Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/xysHU8aO2CAsApBfeNmzU_TKxdc.roa
File: xysHU8aO2CAsApBfeNmzU_TKxdc.roa (raw, json)
Hash identifier: gtOL+LcByxkPOPriQZ9p2G1Aa9h3rjgRT8xo8aBiWGk=
Subject key identifier: C7:2B:07:53:C6:8E:D8:20:2C:02:90:5F:78:D9:B3:53:F4:CA:C5:D7
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 154B
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/xysHU8aO2CAsApBfeNmzU_TKxdc.roa
Signing time: Sun 07 Feb 2021 12:03:50 +0000
ROA not before: Sun 07 Feb 2021 12:03:50 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 180.177.232.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5451 (0x154b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:03:50 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C72B0753C68ED8202C02905F78D9B353F4CAC5D7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:23:f1:f9:30:d8:b6:f0:25:a2:ba:63:52:4f:
55:5d:a1:5e:47:e5:5a:b4:df:9a:31:cc:2b:46:d4:
ba:c9:69:01:09:e3:34:1a:34:a5:5e:f2:14:65:4b:
bf:4a:d5:27:b8:69:4f:85:38:bc:22:cb:d2:08:88:
34:06:6b:71:7d:06:12:ee:4e:8d:25:81:ca:c2:3d:
84:a3:35:13:79:a0:bd:5d:17:88:80:8a:49:ee:48:
4a:9d:a4:bc:2d:f6:9b:ff:eb:ae:9e:18:df:e1:a3:
82:e0:4b:78:14:39:fb:39:e0:63:1a:de:a0:c5:37:
6f:c7:b8:67:37:2d:7f:3a:58:ff:f2:01:16:21:00:
15:ff:a5:65:21:56:de:db:f8:7a:fe:05:9d:82:a9:
ef:24:58:f7:d8:64:79:cb:91:b0:82:a0:e5:87:6d:
ed:06:20:4a:c8:46:6f:80:fe:31:42:7a:48:9f:9d:
30:59:75:de:71:c2:56:ec:4f:c6:12:90:67:9c:5e:
cf:07:57:74:73:4c:38:b0:64:a0:06:88:c0:44:2b:
f4:05:72:28:a5:cd:1a:63:ca:0a:4a:18:ac:0e:68:
70:54:fb:2b:fc:d4:61:8e:ae:78:7a:85:eb:e1:83:
4e:9e:1d:8b:27:72:ab:e4:f5:9c:08:89:8c:bd:51:
08:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:2B:07:53:C6:8E:D8:20:2C:02:90:5F:78:D9:B3:53:F4:CA:C5:D7
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/xysHU8aO2CAsApBfeNmzU_TKxdc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.177.232.0/23
Signature Algorithm: sha256WithRSAEncryption
28:42:0b:4c:c3:08:e9:25:d4:7d:4a:98:e0:bd:31:6d:b1:89:
d7:0d:e5:da:c1:84:fb:01:54:24:53:6f:cb:c0:08:93:fb:c7:
df:43:20:eb:00:19:e0:d8:a9:b1:b2:7e:76:4a:5b:59:8a:b4:
7f:7c:21:d4:da:e6:a1:6e:59:85:dd:c4:d1:3f:0e:82:56:15:
ab:fe:5e:bf:43:a2:5a:4a:eb:df:cd:73:22:6d:b5:8d:c0:1f:
72:4b:45:f9:34:d5:57:7c:0b:91:ae:f0:ac:e2:b9:81:74:f4:
7f:5d:f6:a4:b5:56:d2:c6:43:a6:8a:cc:f1:6f:80:f6:e1:7b:
f6:e0:b4:50:61:88:aa:3c:54:84:28:d4:c3:e9:6c:a6:0b:f3:
67:48:fd:71:a9:48:57:28:a8:4e:d7:98:37:ad:e4:6c:7b:f4:
1b:ba:94:f7:87:fa:62:08:f6:bc:30:24:e6:1b:dd:e6:72:8f:
6e:14:b6:e2:3b:c1:ca:70:0a:dd:90:b4:02:11:54:63:8e:fb:
c3:ad:e5:f1:11:2d:f9:35:e1:c9:f1:f9:c9:5e:08:0e:23:dd:
54:59:0d:e6:16:3a:5c:31:53:db:fa:14:98:a0:32:29:d1:4d:
f2:ff:a1:55:73:51:85:40:67:cb:d0:d4:1d:87:f1:3b:45:56:
0b:39:c2:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:43 2024 by rpki-client on console-ams.rpki-client.org