Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/knugTrCR7gXGNoEHslXe18Y6k_A.roa
File: knugTrCR7gXGNoEHslXe18Y6k_A.roa (raw, json)
Hash identifier: 9ydK9x9vLFokY/GSTzE/f2QzQZBSHNVMgzzw1N4BXn8=
Subject key identifier: 92:7B:A0:4E:B0:91:EE:05:C6:36:81:07:B2:55:DE:D7:C6:3A:93:F0
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1585
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/knugTrCR7gXGNoEHslXe18Y6k_A.roa
Signing time: Sun 07 Feb 2021 12:05:05 +0000
ROA not before: Sun 07 Feb 2021 12:05:05 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 180.177.24.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5509 (0x1585)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:05:05 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=927BA04EB091EE05C6368107B255DED7C63A93F0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:fa:dc:9d:20:20:4e:72:58:63:97:07:45:f9:
ac:83:00:77:80:b8:a7:6e:2a:fe:c4:8c:ba:6a:25:
72:ec:14:26:2c:ad:da:3b:0b:0d:f3:94:fb:6d:a5:
22:a5:6c:7b:2b:29:a0:44:3a:85:b6:75:e3:7f:2a:
33:65:ef:2a:e1:73:74:60:53:27:da:4e:2d:fa:f8:
fe:45:4b:4a:95:0d:c5:c0:87:0a:29:c7:22:ec:92:
15:39:61:e8:e6:29:75:90:38:6a:92:49:66:9d:4d:
cf:a9:a3:77:d8:ef:57:86:27:4e:3e:4b:30:73:19:
4b:54:3f:ca:21:b1:97:f2:42:3e:cd:c3:40:23:5d:
29:8c:64:15:48:22:dd:39:b4:70:dd:12:83:ee:ec:
c8:34:08:29:8e:3b:4f:10:e1:8d:36:89:38:9a:79:
cb:28:20:bf:c7:b6:33:f8:a0:b0:d8:25:38:bc:0c:
36:7f:67:30:c6:c3:b8:e7:b2:13:f2:ec:15:8d:d0:
05:a8:e1:60:fd:ec:e5:75:70:14:07:36:d7:0c:16:
d1:bf:5f:44:41:5a:a5:02:42:d8:8b:36:3f:c3:7e:
3d:1c:6f:b7:0e:e1:2f:99:0e:8e:53:02:d9:0e:77:
48:c1:c7:96:e4:24:1d:fe:39:30:e7:5d:a0:70:c4:
7e:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:7B:A0:4E:B0:91:EE:05:C6:36:81:07:B2:55:DE:D7:C6:3A:93:F0
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/knugTrCR7gXGNoEHslXe18Y6k_A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.177.24.0/21
Signature Algorithm: sha256WithRSAEncryption
b9:e8:1b:54:51:82:b4:88:23:d1:8b:6d:38:7d:16:bc:7e:d2:
e9:62:97:d5:6a:29:f4:38:2c:32:ad:90:70:6c:28:61:12:cd:
13:53:36:25:18:80:0f:3d:7a:57:81:31:43:75:b0:cb:64:79:
ea:26:1e:3e:1d:37:a9:b1:e3:6b:52:78:d6:4b:74:4a:04:4f:
a2:f4:bf:9b:65:26:b1:e5:aa:0f:dc:2e:45:f5:38:1c:63:cd:
9a:06:65:0f:bf:96:6b:15:33:a5:3c:28:b4:ba:d1:ea:21:bd:
98:6a:4a:05:1c:be:d0:53:41:fb:6e:eb:f9:cc:71:a6:86:b9:
0d:77:88:95:9e:8a:e8:71:6b:74:f5:ed:8e:b2:20:47:1c:a2:
25:01:db:aa:02:7f:1c:7b:00:d5:02:a6:3e:68:22:97:c9:33:
06:b1:e2:1e:8e:c3:cb:4e:ea:cb:af:3a:68:93:40:2e:44:29:
b5:c0:c3:6d:44:55:9a:9d:47:07:25:4a:89:7b:e1:b3:1e:b6:
9d:0e:e1:2a:24:4d:4a:e2:79:0c:a6:2a:43:03:4c:fa:19:3e:
b9:47:91:30:8f:b8:bd:06:e3:16:d1:2f:8a:61:52:4d:43:d1:
79:1d:98:eb:36:75:cf:10:64:3d:e8:20:31:c7:fb:55:bf:22:
f2:3d:94:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:57 2024 by rpki-client on console-fra.rpki-client.org