Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/-BYQovw1CtGpUmLNWL7dnmhXJU4.roa
File: -BYQovw1CtGpUmLNWL7dnmhXJU4.roa (raw, json)
Hash identifier: 7Wy21VPhiiqJvSsfo3Kr/1vc2g3dtBWtqlv/tmj/8cY=
Subject key identifier: F8:16:10:A2:FC:35:0A:D1:A9:52:62:CD:58:BE:DD:9E:68:57:25:4E
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 14E1
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/-BYQovw1CtGpUmLNWL7dnmhXJU4.roa
Signing time: Sun 07 Feb 2021 12:00:27 +0000
ROA not before: Sun 07 Feb 2021 12:00:27 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 211.76.126.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5345 (0x14e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:00:27 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F81610A2FC350AD1A95262CD58BEDD9E6857254E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:c7:72:50:29:22:68:27:2b:4e:05:db:20:95:
6e:11:6e:fb:43:52:b8:38:f3:25:e1:71:14:0b:30:
04:04:2f:7e:b5:6b:91:eb:d3:3e:0b:92:90:b5:ec:
f0:b5:a3:a2:78:ee:86:77:2b:e4:ad:16:79:c3:1a:
92:0d:b7:18:9f:fa:bf:fb:a9:81:0d:b8:fd:b2:95:
27:0b:bd:57:67:d4:4c:ea:43:5b:24:57:2f:2e:84:
b0:1c:40:37:be:b2:40:d2:23:ff:f8:4e:b3:b4:94:
4a:1e:e3:da:36:7e:8a:69:a6:74:d3:e9:74:2e:41:
6d:2a:d6:5d:61:6d:c8:ab:10:5d:16:dc:e2:e4:24:
bb:0e:d8:e5:1b:c2:b8:fd:94:e1:f8:b8:e5:e3:22:
3a:14:ff:7b:20:ad:a3:86:f4:9f:b8:fb:d2:11:7b:
e3:d2:30:dc:c5:76:24:4e:c2:2a:e9:8f:a6:56:cb:
5c:cc:37:5a:0d:89:ec:b2:d2:8b:21:31:04:8f:f5:
b1:c3:f7:65:1b:4d:53:d5:26:a5:37:7b:62:f9:2d:
4e:ec:0e:86:a3:d5:f6:59:57:44:1e:b2:29:1b:bf:
b5:d6:f6:4f:65:ae:34:69:38:dd:63:6b:51:8b:2e:
d3:0d:b3:99:34:8b:46:29:9b:56:53:b8:24:75:b5:
91:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:16:10:A2:FC:35:0A:D1:A9:52:62:CD:58:BE:DD:9E:68:57:25:4E
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/-BYQovw1CtGpUmLNWL7dnmhXJU4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.126.0/23
Signature Algorithm: sha256WithRSAEncryption
87:70:cd:59:ee:20:7b:2b:0c:3f:ab:35:a6:3b:79:fa:a6:9b:
1c:c5:44:17:02:4f:1c:e9:8c:04:25:da:61:29:f7:7a:df:91:
ee:b3:cd:5f:7a:c6:eb:eb:7b:ae:c8:6d:47:f6:41:25:f5:5a:
08:8d:29:a2:c1:30:89:31:37:19:50:04:28:7f:44:e8:02:bf:
ff:23:49:a1:6e:13:60:38:56:9b:bb:13:c2:00:71:c7:87:1e:
0b:7d:f5:22:78:5a:84:25:f9:74:d7:53:7a:d5:be:9d:10:73:
2d:80:a5:88:ee:fe:96:e3:b4:f4:a0:fe:87:63:dc:5f:4b:30:
49:e7:be:e9:83:bc:e0:fb:c3:d5:f9:74:72:ef:75:60:4f:2f:
57:5f:47:14:54:67:ad:3c:de:8b:a5:f0:73:4d:6c:ae:cd:6b:
b0:b3:de:5e:bc:6b:51:0f:f8:f3:86:a0:bb:82:7f:b9:24:23:
34:d9:60:f4:98:e7:45:f2:57:a3:dd:d4:89:99:8c:38:b7:1e:
32:9f:54:53:0d:d4:f1:08:26:8c:3a:97:89:40:9c:c7:a3:59:
88:45:ab:6d:f5:fb:3b:b3:b6:5f:00:ac:7d:3e:eb:bd:9a:44:
5f:a7:c4:59:84:0b:89:1a:26:d5:6a:51:53:fb:31:35:d3:12:
6d:8c:4c:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:46 2024 by rpki-client on console-fra.rpki-client.org