Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/sZ7XeyaorcMBsPwGcdjENVB-FV0.roa
File: sZ7XeyaorcMBsPwGcdjENVB-FV0.roa (raw, json)
Hash identifier: 1cDFNaMRw4F5Vk+084vVJsLp2/+kW8kI/+97dkBYlw0=
Subject key identifier: B1:9E:D7:7B:26:A8:AD:C3:01:B0:FC:06:71:D8:C4:35:50:7E:15:5D
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 20B3
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/sZ7XeyaorcMBsPwGcdjENVB-FV0.roa
Signing time: Fri 25 Nov 2022 04:39:01 +0000
ROA not before: Fri 25 Nov 2022 04:39:01 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 180.177.144.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8371 (0x20b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:39:01 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B19ED77B26A8ADC301B0FC0671D8C435507E155D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:28:39:38:d3:aa:23:4e:19:11:78:e2:fe:4d:
52:57:84:e4:f9:4f:e4:7b:f2:b1:99:83:d2:db:48:
5f:67:cb:b9:ff:9a:f8:4e:57:25:ff:31:0a:af:cf:
82:c9:66:a2:02:25:7c:bf:d0:18:54:d0:98:bf:06:
ea:2f:3b:29:b3:84:51:bc:3b:c9:0b:16:b9:f6:d3:
21:37:28:2e:c5:db:30:7d:c3:51:d8:50:b7:99:4a:
8f:50:4b:a6:7a:b5:e3:8b:0c:29:04:bf:1a:a1:25:
2c:1c:c2:71:b2:08:e4:f2:44:80:e4:fb:76:87:54:
91:a9:78:0e:4a:29:21:03:da:d5:01:72:22:18:ed:
21:08:a8:f6:c5:67:1a:67:bb:02:30:d5:67:60:67:
65:91:5f:c1:05:64:6f:eb:74:86:64:2d:8d:45:99:
07:35:a0:a3:b7:65:b3:95:fe:36:1c:00:ec:de:6e:
cc:cf:2c:b4:16:e8:39:64:4d:cc:02:e5:43:90:5e:
86:b5:87:63:36:cb:79:91:47:d2:cd:7c:14:0c:71:
31:c7:c2:2e:fa:c9:50:20:aa:2b:cd:28:0d:65:07:
62:b8:9e:49:77:1e:1b:51:4b:7e:0c:43:3b:d7:86:
fe:0b:93:07:06:38:76:0b:9a:a7:90:7f:d8:d5:da:
bb:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:9E:D7:7B:26:A8:AD:C3:01:B0:FC:06:71:D8:C4:35:50:7E:15:5D
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/sZ7XeyaorcMBsPwGcdjENVB-FV0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.177.144.0/21
Signature Algorithm: sha256WithRSAEncryption
36:f6:e5:1b:ee:59:76:d7:f5:03:a3:cb:4c:d1:4b:67:99:54:
97:16:33:cd:68:4a:00:23:60:a7:26:b6:7e:30:64:8d:13:54:
9a:3e:40:14:b9:d6:81:cd:4b:bf:74:0f:18:36:f8:f2:fa:49:
a3:5d:e6:84:f5:cf:45:7f:c6:a0:0a:e4:80:98:3f:5f:72:fe:
0f:39:95:1e:ae:75:40:b0:70:30:12:75:ed:a9:71:da:eb:bb:
dd:ad:e3:ff:a8:f4:29:83:90:0e:09:68:bd:51:99:33:ac:0c:
1b:4a:d0:20:de:41:ff:84:d2:82:33:dc:cd:21:d0:2f:4f:98:
7c:88:63:7c:58:82:c9:f9:30:ab:16:36:d2:b0:d2:c6:6f:56:
34:c6:7c:c4:80:03:71:a9:2f:9c:6f:7c:c2:ae:2c:4f:4c:61:
81:d5:a2:48:26:68:b7:23:a4:58:fb:a2:1c:8c:4f:a3:9b:a8:
79:73:67:a7:69:be:07:a4:70:70:f1:d1:34:c7:e6:e0:db:eb:
75:41:b6:bf:65:46:c2:b3:d7:bd:11:39:e2:f2:a5:0d:6a:14:
9a:1d:31:1a:8f:60:53:29:b7:de:35:76:f9:16:bb:46:a4:14:
b6:6e:a2:e8:0e:cc:1e:bd:a9:89:20:45:fd:df:19:a0:24:b7:
f1:70:d1:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:41 2024 by rpki-client on console-ams.rpki-client.org