Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/wEVWOg65Qlfr30qOMq-cm0e-k40.roa
File: wEVWOg65Qlfr30qOMq-cm0e-k40.roa (raw, json)
Hash identifier: q3BPipRbeUX6ogI0VpE/gLggVyQcIarWzc2/o2S7zVA=
Subject key identifier: C0:45:56:3A:0E:B9:42:57:EB:DF:4A:8E:32:AF:9C:9B:47:BE:93:8D
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1733
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/wEVWOg65Qlfr30qOMq-cm0e-k40.roa
Signing time: Sun 07 Feb 2021 12:17:25 +0000
ROA not before: Sun 07 Feb 2021 12:17:25 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 180.177.240.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5939 (0x1733)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:17:25 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C045563A0EB94257EBDF4A8E32AF9C9B47BE938D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:84:3c:65:30:c4:80:5d:82:ff:25:07:0a:5c:
09:a6:c2:80:9a:7d:e6:7d:23:37:d3:26:80:75:ac:
94:12:89:25:5e:dc:27:cf:d1:fa:5a:92:22:05:2a:
1a:04:8e:eb:6d:eb:0b:bc:75:fa:af:40:54:ce:02:
fe:55:9c:8d:f5:1d:86:95:97:25:de:5e:75:bd:78:
81:b6:c8:b6:bc:5d:38:9e:d7:23:ba:71:d7:cf:57:
d8:71:51:f1:5d:a6:bc:02:26:ab:24:e7:20:46:f2:
32:f9:c4:bd:08:cf:4c:8f:ed:81:1d:08:5a:8e:b3:
cd:5d:79:d6:2a:6c:ad:d8:99:fc:a4:a2:4b:b8:5f:
71:cb:f2:f8:ac:57:4d:5a:76:b4:9d:0b:e7:f3:65:
f0:15:aa:f5:24:56:de:91:fc:fc:e6:a7:01:83:bd:
18:a0:f0:8b:4a:f1:f3:8e:31:87:94:e5:3a:d1:44:
bb:5c:91:ee:95:32:f6:96:ed:8d:ff:cc:ec:69:01:
5f:ac:31:7b:aa:0d:4f:55:3d:ee:da:1a:1a:ec:c9:
6f:f4:3f:db:9c:5a:7b:67:2a:4e:6c:92:98:41:b1:
e6:c8:bd:96:c1:e9:a6:7c:2a:74:66:69:54:ca:f4:
bc:ea:e8:26:bc:90:df:a8:f9:a6:e2:79:19:5c:64:
80:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:45:56:3A:0E:B9:42:57:EB:DF:4A:8E:32:AF:9C:9B:47:BE:93:8D
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/wEVWOg65Qlfr30qOMq-cm0e-k40.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.177.240.0/22
Signature Algorithm: sha256WithRSAEncryption
65:0d:7b:5b:51:19:a7:b2:e0:36:79:78:33:8b:29:77:ec:9a:
41:80:dc:f6:2a:6a:fd:89:5a:76:1c:09:68:49:5c:8d:96:f6:
5d:bb:36:43:71:87:9e:8e:5c:30:2a:cf:61:6a:1e:f1:f8:05:
e9:01:29:b4:92:f6:d8:9f:74:1c:5f:79:cc:8b:3b:3d:fa:9c:
ca:42:a3:dd:9d:09:18:11:1e:e2:4b:ae:d9:2e:8b:0b:7d:0b:
10:25:1a:ad:58:fc:38:c6:37:80:0e:00:9a:5b:6d:dd:ef:d6:
b0:24:ae:3c:4b:48:20:bc:f2:b8:df:07:dc:46:22:f4:bd:75:
45:3e:aa:80:d0:9e:ff:79:7e:4a:a7:e3:e8:f9:4c:bb:cb:83:
3b:30:23:37:98:14:19:1a:8d:47:74:6a:5b:78:0a:cc:8b:84:
27:f9:7b:1d:0b:7e:b4:0f:be:ee:5f:8f:97:08:d4:79:c7:50:
d8:23:cb:a2:2e:1c:0b:7d:fd:36:5d:eb:a2:97:80:08:ce:0c:
66:3a:10:95:e4:3e:42:d3:e1:2e:7a:19:0f:a2:88:b0:2d:4d:
1c:66:49:a1:35:36:8b:fc:03:e5:d3:b3:55:c5:8f:51:9a:4a:
6e:24:06:a1:6e:bb:61:c6:5d:7f:89:29:4a:68:54:93:c7:d2:
33:b9:39:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:42 2024 by rpki-client on console-ams.rpki-client.org