Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/oCqFaCB_L0O8dVlfHCcOQg-Q7HQ.roa
File: oCqFaCB_L0O8dVlfHCcOQg-Q7HQ.roa (raw, json)
Hash identifier: Ck/xBv8/Jwb6hS1XL3j/X4rgWLyV1N7tSuG97IJPGTA=
Subject key identifier: A0:2A:85:68:20:7F:2F:43:BC:75:59:5F:1C:27:0E:42:0F:90:EC:74
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1AB1
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/oCqFaCB_L0O8dVlfHCcOQg-Q7HQ.roa
Signing time: Wed 29 Sep 2021 02:45:38 +0000
ROA not before: Wed 29 Sep 2021 02:45:38 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 180.176.16.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6833 (0x1ab1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:45:38 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=A02A8568207F2F43BC75595F1C270E420F90EC74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:3e:e0:34:f3:92:61:a3:ac:05:44:20:e2:cc:
06:c4:26:2b:7a:2b:61:73:f0:29:df:b4:89:50:11:
f2:35:51:91:a5:d5:77:29:bf:10:de:b5:c6:60:44:
f9:4a:5f:85:48:e8:f8:3a:26:ad:1c:12:b7:3c:0e:
d9:d7:cf:e1:e6:d3:d8:42:bd:b0:63:a9:f7:66:f7:
16:78:64:89:58:25:ef:a4:d7:79:87:b1:5f:59:3b:
17:0d:ab:73:d6:2c:64:79:37:5e:86:42:1b:99:ab:
8e:43:63:5a:59:be:20:1f:53:19:fc:37:ac:4b:b1:
38:81:50:02:f1:4a:84:54:26:a8:fc:8d:14:f3:53:
3f:b3:9f:85:2c:ca:5a:80:d5:45:63:e2:db:81:f5:
33:cb:dc:95:b2:bc:fe:79:f6:c9:12:59:2e:54:4c:
55:99:91:68:19:c0:48:e7:01:14:7f:5c:71:41:29:
e5:97:64:d2:a2:ae:3e:a0:f0:5f:cc:34:41:19:a3:
7a:a0:b8:44:46:46:68:f1:6b:12:ce:51:86:50:18:
bc:f3:7b:82:09:ba:48:91:4d:64:17:94:02:b3:b8:
9b:94:21:72:db:a7:75:c4:02:31:bc:7d:49:b5:b6:
17:ce:55:46:59:b5:8e:ff:66:fb:88:40:3c:be:17:
76:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:2A:85:68:20:7F:2F:43:BC:75:59:5F:1C:27:0E:42:0F:90:EC:74
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/oCqFaCB_L0O8dVlfHCcOQg-Q7HQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.176.16.0/22
Signature Algorithm: sha256WithRSAEncryption
a1:f9:e2:b8:55:7e:9a:46:73:c6:4b:f9:14:99:64:0e:5d:57:
c7:ec:b4:b6:71:05:fe:de:a9:eb:f8:65:52:1d:0f:f4:bd:51:
20:dd:3a:ef:09:fc:f8:36:b5:c8:f6:b9:69:a9:f2:3b:df:2a:
cf:64:b0:1a:09:f4:42:fd:f9:df:cc:19:7d:4b:da:ef:0a:c2:
bf:28:7d:49:1c:88:46:31:38:3d:fd:9e:03:e1:e1:3f:5d:77:
2a:5c:7a:69:ce:b0:3d:68:ca:bf:b3:35:f7:cc:d6:45:81:a8:
85:7b:28:6c:fd:d4:26:9f:1e:03:24:a3:23:5b:03:21:dc:36:
11:51:5a:4e:58:c9:aa:79:03:5b:08:bf:45:f7:a1:b3:f9:a2:
2a:69:10:00:85:8b:79:43:08:ac:f1:b5:d4:aa:61:6d:e5:20:
96:bd:ce:d2:a8:d9:3c:d2:07:3f:98:f8:e9:07:01:f0:6c:10:
0a:a6:0b:c3:09:19:42:0d:38:f0:7c:87:f4:d2:8c:ed:17:93:
58:12:55:65:77:51:63:79:e8:89:7e:09:82:33:86:c9:cb:b7:
72:6c:52:20:d3:bc:d3:33:ba:08:d0:a7:d6:c5:cb:27:42:dc:
21:02:d7:c0:e1:8e:72:dc:aa:00:f7:fb:11:89:fa:0b:aa:fd:
d5:6a:42:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:39 2023 by rpki-client on console-fra.rpki-client.org