Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EBT/d-6cDXbb95DaLST7h0feIC7U2EU.roa
File: d-6cDXbb95DaLST7h0feIC7U2EU.roa (raw, json)
Hash identifier: 0KN15QmkzXfTqxgg4WbKnAO4roq3vWkMLwHkuR8ufec=
Subject key identifier: 77:EE:9C:0D:76:DB:F7:90:DA:2D:24:FB:87:47:DE:20:2E:D4:D8:45
Certificate issuer: /CN=2D84CA269320E256216A2DEE2EA381A304526AB4
Certificate serial: 0954
Authority key identifier: 2D:84:CA:26:93:20:E2:56:21:6A:2D:EE:2E:A3:81:A3:04:52:6A:B4
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LYTKJpMg4lYhai3uLqOBowRSarQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EBT/d-6cDXbb95DaLST7h0feIC7U2EU.roa
Signing time: Wed 29 Sep 2021 02:42:27 +0000
ROA not before: Wed 29 Sep 2021 02:42:27 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24154
IP address blocks: 211.76.104.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2388 (0x954)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2D84CA269320E256216A2DEE2EA381A304526AB4
Validity
Not Before: Sep 29 02:42:27 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=77EE9C0D76DBF790DA2D24FB8747DE202ED4D845
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:f6:e4:4f:1a:8c:75:ef:12:f5:84:59:f8:7d:
be:73:d9:e5:18:f7:19:61:89:80:3b:0a:eb:52:aa:
bc:c3:95:fc:c1:0b:e9:4c:4c:87:a2:a5:2b:20:de:
17:f9:b3:d5:c2:08:b1:18:35:55:47:27:3f:5a:16:
f9:9e:2c:42:4b:51:97:31:ad:f5:e1:2d:a4:9a:e8:
58:3f:01:b4:ac:aa:b1:ec:a1:b4:15:50:28:a2:40:
7c:db:fb:58:ae:c3:bb:45:61:b2:3d:47:80:35:6b:
61:24:29:f0:46:d3:af:4e:c5:90:12:e4:2a:8b:8a:
f5:fc:b9:93:6b:d8:6c:6e:31:aa:eb:2a:71:71:d7:
55:07:ac:14:c0:64:dc:ba:a3:17:5a:a6:c0:6e:3b:
fe:e6:37:fa:9e:03:94:1f:4c:eb:8c:fe:1a:30:89:
48:75:2b:1e:d3:70:e1:29:a3:db:0f:91:12:8b:1b:
04:10:8f:27:97:14:07:24:24:3e:12:bc:c6:75:84:
34:fa:df:48:45:e8:38:03:84:52:59:1c:fb:ef:c1:
75:43:fa:7d:a9:e7:2b:09:80:80:1f:eb:73:34:d9:
cb:00:9f:23:91:d6:9d:96:f4:53:b1:a1:a8:11:be:
32:0b:f1:bc:69:7e:04:c7:8e:d0:ce:bc:38:2e:27:
b0:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:EE:9C:0D:76:DB:F7:90:DA:2D:24:FB:87:47:DE:20:2E:D4:D8:45
X509v3 Authority Key Identifier:
keyid:2D:84:CA:26:93:20:E2:56:21:6A:2D:EE:2E:A3:81:A3:04:52:6A:B4
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EBT/LYTKJpMg4lYhai3uLqOBowRSarQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LYTKJpMg4lYhai3uLqOBowRSarQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EBT/d-6cDXbb95DaLST7h0feIC7U2EU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.104.0/23
Signature Algorithm: sha256WithRSAEncryption
52:9f:f3:c6:98:22:fd:77:70:46:e3:0b:6e:97:9c:25:db:78:
b1:f6:93:ca:4d:15:02:78:b5:2c:2b:4d:27:39:5c:3d:58:ca:
fc:4a:b0:1d:cc:04:28:51:34:2c:1c:c5:ae:d2:ea:e0:c5:58:
a7:0c:dc:bf:be:9b:31:b2:97:51:a4:27:7e:51:e0:e6:e7:3f:
16:5f:c9:16:cb:49:3a:1c:42:e4:47:85:a9:1d:ed:01:83:36:
4e:f6:09:1e:4e:29:5b:c8:53:dd:86:39:91:67:8a:d6:b6:5f:
19:d0:e9:a6:c3:ff:09:06:b6:b3:bc:8a:12:80:8f:35:61:ca:
5e:b0:68:f1:9c:c6:86:20:13:8d:fa:1d:22:f2:ef:7d:6a:b4:
68:e3:c5:b7:cb:0f:2e:8b:fb:c7:e9:87:c2:c0:1c:b0:b1:5a:
a1:c2:51:94:e4:cc:80:62:2f:4c:f8:9b:f5:82:0f:c6:e5:02:
f4:73:fd:55:92:bb:8a:c2:50:dd:81:ff:91:42:1f:86:34:c8:
87:9d:85:5c:a6:68:3f:c2:46:61:32:b6:04:9b:3b:e4:21:2b:
db:5a:28:7b:3f:2c:0c:96:01:c3:63:95:3d:9b:1f:39:4b:dd:
b6:b9:75:d2:3a:84:dc:13:f1:3c:f9:7a:d2:ac:cb:eb:6c:1e:
98:90:54:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:00 2023 by rpki-client on console-fra.rpki-client.org