Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/y-zqZ4Wpp6eCpTFmP_xMzxz5m_0.roa
File: y-zqZ4Wpp6eCpTFmP_xMzxz5m_0.roa (raw, json)
Hash identifier: rZNpy7CzyATwLPXYQZYk9E2espHr1diRfiEW8X89M3I=
Subject key identifier: CB:EC:EA:67:85:A9:A7:A7:82:A5:31:66:3F:FC:4C:CF:1C:F9:9B:FD
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1BBD
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/y-zqZ4Wpp6eCpTFmP_xMzxz5m_0.roa
Signing time: Wed 29 Sep 2021 02:46:56 +0000
ROA not before: Wed 29 Sep 2021 02:46:56 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 180.177.16.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7101 (0x1bbd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:46:56 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=CBECEA6785A9A7A782A531663FFC4CCF1CF99BFD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:6f:d1:cb:f9:83:42:75:d1:2a:40:f7:fb:74:
38:a6:a6:47:fc:51:e4:3f:9c:8b:8c:e8:85:32:fc:
fa:af:d8:27:f1:fe:31:38:2c:cb:42:68:54:7c:f1:
52:cb:b7:18:62:d4:ac:31:e9:b1:ee:0a:0c:74:ea:
6c:e4:a1:a9:d6:ec:e1:ee:68:a3:af:9f:66:2d:45:
91:80:b8:bd:73:f8:7a:a6:30:44:72:3d:37:43:16:
ef:e1:33:75:e5:de:48:76:29:66:03:a9:e8:4c:77:
c1:70:77:c2:3c:4d:f2:ed:14:38:eb:1b:da:4b:06:
15:12:ad:c6:0d:87:c2:7b:a2:1c:56:97:0c:9f:76:
37:49:72:8e:6f:7b:51:41:23:ce:f5:fa:a3:bf:8c:
6e:18:a0:6f:fb:51:3b:01:57:03:20:9b:3d:89:3e:
70:7e:aa:6a:56:a3:2d:8c:e5:36:2e:f8:f6:6f:7f:
c6:92:94:48:31:b2:bb:5a:3a:52:64:e0:2b:b6:58:
f0:a1:63:07:a3:05:b9:2c:64:20:5f:14:14:f5:fd:
ca:ec:e4:28:d5:4c:9c:9e:04:4e:ff:e6:6b:82:da:
7c:53:43:d2:28:e7:26:21:37:be:c6:af:c9:ae:71:
f7:f0:0e:31:ae:9d:7e:b6:85:9b:03:97:be:38:00:
1f:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:EC:EA:67:85:A9:A7:A7:82:A5:31:66:3F:FC:4C:CF:1C:F9:9B:FD
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/y-zqZ4Wpp6eCpTFmP_xMzxz5m_0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.177.16.0/22
Signature Algorithm: sha256WithRSAEncryption
a8:40:df:2e:9a:6f:d7:c1:76:a5:e2:d8:69:7c:0d:49:50:cd:
58:cb:6c:62:25:13:0c:6b:6c:77:2b:19:b7:fd:f7:15:93:1b:
ed:76:6f:16:6b:96:ab:5d:98:4d:f0:63:1e:cc:51:f0:a4:71:
b5:ab:fe:15:63:2d:d3:50:b5:39:c4:1c:c1:f5:09:f8:78:d2:
a4:9e:be:d8:8b:c1:09:94:70:60:84:93:32:3f:ef:75:f8:84:
52:bd:fe:29:64:64:dd:79:ea:a5:81:9b:f1:c7:74:c8:8e:47:
1c:c1:fe:03:ea:2c:17:b4:75:f8:58:51:ee:02:3f:e7:42:4c:
1a:c9:2e:23:bf:f3:3c:f9:27:c8:d9:3c:13:7e:51:bb:e7:27:
26:dc:11:0a:fc:0c:da:8a:74:c9:7d:10:92:56:e8:38:2b:45:
66:bf:ab:d3:85:0f:a1:c7:17:80:d7:8d:f7:8c:ea:72:ed:d0:
8c:73:37:ca:bb:46:5a:d9:d9:be:d8:18:29:74:8a:66:e8:bf:
8d:88:73:9e:97:9c:d2:08:9a:1f:a9:a7:e1:68:40:50:35:06:
d0:7e:39:11:72:28:35:e1:fb:02:b0:af:d1:ad:fa:76:34:ad:
52:27:84:81:64:13:84:e8:a5:c1:5e:5c:7c:96:b9:bb:28:4c:
b2:4d:b9:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:00 2024 by rpki-client on console-fra.rpki-client.org