f:cf:b7:84:f9:d0:
98:f6:24:6c:00:d5:93:4b:2f:95:46:e3:ee:17:bf:3b:15:c2:
00:7d:23:84:d1:5c:6b:64:34:1a:69:87:c0:4b:fc:21:6f:f4:
7a:7a:37:21:c9:e4:dc:6e:f7:0c:1a:91:21:4f:10:2b:de:bc:
5f:9f:9b:c6:d9:32:7c:37:ce:5a:a8:53:a1:1f:f2:83:79:56:
91:3f:ce:44:8d:6d:42:4f:dc:82:e2:4a:d9:a7:4a:f7:ce:81:
dc:fa:71:89:f0:ce:95:37:08:c3:4c:28:ab:c2:14:68:e5:6b:
6f:23:1f:b8:dd:ad:dc:8a:94:16:b1:f8:fb:0b:fd:5d:8d:13:
37:a8:af:83:5e:75:24:c4:68:dd:30:a5:dc:1c:80:3c:57:c7:
5a:ad:73:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:26 2023 by rpki-client on console-ams.rpki-client.org