Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lovoy5rbUJ7Mmp40VC0nZVASMPM.roa
File: lovoy5rbUJ7Mmp40VC0nZVASMPM.roa (raw, json)
Hash identifier: nG2slE8Vzgnjb5lV3+FFG1WWNun054wDamKEFAGz6Y0=
Subject key identifier: 96:8B:E8:CB:9A:DB:50:9E:CC:9A:9E:34:54:2D:27:65:50:12:30:F3
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 0DB8
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lovoy5rbUJ7Mmp40VC0nZVASMPM.roa
Signing time: Tue 29 Sep 2020 09:54:53 +0000
ROA not before: Tue 29 Sep 2020 09:54:53 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 180.176.72.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3512 (0xdb8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 09:54:53 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=968BE8CB9ADB509ECC9A9E34542D2765501230F3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:37:4b:5f:eb:e8:d2:0d:59:ab:24:19:89:eb:
e1:22:1e:4e:fd:2b:96:fe:84:bd:9e:8c:95:8e:98:
ca:29:33:38:c0:37:7b:68:60:54:02:1b:44:9f:45:
44:66:f4:50:b1:7e:3e:4c:b8:63:91:22:fe:56:e4:
80:6a:d3:6c:44:7c:55:4e:f4:d0:b0:a6:54:54:16:
83:4f:25:42:04:c4:b0:83:e8:4e:04:69:b4:bc:be:
43:12:ac:1a:e8:62:98:ee:9a:e4:ba:91:3c:e9:4b:
9c:65:b0:aa:2f:21:48:af:20:67:94:4d:94:f1:fd:
de:c6:af:f3:03:9e:ac:b7:31:87:9d:61:9d:11:dc:
a4:da:5c:4a:f9:59:f7:23:7a:df:cb:0e:c1:b8:f0:
1d:9d:ff:b6:08:2a:12:6d:f4:b0:1a:8f:b8:fc:82:
6d:b3:16:72:f7:bd:3a:16:7c:50:ac:44:ad:f3:00:
ef:46:f1:6d:1e:b0:8f:23:6a:91:16:cc:22:d8:22:
87:85:36:ab:52:e6:2a:42:b3:be:80:a1:37:0d:ab:
54:b8:06:87:c2:1a:77:7f:59:12:2f:c7:ca:fc:92:
c7:25:35:fa:09:27:d2:22:d3:22:c9:ce:2b:c0:e9:
04:43:05:00:d7:ad:75:e7:2b:99:88:ce:af:62:c9:
2d:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:8B:E8:CB:9A:DB:50:9E:CC:9A:9E:34:54:2D:27:65:50:12:30:F3
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lovoy5rbUJ7Mmp40VC0nZVASMPM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.176.72.0/22
Signature Algorithm: sha256WithRSAEncryption
75:7c:66:46:f5:c8:fe:7f:4f:9a:01:23:e5:17:e9:f0:72:70:
25:84:3e:71:aa:82:ea:46:1a:de:53:a5:2a:8c:50:e3:42:38:
68:1d:10:c7:b6:6c:71:cf:e3:fe:8b:72:1b:12:64:87:e7:b2:
12:f8:a5:4a:2b:be:11:a5:24:18:7a:c5:4f:63:eb:29:42:5a:
32:1b:ec:ee:e1:0c:bb:f5:7e:c3:c1:dc:b5:1c:c9:40:85:db:
50:d2:a2:82:7d:5b:e6:b1:8a:c7:8f:0e:36:94:51:c4:13:12:
e2:92:14:45:68:d3:d2:43:92:26:4c:73:bf:47:af:81:0c:87:
2a:ae:47:90:ad:3f:cd:19:f0:a5:9e:12:79:95:ea:54:a2:9d:
e4:83:0e:0d:97:1e:fa:f7:2e:65:d2:56:6c:77:3e:90:55:d6:
f1:ad:79:c2:9e:f0:d4:a7:79:ea:ba:7a:14:4d:6a:11:2d:56:
1c:f1:2b:68:dd:01:68:82:ae:4c:c1:4b:07:c5:ad:1c:b2:29:
74:8c:fa:4d:a6:b2:d6:23:96:57:a9:5e:dd:6e:51:f6:68:10:
b2:68:69:3a:bf:d0:cb:ea:3a:ec:a9:c7:07:4f:bb:ea:e7:49:
85:69:c0:3d:e2:2c:67:ba:3a:96:e6:cc:f9:73:90:43:b5:fe:
be:8c:63:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:27 2023 by rpki-client on console-ams.rpki-client.org