Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/r3qwNWddtAOXbJfNDAIc7AuUrIk.roa
File: r3qwNWddtAOXbJfNDAIc7AuUrIk.roa (raw, json)
Hash identifier: ckQS/Wm2dEwILyUJAHcnyMGpvTZSxuKYaNedNPWR9LU=
Subject key identifier: AF:7A:B0:35:67:5D:B4:03:97:6C:97:CD:0C:02:1C:EC:0B:94:AC:89
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1911
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/r3qwNWddtAOXbJfNDAIc7AuUrIk.roa
Signing time: Sun 07 Feb 2021 12:56:45 +0000
ROA not before: Sun 07 Feb 2021 12:56:45 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 180.176.0.0/15 maxlen: 15
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6417 (0x1911)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:56:45 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=AF7AB035675DB403976C97CD0C021CEC0B94AC89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:fe:37:aa:f2:ea:1c:83:f4:2c:59:8e:3c:76:
8d:3a:1b:b7:33:70:fb:6a:fe:36:be:00:fc:34:27:
51:ed:35:c6:27:64:73:a3:08:c8:96:52:24:8c:30:
8f:d1:33:2a:7b:75:6a:6f:71:a5:fd:1b:a2:75:c3:
48:c9:90:8c:8f:ae:3d:51:55:e2:0e:4d:e6:ad:2f:
fb:2b:79:64:77:d9:a7:b8:2a:31:0e:d9:13:39:a9:
3f:c7:fc:b7:62:3d:db:db:d6:52:19:e7:dd:24:c4:
e8:99:68:fa:b5:f5:03:ee:18:5c:bc:45:4f:67:9c:
3a:e3:27:d8:a4:ef:8c:ce:06:48:69:de:4e:69:72:
3a:e8:31:6c:8a:01:79:87:1d:57:c2:eb:bb:6e:8b:
25:76:22:ff:83:cc:c8:2f:d0:aa:70:08:81:0a:b3:
0a:6f:83:ad:03:f7:aa:cd:b8:73:f5:11:fb:32:8f:
4c:12:75:99:47:ae:bb:f2:c9:00:18:3e:fb:22:21:
a8:0a:56:a8:36:06:ae:8d:6b:69:d1:76:e8:58:d0:
c7:ea:f1:cf:93:99:bc:97:e8:e3:d2:26:40:f7:0c:
a2:51:08:39:2a:36:0f:a9:b0:f6:fb:0e:d1:fc:97:
c9:52:c4:6a:d3:49:18:d1:27:57:3f:df:9d:58:3c:
a7:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:7A:B0:35:67:5D:B4:03:97:6C:97:CD:0C:02:1C:EC:0B:94:AC:89
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/r3qwNWddtAOXbJfNDAIc7AuUrIk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.176.0.0/15
Signature Algorithm: sha256WithRSAEncryption
5c:7f:87:2d:00:cb:e8:76:d2:cd:ce:1c:4f:25:a4:e8:85:77:
d8:de:60:1f:16:d4:71:7d:de:bb:2a:77:b8:91:cd:4a:c3:0f:
b8:3a:ef:b6:30:d0:be:7e:8d:aa:a8:75:00:16:cc:ce:b9:46:
b5:04:4f:55:76:13:ec:3d:9a:25:51:4c:d8:51:16:ba:34:a7:
c1:3f:be:ff:7d:25:00:a0:6e:43:90:94:94:24:a3:c5:ed:2f:
be:10:49:0c:b8:94:0f:da:31:0b:fb:f1:56:5b:32:d6:df:72:
65:8b:5b:f9:71:81:7c:e2:5d:8c:e4:57:64:57:51:ae:1c:34:
18:49:af:58:e4:99:ad:8a:03:e0:bc:08:9f:45:a5:3e:7c:df:
14:70:c2:fc:7e:c4:ad:e1:8e:02:77:74:b5:e7:0c:a7:e3:10:
95:9c:9c:b2:86:7d:c2:3c:3e:59:8c:ab:4d:1b:2e:51:76:5d:
51:d6:e4:41:31:60:32:cc:a5:2a:f3:16:52:68:2e:6a:6b:e2:
db:d4:4d:7b:c3:8b:63:70:b0:70:b8:e9:87:3f:52:b5:7f:35:
19:d1:4a:4a:df:be:3c:63:ce:60:e6:de:ef:9f:ef:38:dd:eb:
79:63:7c:8b:92:64:97:49:4d:d2:f5:4a:5d:51:da:4d:aa:30:
dc:f2:b4:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:41 2024 by rpki-client on console-ams.rpki-client.org