Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/xDHMYAmUdGDwyuIjVimFPXOKevs.roa
File: xDHMYAmUdGDwyuIjVimFPXOKevs.roa (raw, json)
Hash identifier: YXcToQYXplu2TQ8Pj/L0szS2VZSPIWCQlcS4VZGbeFo=
Subject key identifier: C4:31:CC:60:09:94:74:60:F0:CA:E2:23:56:29:85:3D:73:8A:7A:FB
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1B95
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/xDHMYAmUdGDwyuIjVimFPXOKevs.roa
Signing time: Wed 29 Sep 2021 02:46:46 +0000
ROA not before: Wed 29 Sep 2021 02:46:46 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 180.176.148.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7061 (0x1b95)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:46:46 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=C431CC6009947460F0CAE2235629853D738A7AFB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:47:cd:81:de:18:4e:e2:4b:a0:fe:3d:c9:2b:
64:01:8e:0a:ce:bf:4d:8d:89:94:d4:51:57:44:47:
de:fc:2d:18:4c:f1:41:f4:6d:f5:3e:f4:ef:99:4a:
d2:d8:d8:8d:a1:60:58:fd:30:b2:fd:60:3c:c2:aa:
31:86:22:5f:af:7a:bc:b9:7b:55:1d:dd:0f:87:6d:
27:9c:05:3b:20:77:a3:84:a6:e2:5c:64:9b:7b:ae:
ad:fe:89:2c:73:cb:99:7d:df:cc:b4:e1:69:8a:d3:
08:3f:6a:47:69:0f:6e:92:ea:9c:c8:03:c9:c0:8c:
6f:1a:a0:c8:d2:1d:ad:ab:76:20:4f:ff:0e:e9:3c:
37:b3:e1:0f:b1:07:68:3a:73:29:dc:de:9e:89:0b:
09:b0:b6:d7:8f:ce:c2:7a:72:7b:e0:44:29:be:28:
ba:a7:0d:eb:d7:74:9a:d8:c4:bc:f7:70:23:9f:ac:
fa:a5:b7:4e:19:7b:68:77:2f:94:ed:46:49:bc:97:
30:6e:4a:1c:f7:80:52:fb:9f:d7:ae:92:62:90:dd:
1e:64:02:3e:81:55:e4:92:00:c9:ba:7e:4e:d0:a7:
dc:b7:66:40:19:43:8e:87:58:17:82:f4:b2:e6:3f:
8e:dc:8a:4a:f1:38:f6:f5:a8:8f:06:75:d5:d0:0e:
2e:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:31:CC:60:09:94:74:60:F0:CA:E2:23:56:29:85:3D:73:8A:7A:FB
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/xDHMYAmUdGDwyuIjVimFPXOKevs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.176.148.0/22
Signature Algorithm: sha256WithRSAEncryption
54:0c:21:18:d1:52:ae:4e:ec:dd:dd:a9:f4:2e:aa:42:b7:0d:
8f:59:a1:32:d1:29:34:a3:25:6c:00:fc:00:fe:82:62:78:2e:
c8:6c:e5:dc:f8:bd:5d:67:a2:ee:80:a4:36:b9:3c:f0:bd:41:
c3:f0:9a:14:bb:d7:b7:c4:3e:ce:cb:30:47:18:c1:cf:b2:4e:
e4:bf:b5:0f:8c:fa:13:f7:62:98:80:7d:68:29:eb:d0:f0:13:
67:13:83:c6:fd:14:c8:7d:8c:5c:ab:53:62:91:d2:67:bb:16:
20:b3:8f:89:80:2e:e9:1b:ed:1c:be:54:5f:30:1b:97:3f:c7:
c3:04:0b:1c:bc:de:be:d0:24:1c:b9:e8:6c:7e:36:bd:59:6f:
93:9b:66:82:53:de:7c:92:4e:af:a4:0c:fd:b8:4a:79:d6:81:
67:08:8d:74:b3:63:fc:5c:51:a4:a5:a8:bf:39:2a:12:b1:bc:
45:bd:4c:2e:a2:3b:a1:91:bf:b2:be:aa:1b:90:a0:9c:a2:3f:
24:03:83:53:8e:fe:b0:95:e8:67:f7:aa:5d:c2:5d:76:3d:4a:
c3:d7:f0:f6:f6:63:76:22:9d:d2:e5:34:e2:b3:39:7d:70:05:
58:d5:ed:7b:1f:df:96:f5:32:e7:54:5a:aa:4a:1c:aa:c1:6a:
3f:2b:2b:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:42 2023 by rpki-client on console-fra.rpki-client.org