Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/oftw_5nkiIS4LXr5c8-V4wFcTBM.roa
File: oftw_5nkiIS4LXr5c8-V4wFcTBM.roa (raw, json)
Hash identifier: NzACv/l9VOMMHzDOseFp7XrHhExajpSY7Ltve8jATQA=
Subject key identifier: A1:FB:70:FF:99:E4:88:84:B8:2D:7A:F9:73:CF:95:E3:01:5C:4C:13
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1B9C
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/oftw_5nkiIS4LXr5c8-V4wFcTBM.roa
Signing time: Wed 29 Sep 2021 02:46:48 +0000
ROA not before: Wed 29 Sep 2021 02:46:48 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 180.176.232.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7068 (0x1b9c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:46:48 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=A1FB70FF99E48884B82D7AF973CF95E3015C4C13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:aa:46:d3:b9:41:e3:27:70:a8:43:57:ab:b1:
ee:a4:fb:26:ce:0d:6e:f4:50:fe:b0:64:4d:b4:f5:
3e:5d:5f:38:1c:94:af:68:5e:47:28:e3:f3:57:29:
c0:dd:da:d1:ad:c8:e9:54:a8:75:c9:6a:84:8d:0f:
50:d0:45:c1:48:da:4b:57:92:e5:55:5f:40:24:44:
a6:43:43:a6:ef:39:ae:f4:aa:e2:ba:66:d6:ee:b9:
bb:2b:ef:ae:06:93:cc:6e:15:8c:9d:ce:14:31:6e:
7e:45:7c:3e:81:3b:dc:1f:68:6e:59:a2:17:46:0b:
a9:41:d5:55:ff:84:6b:f2:78:8a:62:13:d4:61:85:
02:d9:59:1a:c8:f2:4f:be:66:64:54:5d:53:a8:5f:
58:ff:74:02:cd:ff:6e:46:9f:3e:04:58:0b:82:21:
73:90:21:0e:a4:25:60:85:3e:1b:e4:cf:b8:d9:e0:
8a:b1:97:39:ba:9b:2f:fb:89:b0:2e:d3:8d:65:d8:
4b:b6:36:18:d7:6e:04:f0:b1:8c:bc:55:d6:39:e1:
41:b3:a0:31:9c:6c:86:aa:3a:ea:75:5c:58:e4:ed:
cf:2d:bb:1b:af:58:ed:e7:31:d7:6e:29:6e:e5:71:
b0:93:b1:a5:60:61:81:8e:7b:05:ac:cc:b3:4d:b4:
a4:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:FB:70:FF:99:E4:88:84:B8:2D:7A:F9:73:CF:95:E3:01:5C:4C:13
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/oftw_5nkiIS4LXr5c8-V4wFcTBM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.176.232.0/22
Signature Algorithm: sha256WithRSAEncryption
07:20:36:1e:21:f8:0d:9d:7b:9c:dc:07:dd:da:9d:0c:2b:43:
12:0d:6e:c0:b4:19:b0:34:72:56:f6:09:18:45:90:64:7e:13:
70:dc:76:4f:70:97:df:bd:56:5a:67:d7:60:ca:f0:78:b3:c6:
63:38:ba:73:7f:a1:fd:06:39:91:bd:8f:5e:b9:b5:87:42:33:
0a:48:c8:e1:28:47:1c:a9:8f:43:3b:c2:ea:ad:a9:52:62:10:
78:1e:8c:29:54:13:9b:53:66:e9:e2:a3:17:ca:2d:c5:e9:6b:
65:1f:cb:6a:b4:4f:e8:63:5d:7e:3f:6e:bf:a0:7f:d8:cb:d2:
fd:0a:23:bb:06:20:c2:29:fa:44:58:0a:14:96:ca:5e:61:47:
9a:df:d0:dc:16:ab:cf:89:de:7e:75:0b:b0:21:60:ca:09:94:
f5:29:c8:72:a0:5b:4c:bd:72:c7:fc:e6:1d:a3:0d:9f:a1:45:
ad:e2:ae:b3:a1:11:5b:e3:e6:eb:8d:ba:cc:87:74:cd:d5:64:
dd:84:18:64:30:e1:56:ff:ed:91:74:97:f4:ea:99:18:f2:3c:
56:22:37:b7:3c:56:ed:b4:da:6f:1f:b2:89:fb:ef:1e:90:39:
50:af:65:11:79:c2:cf:bf:7a:6f:05:a0:7a:f7:8d:ef:3e:00:
be:d2:23:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:28 2023 by rpki-client on console-ams.rpki-client.org