Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/qNzy7qKtqX0C2q82d8C1W3ynOYo.roa
File: qNzy7qKtqX0C2q82d8C1W3ynOYo.roa (raw, json)
Hash identifier: IJaAm163hPLkj0mi1da2z/R41qoEZjbzrSfvDrCNrsA=
Subject key identifier: A8:DC:F2:EE:A2:AD:A9:7D:02:DA:AF:36:77:C0:B5:5B:7C:A7:39:8A
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1D11
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/qNzy7qKtqX0C2q82d8C1W3ynOYo.roa
Signing time: Wed 29 Sep 2021 02:48:34 +0000
ROA not before: Wed 29 Sep 2021 02:48:34 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 180.177.48.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7441 (0x1d11)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:48:34 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=A8DCF2EEA2ADA97D02DAAF3677C0B55B7CA7398A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:da:9f:26:60:d1:fa:6f:d8:85:01:fa:5c:35:
46:68:01:0a:f1:bb:b8:95:62:d5:16:75:00:81:39:
1d:5b:b9:4d:57:cc:5b:fb:e1:e2:e8:45:de:e2:c9:
5e:a9:d5:95:6c:bd:b0:0c:07:22:ca:db:35:21:af:
2f:0f:ad:38:e5:88:90:d7:b2:39:58:1d:20:aa:64:
79:92:8f:44:70:e1:29:03:bc:57:43:33:02:02:17:
aa:7d:6a:b2:2f:c3:cc:89:47:33:f3:dd:7c:7e:1a:
1e:aa:84:4d:00:a8:60:6a:72:68:5f:bc:69:c4:84:
7e:0d:85:40:3a:9b:7a:48:c0:2f:69:c0:3c:01:34:
a5:a2:bd:f7:41:b1:c7:5a:74:20:84:ea:23:b4:64:
2a:7f:5b:7a:84:3c:18:15:c3:d5:b0:aa:6c:02:8a:
1f:f1:97:b6:af:78:2d:9c:c6:9c:44:d1:27:c9:a0:
da:63:ed:0d:65:3c:e5:3e:4f:04:ef:4b:50:2f:a7:
20:2f:de:1b:37:27:0c:57:7b:2b:b3:07:58:c6:85:
0a:7c:0a:04:fe:ad:a0:ac:59:9d:d9:d3:f3:c8:a1:
29:49:26:8c:73:d9:cd:0d:44:81:0a:ae:5a:74:60:
88:28:10:31:02:cf:ab:3e:11:ec:b2:26:f8:ab:bc:
3e:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:DC:F2:EE:A2:AD:A9:7D:02:DA:AF:36:77:C0:B5:5B:7C:A7:39:8A
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/qNzy7qKtqX0C2q82d8C1W3ynOYo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.177.48.0/22
Signature Algorithm: sha256WithRSAEncryption
a4:78:aa:cf:2b:d0:94:fd:52:c0:0d:87:31:3c:ae:49:9f:24:
fa:aa:e5:db:e7:54:5a:d0:95:77:56:29:9a:05:50:c2:3a:dd:
24:34:18:c5:ba:eb:97:7a:8f:a6:85:23:df:21:f5:4c:d5:6b:
77:11:c6:7a:1b:a0:f4:58:b2:d4:d3:e9:7f:e3:65:f7:01:99:
fe:31:ca:b7:f9:44:f3:a3:42:64:44:c9:5f:77:03:d4:b1:6b:
52:0f:9d:13:50:34:f9:fb:b8:ef:4e:0f:9b:ca:ca:5e:52:29:
a7:24:b9:11:4c:5b:92:6a:8c:a1:09:35:3f:88:3a:85:39:36:
5c:7b:6f:95:6a:de:43:ff:4f:73:29:2c:e8:9a:40:18:72:cd:
66:48:e7:55:60:4a:ba:82:f1:05:4f:4f:1f:d8:fa:16:a0:93:
cb:05:77:fc:09:9d:1a:8b:ae:26:0f:4a:d5:f2:d1:4e:3a:80:
1c:f4:31:f0:cc:53:2c:50:83:a5:72:bb:95:c8:e9:16:f3:0c:
9f:74:9c:1c:80:c5:9a:6a:c3:a3:0d:05:e4:0d:da:36:3d:70:
8c:92:6c:db:e7:28:67:f7:a5:a7:81:44:e7:04:41:71:82:30:
4d:80:28:37:04:af:bf:db:4a:35:08:4d:eb:86:97:0d:17:55:
d4:96:3e:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:29 2023 by rpki-client on console-ams.rpki-client.org