Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/zwwC_CX4zouP8-JpNl7OLL3p0Pc.roa
File: zwwC_CX4zouP8-JpNl7OLL3p0Pc.roa (raw, json)
Hash identifier: vwUQP1Y+mVrgZxQE8ogYcBIlmHmfXRuKHKpo5ULMDFs=
Subject key identifier: CF:0C:02:FC:25:F8:CE:8B:8F:F3:E2:69:36:5E:CE:2C:BD:E9:D0:F7
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 223B
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/zwwC_CX4zouP8-JpNl7OLL3p0Pc.roa
Signing time: Fri 25 Nov 2022 04:40:56 +0000
ROA not before: Fri 25 Nov 2022 04:40:56 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 180.176.224.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8763 (0x223b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:40:56 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=CF0C02FC25F8CE8B8FF3E269365ECE2CBDE9D0F7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:b5:b7:d2:46:8b:66:47:01:cb:2e:fc:b0:4d:
e1:d3:59:7b:5e:bf:5a:46:14:4e:93:b3:a2:57:eb:
6d:48:f9:c7:2a:ec:d7:5d:f1:13:c0:1d:ff:49:50:
44:09:46:a8:4b:a0:0c:21:65:f8:c3:ce:db:a8:9b:
dd:c2:44:5b:cc:d1:c6:24:db:7e:81:44:01:cc:38:
cb:dd:e7:2a:f2:36:84:2f:97:07:e4:10:7b:9f:23:
90:84:0d:db:76:8d:13:b7:d0:41:cf:48:c4:51:fa:
69:38:81:d0:04:ac:c8:38:a1:af:9b:c7:32:70:c1:
ae:96:40:58:a1:55:6f:f1:f4:3a:27:2b:05:d1:c6:
ad:b6:d4:a0:5c:a3:39:27:f2:54:fb:25:98:c7:da:
b3:05:56:b5:06:49:06:83:34:c4:aa:94:45:38:03:
c9:d3:e4:67:f5:fc:c5:22:1f:c0:76:ab:59:0c:32:
e0:d8:6b:47:7e:95:6f:49:55:d0:8a:0f:a1:c5:6b:
db:e1:7d:e0:b8:cc:32:eb:92:23:a2:0f:4d:b8:10:
e3:fd:22:ab:eb:fa:56:b3:b9:3c:fb:03:92:88:eb:
20:95:6e:5e:ea:7d:51:34:31:3b:dc:a0:35:71:40:
a9:8c:f9:50:a8:ab:c2:0a:34:7b:b3:65:11:d3:81:
6a:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:0C:02:FC:25:F8:CE:8B:8F:F3:E2:69:36:5E:CE:2C:BD:E9:D0:F7
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/zwwC_CX4zouP8-JpNl7OLL3p0Pc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.176.224.0/22
Signature Algorithm: sha256WithRSAEncryption
79:d0:ae:46:9b:92:8e:e3:64:a9:1e:63:7c:7c:3e:e4:2f:15:
cc:22:60:6c:4d:42:f1:35:30:fa:c3:09:41:c3:cf:32:dd:d2:
f2:72:df:83:b4:2e:68:3c:83:c0:2c:7b:d9:fb:26:fd:2f:0b:
63:60:5b:00:2e:5c:48:2d:65:aa:c7:14:b9:3f:4a:ac:fc:e7:
e2:3d:38:d1:4e:77:9f:a0:1a:da:85:67:73:bd:f3:f8:27:2a:
29:35:38:14:e0:20:89:e6:76:f1:57:0e:ac:f5:09:3c:6b:ff:
5e:00:41:e9:1b:84:cb:56:93:cd:5d:06:67:bc:b0:53:c9:86:
91:6b:2f:3d:9b:e9:53:1a:e9:28:fc:20:f1:c1:c9:02:b1:a3:
57:92:6d:7e:a0:29:95:a6:7d:1e:b0:8e:f4:b1:1c:8c:82:f4:
6d:1f:3c:24:e4:12:5f:b7:b3:30:2b:20:4a:23:42:7b:f4:fb:
52:17:6a:0b:49:1e:5e:f9:f0:59:90:c8:cb:59:ca:27:4f:f9:
b6:71:f1:59:b3:2a:d0:96:28:93:3b:8d:66:04:62:63:06:99:
c1:91:d2:81:64:85:1c:47:73:0a:b9:3b:cb:e6:a2:4a:07:da:
42:66:0c:72:20:79:24:78:d1:45:b1:72:b7:e4:23:65:62:ed:
61:a7:f0:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org