Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EBT/fQ6Gb0YB4M0jrXem3zA2NzAZmSM.roa
File: fQ6Gb0YB4M0jrXem3zA2NzAZmSM.roa (raw, json)
Hash identifier: +7WFwqYBlAPHAPT+BJE4iSAKX8nmsAZdqUT5rwXJzbk=
Subject key identifier: 7D:0E:86:6F:46:01:E0:CD:23:AD:77:A6:DF:30:36:37:30:19:99:23
Certificate issuer: /CN=2D84CA269320E256216A2DEE2EA381A304526AB4
Certificate serial: 0955
Authority key identifier: 2D:84:CA:26:93:20:E2:56:21:6A:2D:EE:2E:A3:81:A3:04:52:6A:B4
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LYTKJpMg4lYhai3uLqOBowRSarQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EBT/fQ6Gb0YB4M0jrXem3zA2NzAZmSM.roa
Signing time: Wed 29 Sep 2021 02:42:27 +0000
ROA not before: Wed 29 Sep 2021 02:42:27 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17709
IP address blocks: 211.76.96.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2389 (0x955)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2D84CA269320E256216A2DEE2EA381A304526AB4
Validity
Not Before: Sep 29 02:42:27 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=7D0E866F4601E0CD23AD77A6DF30363730199923
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:dc:83:99:3a:79:17:a8:80:a2:f4:f1:a4:fe:
be:79:95:b2:76:7a:2b:c0:d1:28:1c:6d:06:e3:d9:
de:31:dc:0f:17:c8:f6:86:77:f6:47:62:bb:eb:fb:
69:56:78:5f:59:4f:e9:f5:9e:ce:de:26:bb:20:00:
99:fe:23:12:6f:b4:0e:03:af:3d:43:88:f1:38:9a:
ad:6a:aa:a6:db:50:ad:17:11:53:8a:6d:f1:0d:34:
a1:ec:26:7f:f9:ca:dd:39:b4:87:86:24:7d:91:76:
31:a6:ef:e8:12:bf:30:05:a5:70:d2:00:05:42:27:
1b:58:54:83:6e:8e:c2:94:81:cc:60:e0:dd:9f:f9:
7e:f5:f4:87:8b:10:2d:cc:47:d1:87:f8:cc:2a:63:
60:29:26:d6:fe:12:5c:f9:86:7b:5c:81:0e:03:4f:
14:94:0d:53:2f:5d:4d:48:42:be:4c:cb:15:2e:4a:
16:55:1b:98:3a:6f:ad:a2:2e:92:ff:28:4e:95:60:
92:12:f7:5a:4c:24:af:74:69:78:36:20:7e:0c:4c:
c0:fc:f4:7d:64:9b:3a:c5:65:80:25:44:6d:15:b3:
33:1d:42:e8:74:be:0e:6d:9e:ad:fe:e2:a7:c0:70:
28:a2:80:cc:cd:f3:83:80:08:29:0f:ff:bb:e3:9c:
89:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:0E:86:6F:46:01:E0:CD:23:AD:77:A6:DF:30:36:37:30:19:99:23
X509v3 Authority Key Identifier:
keyid:2D:84:CA:26:93:20:E2:56:21:6A:2D:EE:2E:A3:81:A3:04:52:6A:B4
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EBT/LYTKJpMg4lYhai3uLqOBowRSarQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LYTKJpMg4lYhai3uLqOBowRSarQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EBT/fQ6Gb0YB4M0jrXem3zA2NzAZmSM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.96.0/20
Signature Algorithm: sha256WithRSAEncryption
6e:53:32:c8:c9:0f:59:bf:92:f5:96:a6:36:0d:a5:cb:a3:26:
32:ad:48:1a:a3:30:23:93:34:37:03:e4:dd:8c:7f:d2:cd:af:
83:b1:8f:8b:86:fd:4e:33:04:84:85:8f:36:94:3a:44:12:91:
4e:f9:f2:b1:98:1f:54:63:43:90:ab:cc:18:c6:5e:5b:17:0e:
d2:f5:c7:1c:29:c5:96:8d:a3:55:01:05:b2:c5:53:79:69:85:
91:8e:f1:d4:6d:4f:93:c4:21:68:b9:c6:be:4c:51:95:a9:80:
cf:e3:e7:3d:30:f5:ef:63:31:a4:38:25:29:6f:05:d7:7b:69:
fd:e4:36:a2:66:06:89:e6:1a:b1:79:55:b5:b9:d8:d8:a7:11:
9f:ae:ca:3b:d4:44:6c:c6:99:7c:57:c3:3f:82:df:4a:a7:d7:
73:5e:31:58:15:ba:e6:5b:13:9e:c1:72:7e:99:87:e8:d2:89:
09:6d:54:a8:32:58:95:16:ea:1d:79:b7:4a:92:73:4d:7d:92:
2b:11:77:4b:b3:c7:b8:54:da:cb:28:63:b8:82:6f:52:1c:11:
5f:8b:36:fb:f4:e9:c8:d1:15:fd:cb:47:cb:58:70:5c:79:ba:
46:0a:7d:91:79:96:83:49:90:eb:96:4c:97:21:6f:35:ac:c1:
dd:67:89:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:52 2023 by rpki-client on console-ams.rpki-client.org