Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EBT/h7VnI9MKCMsLz7W4H5LlRJjKba4.roa
File: h7VnI9MKCMsLz7W4H5LlRJjKba4.roa (raw, json)
Hash identifier: krOJfoAuKJf9VwSHKeFZq5dnWyMeSXZEN0/VKEhj+Ao=
Subject key identifier: 87:B5:67:23:D3:0A:08:CB:0B:CF:B5:B8:1F:92:E5:44:98:CA:6D:AE
Certificate issuer: /CN=2D84CA269320E256216A2DEE2EA381A304526AB4
Certificate serial: 08B3
Authority key identifier: 2D:84:CA:26:93:20:E2:56:21:6A:2D:EE:2E:A3:81:A3:04:52:6A:B4
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LYTKJpMg4lYhai3uLqOBowRSarQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EBT/h7VnI9MKCMsLz7W4H5LlRJjKba4.roa
Signing time: Sun 07 Feb 2021 11:36:04 +0000
ROA not before: Sun 07 Feb 2021 11:36:04 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24154
IP address blocks: 211.76.104.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2227 (0x8b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2D84CA269320E256216A2DEE2EA381A304526AB4
Validity
Not Before: Feb 7 11:36:04 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=87B56723D30A08CB0BCFB5B81F92E54498CA6DAE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:7e:f2:9a:18:e6:87:b9:cf:23:9b:20:0c:7b:
f0:52:5a:be:28:a5:8a:7d:53:3c:77:85:4f:a8:54:
f3:87:5f:8a:5b:14:36:20:9d:b2:7d:db:89:40:03:
d4:a4:92:8a:03:97:54:5b:37:f9:f4:c9:08:74:ab:
1b:91:53:ca:e9:88:31:1d:6c:3f:96:f2:cd:b0:c6:
03:be:3b:8e:96:71:a1:84:fc:b1:81:c3:57:75:5b:
43:fc:f6:86:c4:2d:90:e9:93:2c:38:7c:ec:a4:e1:
4c:50:d9:b3:ce:4b:f7:a0:24:6e:88:78:9c:bd:bb:
0f:88:5a:c9:54:26:7a:c0:72:28:9d:a2:3f:ef:29:
40:b2:f7:5a:65:50:cf:05:05:69:17:73:6a:35:38:
12:c3:7b:9f:dd:5d:f7:c6:ee:8f:2a:94:87:9a:aa:
0e:80:42:54:5f:83:90:6b:67:d1:74:6b:71:99:8c:
e6:2d:eb:3b:6c:6e:b0:c5:92:67:19:81:7c:01:e0:
69:fe:dd:ec:5f:84:0f:d2:b0:23:34:7e:17:51:bc:
b8:96:87:9d:cd:ac:81:a6:b9:00:9c:d8:df:e5:b2:
71:43:73:7c:55:11:e8:b5:07:b6:25:a9:54:d5:8b:
95:8c:82:e6:43:75:df:eb:6f:c6:81:35:64:08:84:
f1:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:B5:67:23:D3:0A:08:CB:0B:CF:B5:B8:1F:92:E5:44:98:CA:6D:AE
X509v3 Authority Key Identifier:
keyid:2D:84:CA:26:93:20:E2:56:21:6A:2D:EE:2E:A3:81:A3:04:52:6A:B4
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EBT/LYTKJpMg4lYhai3uLqOBowRSarQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LYTKJpMg4lYhai3uLqOBowRSarQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EBT/h7VnI9MKCMsLz7W4H5LlRJjKba4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.104.0/23
Signature Algorithm: sha256WithRSAEncryption
86:26:67:0f:53:12:28:d0:f7:9e:74:63:fa:e2:1c:a9:7c:61:
0b:a3:6b:70:0a:2f:8d:32:a4:08:5c:22:a8:9a:4e:4f:79:7f:
e4:ef:f1:28:5a:5a:ed:4e:a7:3c:ed:b8:ce:9f:dc:e7:22:ba:
72:60:cd:66:57:b7:d2:db:3f:56:4a:f1:49:74:9e:31:2d:e7:
16:71:9f:8b:67:6f:b5:eb:ef:a4:b4:f2:75:de:d1:c8:fb:ba:
97:6b:01:de:15:11:46:d2:6a:5b:a2:aa:81:a4:a8:0f:9a:cf:
23:ea:5e:18:1b:0c:16:61:bb:c7:26:cb:43:97:e6:45:77:01:
55:53:46:94:54:81:b4:d5:56:2c:d1:0c:24:d7:2b:48:1b:89:
29:40:bf:eb:7c:45:52:48:f9:87:f8:ff:de:ff:cb:84:3c:80:
5d:0e:c1:fa:5c:58:5d:52:aa:d4:3a:f4:f1:38:b8:c0:b8:71:
3e:e2:c0:5c:9a:3a:3f:6a:33:0e:ba:0b:86:1d:85:fb:72:a5:
fa:0d:dc:cf:8e:c3:17:a4:9e:b0:bc:5b:c6:c3:73:60:5c:9c:
56:4d:72:01:b6:af:41:f2:35:07:e1:cd:f7:90:cb:9b:9f:96:
9e:b8:74:9a:3f:cf:5f:f9:1c:b4:b0:d4:72:0e:b6:a7:8b:ce:
09:09:63:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:00 2023 by rpki-client on console-fra.rpki-client.org