Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/qQoUs7RH7A3E3Rl54sDy2T5bvu4.roa
File: qQoUs7RH7A3E3Rl54sDy2T5bvu4.roa (raw, json)
Hash identifier: lrOnav5/X8V2X1KIOYvq6ML+nRkXpS3umBLpf90xKIY=
Subject key identifier: A9:0A:14:B3:B4:47:EC:0D:C4:DD:19:79:E2:C0:F2:D9:3E:5B:BE:EE
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1629
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/qQoUs7RH7A3E3Rl54sDy2T5bvu4.roa
Signing time: Sun 07 Feb 2021 12:08:43 +0000
ROA not before: Sun 07 Feb 2021 12:08:43 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 180.177.16.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5673 (0x1629)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:08:43 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A90A14B3B447EC0DC4DD1979E2C0F2D93E5BBEEE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:a3:81:10:11:0e:4e:b8:89:c3:56:30:2b:29:
54:f8:d2:fa:7b:b3:2b:db:91:14:f8:d0:27:6a:bf:
1c:3a:1e:8e:fb:01:23:83:16:ac:f5:3c:59:a1:d6:
74:56:b3:fc:2c:3f:16:15:ee:83:aa:2c:3d:28:a9:
6f:d7:20:6f:8e:45:9f:04:29:a9:91:06:22:3f:08:
76:a7:c6:e1:dd:54:c1:14:9b:a8:99:e0:ad:a6:66:
48:55:ed:8d:42:31:ea:f7:6f:4d:a1:c1:cc:d2:ae:
cc:07:b6:01:40:eb:0d:59:d9:e8:28:5b:21:dc:11:
c0:50:20:cf:6e:a4:11:e6:c4:9e:0e:70:9d:d7:07:
3f:cf:09:46:29:29:22:48:5b:0d:2a:64:a1:45:20:
65:a9:0c:b0:ee:5d:92:58:58:6a:83:10:4c:4a:26:
a3:03:b7:e2:cc:ce:6b:34:fa:c8:f6:4b:27:71:d7:
d1:d8:0a:62:10:af:63:6d:e8:f3:2a:d1:b6:f3:9f:
27:ca:57:d0:c6:dc:da:88:cc:6b:bb:12:76:b5:9e:
c4:79:e8:0c:23:e3:37:5f:c5:3d:73:3b:93:b4:4e:
be:d9:5e:20:c7:16:65:47:1e:00:e1:e8:00:70:bb:
eb:49:61:e8:a6:28:81:1d:cc:0d:8d:ef:5e:97:9f:
44:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:0A:14:B3:B4:47:EC:0D:C4:DD:19:79:E2:C0:F2:D9:3E:5B:BE:EE
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/qQoUs7RH7A3E3Rl54sDy2T5bvu4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.177.16.0/22
Signature Algorithm: sha256WithRSAEncryption
a3:a8:03:b9:53:2e:c1:31:8b:2e:dc:aa:bf:92:b3:28:66:a9:
e5:ee:43:b8:66:82:5c:85:f0:ef:a4:20:11:11:2e:bb:ed:4c:
a3:a1:6c:99:2e:3e:73:5f:34:18:c5:ab:cc:04:82:f1:0a:80:
af:82:01:b7:c3:08:2f:2c:21:9f:e6:70:8c:b2:73:70:75:39:
9f:70:80:93:6d:20:5f:af:9a:12:98:81:56:b2:f8:91:ca:f5:
8c:59:91:1e:5c:48:96:c6:c7:43:ea:77:47:9d:1e:5e:d1:c2:
83:93:0f:ff:0a:fd:fa:54:9d:95:37:42:05:8d:d2:70:f7:86:
50:be:6e:de:17:66:01:b5:59:fe:3d:9d:5f:06:36:d8:d9:08:
ea:0f:c7:f0:e3:40:34:30:be:8e:8c:44:66:4e:1a:92:1b:15:
49:7d:fa:12:fc:ea:a2:13:19:fe:bb:46:41:6e:1f:73:a6:37:
63:31:06:a8:94:de:f1:dd:1c:62:c7:51:61:7f:c8:72:43:fa:
21:5c:76:4f:7c:0c:a3:39:46:a3:da:d0:10:4b:d1:43:cd:f0:
fa:63:79:70:76:5a:9b:ab:2a:26:7e:cd:1d:5e:16:17:27:6b:
f8:fd:e4:63:32:0e:f5:f3:a0:0b:78:b4:06:75:7b:08:ee:a3:
0f:ce:54:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:29 2023 by rpki-client on console-ams.rpki-client.org