Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/yQ25vhYts9CmWikzn-ZYO8qriYc.roa
File: yQ25vhYts9CmWikzn-ZYO8qriYc.roa (raw, json)
Hash identifier: cnPTwZVDl9AvzLmnywSCpqGhp41uBsrWla+VRhr+Nvg=
Subject key identifier: C9:0D:B9:BE:16:2D:B3:D0:A6:5A:29:33:9F:E6:58:3B:CA:AB:89:87
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 0EBA
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/yQ25vhYts9CmWikzn-ZYO8qriYc.roa
Signing time: Tue 29 Sep 2020 09:56:04 +0000
ROA not before: Tue 29 Sep 2020 09:56:04 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 180.177.118.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3770 (0xeba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 09:56:04 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C90DB9BE162DB3D0A65A29339FE6583BCAAB8987
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:51:4c:42:af:f2:a8:61:3f:da:e3:8a:d0:8f:
e5:de:5c:90:0b:44:c9:09:ba:7d:2f:48:28:02:1f:
56:0c:58:df:09:ab:6d:a1:e7:1d:dc:f7:c4:0c:0b:
6c:5e:65:b0:31:f8:28:6d:0f:20:d6:d3:47:9f:ed:
8e:df:40:f6:68:d6:85:b5:55:a3:de:f9:d7:dd:db:
da:64:97:02:96:e6:1b:cf:10:44:c0:ab:7d:26:b2:
1a:a3:74:e1:f3:72:e5:4f:79:67:93:b2:dd:c3:0d:
2f:1e:2d:e8:65:96:8b:82:e0:54:f8:a4:b7:3a:3c:
4a:d1:f5:e6:cd:7d:50:1a:8e:07:6d:6a:2a:26:df:
a8:d0:be:0f:8c:37:49:91:6f:43:f1:73:4e:eb:0f:
a0:cf:c8:45:38:df:73:b2:f5:5d:2a:37:8b:0e:64:
4c:06:5b:1f:a2:63:3e:b5:5e:aa:12:9c:25:6f:a0:
4a:59:18:de:f8:e3:36:43:c5:d2:83:26:e0:33:c7:
3c:2a:72:81:72:e3:fa:14:e1:75:e3:bf:7c:69:22:
cf:e6:99:48:fb:df:55:68:09:9c:c8:3a:4d:67:27:
90:72:4b:39:9b:24:a6:92:ef:68:13:fc:eb:67:06:
54:38:31:c8:63:ec:10:4a:9d:82:81:f0:ad:82:1a:
bc:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:0D:B9:BE:16:2D:B3:D0:A6:5A:29:33:9F:E6:58:3B:CA:AB:89:87
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/yQ25vhYts9CmWikzn-ZYO8qriYc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.177.118.0/23
Signature Algorithm: sha256WithRSAEncryption
53:d5:00:84:e2:d2:c0:33:a6:ca:55:82:60:ce:cc:91:40:91:
1b:23:56:2d:ba:de:ca:44:30:c8:0d:a1:37:be:1d:96:5c:49:
8b:f6:0f:18:2e:e7:02:72:c9:fe:e0:20:bd:69:7e:99:23:1c:
08:96:3c:ce:87:6e:2e:b4:1f:e9:33:76:61:5e:cb:69:51:8b:
81:9d:bf:6e:c4:59:95:97:0c:61:ca:fc:c8:a9:0c:f1:6e:4c:
f6:d5:00:07:d7:53:48:12:70:d4:19:3e:35:f5:ef:40:a6:1c:
9d:30:fa:c7:9f:e4:ce:08:83:7f:fc:10:b0:31:11:66:1e:a2:
f9:1e:22:a6:78:dc:91:7d:c5:ba:e2:af:c9:d2:d6:c4:6a:97:
c7:6a:c2:7d:d5:c4:da:8b:ff:69:35:eb:4a:ba:59:c1:02:d6:
e5:e0:9a:51:21:1f:1c:02:fa:af:a7:8a:e3:0e:83:93:03:93:
b1:0a:30:96:f0:0b:bb:a9:b8:6a:52:58:76:05:e4:53:e5:b8:
a4:85:ab:e6:2e:23:f6:4c:a5:de:53:2b:b3:30:e0:29:76:5a:
8e:f5:c2:03:0c:a3:4c:8d:c2:6b:8c:b1:df:e6:08:f4:ea:7a:
3d:f5:58:ee:f7:d1:b0:4a:dd:ff:02:cd:3e:a7:35:66:0e:f1:
11:d6:50:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:43 2024 by rpki-client on console-ams.rpki-client.org