Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/yBhGurQyuK8COufAoNrFIE9Nc3o.roa
File: yBhGurQyuK8COufAoNrFIE9Nc3o.roa (raw, json)
Hash identifier: Uvo5VHaa1EpS67ZXuQ1UGY0BLJaXsRZOa4XvQyBs+E4=
Subject key identifier: C8:18:46:BA:B4:32:B8:AF:02:3A:E7:C0:A0:DA:C5:20:4F:4D:73:7A
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 233B
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/yBhGurQyuK8COufAoNrFIE9Nc3o.roa
Signing time: Fri 25 Nov 2022 04:42:14 +0000
ROA not before: Fri 25 Nov 2022 04:42:14 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 180.177.172.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9019 (0x233b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:42:14 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=C81846BAB432B8AF023AE7C0A0DAC5204F4D737A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e2:51:9e:0a:bf:33:eb:81:46:62:b7:2b:9d:
c1:b8:eb:95:5a:a0:15:12:ac:f3:57:a9:0f:1c:02:
51:2a:38:f9:0a:07:a3:39:34:51:30:69:af:65:ff:
13:a8:17:62:e2:69:ef:24:93:fb:0f:5a:8e:f5:b6:
26:7b:94:c0:3f:ad:dd:80:be:0a:93:37:cd:4a:1f:
b8:f2:d0:e0:27:20:93:ae:5c:f0:46:9e:11:0b:2a:
0f:4a:18:57:7c:ec:6d:fd:13:d4:1e:12:3b:0e:38:
98:75:0e:1d:e1:b9:db:24:4a:38:e8:60:8a:f3:75:
ae:23:fd:07:7e:ba:f2:2c:b3:fb:66:00:fc:a3:62:
4f:0d:29:28:ef:b4:0c:01:0a:22:a0:78:0f:52:13:
20:d0:50:ac:ea:4e:7c:eb:d1:67:60:b0:64:1b:94:
29:5a:87:d1:fa:8f:7b:72:44:a1:07:ff:28:a2:f7:
82:bb:42:b9:c4:01:7c:8a:a8:e4:53:bf:87:4b:94:
30:f7:aa:6e:86:94:3f:a6:8e:d1:d9:4e:c9:1d:4d:
d0:d2:a7:d8:d6:34:bd:93:cc:b8:5d:de:09:c2:e3:
42:01:3f:1c:ed:f9:d7:bf:7a:02:4e:bc:5f:ef:58:
4c:8e:8b:12:06:dd:a7:af:d7:a6:41:eb:99:d5:b2:
39:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:18:46:BA:B4:32:B8:AF:02:3A:E7:C0:A0:DA:C5:20:4F:4D:73:7A
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/yBhGurQyuK8COufAoNrFIE9Nc3o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.177.172.0/22
Signature Algorithm: sha256WithRSAEncryption
9b:c5:a7:60:b1:20:84:66:28:00:f3:32:0f:78:c2:89:32:4a:
df:29:d6:9a:76:dd:b0:f3:fe:cd:cb:5f:e7:6b:6f:9c:f8:88:
d0:a7:20:86:26:77:58:88:ff:bc:09:2a:4e:76:dd:7e:09:8d:
00:58:61:44:03:ea:c6:2e:70:c3:a7:f0:27:59:49:c2:72:c3:
5b:cd:2d:5c:fd:06:3e:7b:65:0d:f1:8a:49:bb:1b:ea:ff:61:
27:93:a6:11:da:55:bd:0d:ea:34:ed:09:32:00:20:b6:f2:cf:
4e:91:ba:0a:db:4e:7c:bd:45:67:b0:b9:66:8a:b5:c0:6b:51:
fc:eb:d3:28:5f:ef:ca:1b:dc:20:ef:1f:aa:ae:b2:3e:26:2b:
4e:f1:96:6c:04:04:66:c0:ae:d5:99:bc:08:11:45:7e:30:0d:
cb:4e:e5:19:13:a9:e4:94:01:26:cc:12:3b:95:ad:db:7a:88:
fc:d9:78:0f:9a:e6:fd:f3:83:5d:b9:93:89:6d:49:df:ec:dc:
c0:39:5e:34:60:2e:c8:e4:c3:a9:58:fc:ab:21:6c:ed:c6:e8:
29:ce:dd:71:f8:6c:42:4a:00:60:fe:55:09:15:fb:58:1b:72:
aa:bf:a1:bd:60:a1:3d:99:e7:c0:15:52:96:d7:b9:5c:a8:a1:
94:24:f5:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:43 2024 by rpki-client on console-ams.rpki-client.org