Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/zmHePbSQ2oz1OwRo_23nEWy5JLo.roa
File: zmHePbSQ2oz1OwRo_23nEWy5JLo.roa (raw, json)
Hash identifier: FRfCi98Fe2qrpFvW0WMQ77iQ7nGCrwH/6CvhIqWrIag=
Subject key identifier: CE:61:DE:3D:B4:90:DA:8C:F5:3B:04:68:FF:6D:E7:11:6C:B9:24:BA
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 20ED
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/zmHePbSQ2oz1OwRo_23nEWy5JLo.roa
Signing time: Fri 25 Nov 2022 04:39:17 +0000
ROA not before: Fri 25 Nov 2022 04:39:17 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 180.177.52.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8429 (0x20ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:39:17 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=CE61DE3DB490DA8CF53B0468FF6DE7116CB924BA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:5b:fb:ba:23:e4:f2:ae:58:be:13:c1:62:7f:
49:17:f9:f1:6b:45:5d:ae:71:4d:f3:0c:a6:ea:ae:
d2:22:b7:f5:48:c6:69:7e:19:00:7e:9f:95:d2:c0:
73:a8:7a:79:4d:dc:14:ea:92:42:31:7c:c8:5b:4d:
24:b6:60:e3:52:c6:0a:5e:6b:70:25:ef:a3:c3:8e:
fe:b4:8a:10:3d:08:12:62:88:79:53:aa:3c:cb:a9:
e2:4d:68:ec:ec:d0:e0:94:20:8d:02:1a:7f:b1:8f:
e4:c3:ee:a7:64:24:9e:92:0c:2d:73:32:08:bc:60:
35:5e:f2:84:8b:04:da:75:ff:90:54:0f:b3:be:d9:
2f:a9:0a:bb:30:84:8b:3f:6a:52:9f:72:db:01:e9:
1e:f1:0c:a1:24:c9:29:76:4c:49:6d:ee:21:ee:ab:
8f:f5:c7:a8:6d:0f:c3:71:30:17:65:1e:af:82:4d:
7d:a6:26:92:59:cb:59:64:29:6e:06:35:8b:05:26:
d7:32:18:c1:6f:24:93:3d:c6:b6:91:dd:db:e1:23:
b8:20:25:09:c7:a8:cb:a4:94:89:1d:b5:c5:1c:9c:
1d:c1:d7:3b:cb:fe:e1:89:92:6c:b4:22:87:02:71:
21:d0:f1:d3:f9:f6:18:a0:22:8b:57:0a:0b:e4:d6:
09:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:61:DE:3D:B4:90:DA:8C:F5:3B:04:68:FF:6D:E7:11:6C:B9:24:BA
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/zmHePbSQ2oz1OwRo_23nEWy5JLo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.177.52.0/22
Signature Algorithm: sha256WithRSAEncryption
2a:77:51:e7:b8:e7:cb:40:cf:63:94:ee:f4:20:99:c8:18:c1:
4e:55:08:36:1a:c3:a2:81:4e:b1:69:e8:bf:bc:c0:df:fb:1b:
14:87:b3:c9:44:6d:2d:1a:38:7c:f7:5e:c1:8b:73:49:ef:ec:
a9:d4:5f:c0:eb:bf:e5:fb:b4:3d:4e:42:b1:2e:4e:52:5d:01:
69:d6:54:e0:6c:84:3f:22:8b:e5:1a:5f:8a:9b:96:6e:02:da:
53:a5:a1:0e:ff:db:6d:c0:ce:27:3d:74:c4:fc:1b:1a:4c:39:
89:8e:9e:ff:9b:08:2c:9d:d4:0f:df:22:8f:28:b4:dd:1a:3f:
96:4c:f5:a2:97:12:ce:a0:23:2e:54:bb:ce:93:60:0f:14:a0:
0c:9c:ec:f0:0f:b1:ca:7f:f3:49:9a:92:54:78:64:25:91:bd:
86:a6:65:82:37:8e:ed:0a:a4:5f:24:d8:1a:f0:76:aa:68:34:
4f:52:e7:62:fb:68:f8:b1:e1:49:c4:36:d1:41:69:43:23:f8:
b5:bf:1a:d7:b2:eb:54:81:3e:40:54:97:17:b3:89:76:81:30:
66:62:83:27:69:f1:d6:37:1b:fd:8b:02:ce:e1:02:c9:12:5e:
e2:23:48:ec:33:90:9d:54:40:16:53:74:86:34:80:b8:44:4a:
02:06:45:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org