Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/eRmuJGtuXQC429Z48zbFOXXNX_M.roa
File: eRmuJGtuXQC429Z48zbFOXXNX_M.roa (raw, json)
Hash identifier: zTpPhKzW7wRYdFyseglCxA18qFv2/xGgKQztTiatjW0=
Subject key identifier: 79:19:AE:24:6B:6E:5D:00:B8:DB:D6:78:F3:36:C5:39:75:CD:5F:F3
Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Certificate serial: 0A87
Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/eRmuJGtuXQC429Z48zbFOXXNX_M.roa
Signing time: Thu 15 Sep 2022 02:38:44 +0000
ROA not before: Thu 15 Sep 2022 02:38:44 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4782
IP address blocks: 211.79.128.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2695 (0xa87)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Validity
Not Before: Sep 15 02:38:44 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=7919AE246B6E5D00B8DBD678F336C53975CD5FF3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:42:3f:c3:dc:53:93:c3:4f:e1:25:00:50:e5:
da:bc:64:3a:88:36:3f:e1:9c:77:c1:6e:52:48:d9:
28:2b:4c:9c:0c:79:38:d4:98:a0:92:2f:4f:ae:4f:
f7:1c:4b:c1:b7:51:02:bf:82:1c:9e:70:59:f2:ff:
a2:95:1e:f3:19:3b:4a:e8:f6:6e:a1:13:8f:a5:d7:
f1:fc:ed:c5:72:62:8a:4a:54:f4:00:36:e7:ad:19:
b0:46:88:0e:a9:4b:a5:b7:a1:d8:fe:30:49:0a:24:
b6:4c:75:ce:55:8a:68:43:06:e2:61:3a:2a:09:e4:
c0:0d:eb:b7:98:e8:33:d4:e2:d0:69:bf:dd:5e:ca:
83:f3:b8:15:f0:16:cd:1f:88:bb:7b:32:23:40:43:
ef:a2:25:14:67:d1:b9:0d:55:a4:69:90:84:ff:e3:
8c:b1:1e:50:8d:8d:7c:7e:bf:26:c8:ec:37:eb:df:
96:30:3a:82:0d:5a:52:b9:ba:a3:83:7e:d1:cd:71:
39:79:6d:de:90:e7:5b:33:c2:53:97:66:90:f4:23:
76:bc:ea:f0:bc:69:99:fe:c9:9c:9f:34:7d:81:2e:
53:6d:b1:79:cc:24:03:70:be:b5:df:37:28:f6:1e:
a1:0a:a4:36:6a:f0:a4:d3:9e:02:86:d2:3d:38:90:
42:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:19:AE:24:6B:6E:5D:00:B8:DB:D6:78:F3:36:C5:39:75:CD:5F:F3
X509v3 Authority Key Identifier:
keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/eRmuJGtuXQC429Z48zbFOXXNX_M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.79.128.0/19
Signature Algorithm: sha256WithRSAEncryption
83:41:80:ef:61:7b:01:8d:00:7e:06:2e:be:ef:eb:9d:13:e9:
b3:8a:1d:73:e3:8f:e3:da:73:7d:22:03:75:fb:c1:19:1a:7f:
41:c7:ba:1e:6f:e0:0f:6f:91:35:16:a1:ff:60:db:8c:68:01:
87:20:f9:21:27:80:29:ef:95:20:43:f4:aa:53:c1:d0:d8:3e:
73:b2:23:c1:79:32:ff:89:58:10:7a:f3:58:f2:78:8b:1f:9e:
e0:b0:9a:13:d9:88:e1:85:d1:4b:ea:a5:15:22:5e:46:96:65:
6f:d2:f4:a3:19:50:7c:68:fc:f0:02:b7:79:2a:fb:b0:dc:a9:
81:c3:e5:d0:97:77:5d:f4:ef:5f:81:be:0b:30:b0:e2:3d:c4:
47:72:83:3d:17:04:43:c2:20:3a:a8:a0:9d:5f:0f:24:a8:b1:
de:fc:a9:5c:4b:f7:1c:2c:ba:ee:18:dd:55:f7:38:17:99:fc:
9c:5d:f5:80:c4:bf:0c:5a:47:54:76:23:70:89:22:f1:f3:f1:
4d:65:70:64:ec:c6:bd:a9:de:e8:dd:48:9d:cd:58:d9:2e:97:
8b:2e:12:02:47:bf:d3:6c:09:38:b2:38:b9:62:bf:50:c2:e7:
c5:c1:68:c7:b4:cb:0d:8b:2a:27:84:3a:8b:fd:09:7e:48:bd:
fa:82:53:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org