Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EBT/DYUYloWyLjs8hrZidECzuTV9TN0.roa
File: DYUYloWyLjs8hrZidECzuTV9TN0.roa (raw, json)
Hash identifier: Rkbw7Sas2CYEUfnzbir94fJB53UJIrfJzBa5FgB07fA=
Subject key identifier: 0D:85:18:96:85:B2:2E:3B:3C:86:B6:62:74:40:B3:B9:35:7D:4C:DD
Certificate issuer: /CN=2D84CA269320E256216A2DEE2EA381A304526AB4
Certificate serial: 0772
Authority key identifier: 2D:84:CA:26:93:20:E2:56:21:6A:2D:EE:2E:A3:81:A3:04:52:6A:B4
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LYTKJpMg4lYhai3uLqOBowRSarQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EBT/DYUYloWyLjs8hrZidECzuTV9TN0.roa
Signing time: Tue 29 Sep 2020 09:51:31 +0000
ROA not before: Tue 29 Sep 2020 09:51:31 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24154
IP address blocks: 211.76.106.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1906 (0x772)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2D84CA269320E256216A2DEE2EA381A304526AB4
Validity
Not Before: Sep 29 09:51:31 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0D85189685B22E3B3C86B6627440B3B9357D4CDD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:32:1b:3b:f0:15:91:21:ae:0c:fc:b6:47:30:
6f:bd:14:00:11:dd:8b:ba:e9:82:91:4b:a8:e9:76:
bc:e4:31:88:72:af:8c:cc:03:dc:db:5f:ad:81:e6:
48:69:db:4f:21:2a:14:e6:ee:fb:10:7e:d9:2f:cd:
3d:59:69:92:a6:68:ba:4f:71:55:6f:3b:be:61:ff:
66:fd:e8:66:ae:98:93:59:24:c6:72:65:38:e6:ae:
42:26:30:67:a7:30:26:24:96:85:1f:e6:b8:02:5d:
d9:e4:48:8b:d1:29:83:90:84:5e:9c:ee:dd:da:71:
fd:ca:28:ae:86:e5:0e:6d:22:a1:ce:08:7b:9a:32:
b8:74:1e:52:6c:93:48:51:ff:c1:97:3b:bb:64:a8:
39:c1:fc:d2:00:a0:75:a6:5c:68:f6:c0:fc:c3:a8:
50:fa:b7:30:dc:62:9d:8c:7f:1f:96:53:8a:d6:e3:
55:60:92:49:24:b4:fd:83:e9:8f:2b:af:7a:f0:a2:
32:f2:85:bd:80:5e:d5:b1:a8:9e:62:5e:1d:49:b8:
4b:df:56:3f:ec:b6:3d:28:b8:4e:c2:76:ca:fe:e3:
45:a7:97:75:b6:44:3c:77:54:51:0d:39:74:19:c0:
33:64:22:7d:0b:1f:aa:4b:31:45:c4:b0:cb:81:dc:
13:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:85:18:96:85:B2:2E:3B:3C:86:B6:62:74:40:B3:B9:35:7D:4C:DD
X509v3 Authority Key Identifier:
keyid:2D:84:CA:26:93:20:E2:56:21:6A:2D:EE:2E:A3:81:A3:04:52:6A:B4
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EBT/LYTKJpMg4lYhai3uLqOBowRSarQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LYTKJpMg4lYhai3uLqOBowRSarQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EBT/DYUYloWyLjs8hrZidECzuTV9TN0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.106.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:68:41:cf:f4:de:f2:7a:14:fc:27:df:83:01:b8:d7:04:f4:
dd:6f:2d:57:c7:19:93:4a:0c:cd:98:ee:47:9d:06:f9:8f:c8:
ba:d4:46:28:82:7b:73:c7:03:3b:07:3d:12:f6:ee:cd:9d:17:
1f:b3:5a:ac:03:05:5c:eb:c6:f9:8d:87:df:ed:8f:6b:a6:75:
a1:72:ee:b7:6b:0c:16:bc:84:71:56:d6:84:90:fe:0c:2c:86:
71:46:3f:ed:3b:17:5d:d2:a3:09:b0:77:b8:b9:06:f8:12:e7:
bc:37:ec:4b:45:0d:90:00:5b:ca:13:fd:aa:ae:5d:ae:f8:d6:
7b:4b:43:ea:a1:76:49:de:31:2a:1a:48:3b:92:de:97:d4:b0:
9c:9c:95:8e:54:8e:ed:25:16:f9:d1:ba:2f:db:f1:d0:52:cd:
44:cc:04:dd:4f:43:ba:80:19:38:a5:d3:c9:e1:f5:29:dc:4a:
65:c9:54:0f:10:cb:6f:59:fe:4f:47:12:4e:53:a7:f6:35:95:
03:30:2a:d3:e9:99:a9:e5:32:21:1a:a2:45:d1:3a:5b:a4:de:
a0:74:b3:1b:2c:45:92:8a:df:03:a0:f5:a0:bf:fc:f6:3b:df:
df:89:09:b1:60:a9:cc:d2:ca:84:46:fa:69:f8:7f:ac:3f:ad:
25:95:dc:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:00 2023 by rpki-client on console-fra.rpki-client.org