Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lKLk4YBdCXKGKwyhAWMD6EMH6sk.roa
File: lKLk4YBdCXKGKwyhAWMD6EMH6sk.roa (raw, json)
Hash identifier: WXIsTmI83RdwzJiHwBqkjNdcRczMQT3DaL0jaseZpJQ=
Subject key identifier: 94:A2:E4:E1:80:5D:09:72:86:2B:0C:A1:01:63:03:E8:43:07:EA:C9
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lKLk4YBdCXKGKwyhAWMD6EMH6sk.roa
Signing time: Thu 15 Sep 2022 02:53:21 +0000
ROA not before: Thu 15 Sep 2022 02:53:21 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 180.177.232.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8098 (0x1fa2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:53:21 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=94A2E4E1805D0972862B0CA1016303E84307EAC9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:a1:f7:bc:a6:dd:0d:e9:da:17:ac:38:3b:1a:
98:58:f8:54:01:2b:f8:ad:bc:1b:a0:30:77:62:7e:
f2:c5:73:8e:94:30:44:11:a9:2e:f1:6f:c0:1b:ae:
4b:f3:31:a2:e5:9c:61:f0:19:c0:d6:b9:ad:2c:c1:
1c:af:0c:e3:41:8a:6c:49:ce:3a:c6:30:ed:bd:d2:
68:08:9d:b3:bc:81:d7:7a:24:a6:72:c9:bc:62:c0:
12:6e:86:3c:dd:80:d0:c9:5a:93:5b:47:a1:7c:d5:
e0:5a:5f:be:f9:07:5f:65:b9:72:4c:11:41:d2:45:
9e:bc:d7:5c:cf:5b:b1:e1:49:31:e3:c8:4e:fd:c8:
b7:8a:f3:10:42:89:8b:50:85:0f:b5:82:c2:12:f3:
f2:3f:ed:8b:79:5c:9c:89:fd:35:36:f1:d3:e4:d7:
b7:90:46:7a:24:48:a1:9b:e0:0c:0a:1d:ec:0a:c3:
5e:3b:71:bb:82:f0:2f:46:bd:05:e7:86:9e:fe:c3:
b7:8b:2b:dc:b5:c4:02:00:67:0c:25:91:01:bc:eb:
0e:99:d1:72:75:c6:d4:fb:40:fb:85:c1:4b:88:7b:
6a:d4:12:fe:83:f7:d6:0a:51:c9:95:8a:82:34:8a:
79:7b:e4:d0:13:42:99:49:33:b7:f5:8c:3a:8d:8e:
ba:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:A2:E4:E1:80:5D:09:72:86:2B:0C:A1:01:63:03:E8:43:07:EA:C9
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lKLk4YBdCXKGKwyhAWMD6EMH6sk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.177.232.0/23
Signature Algorithm: sha256WithRSAEncryption
b0:67:a5:43:83:55:16:65:db:a7:a4:58:23:45:af:78:54:40:
94:28:3e:8c:8f:25:5e:fb:7e:5d:e9:62:28:fa:d4:36:aa:10:
14:12:23:7a:4f:2a:d3:e2:e3:21:4b:8c:0c:ca:55:80:4d:92:
0b:95:ff:c4:51:e5:27:5b:de:4b:58:61:bc:1b:d5:4b:74:cd:
67:40:b7:1c:b8:09:01:9e:80:a6:9e:4b:53:ae:8a:fc:9d:44:
a1:43:b8:9a:89:e9:c3:67:b3:b6:1d:58:28:48:a2:a2:4f:78:
b2:de:a7:e6:89:f3:49:56:87:30:b7:32:0d:4e:d6:ce:a8:53:
c5:18:a1:6d:5e:3f:3b:0e:62:84:b7:90:79:6a:97:c0:cd:2e:
8e:99:05:11:a7:20:ee:03:e9:36:a6:52:03:7d:f7:56:44:6a:
9a:74:a5:b5:12:14:e5:83:2d:36:df:9b:89:d8:e2:5c:c9:5e:
7e:f5:c1:bd:cf:dd:8b:ef:14:fc:13:97:4b:f6:f1:16:24:14:
84:f2:b3:25:a0:62:f7:a0:85:02:7c:62:1e:75:a5:5d:ac:a1:
ae:cb:b2:46:3f:82:98:64:8e:2e:ae:a3:48:a8:c3:2d:c9:65:
55:b9:68:26:1f:85:a9:4b:29:86:cf:82:a8:6b:ec:37:47:d8:
01:e8:6b:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:39 2024 by rpki-client on console-ams.rpki-client.org