Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/28cB--qLA7rSfCL-0l3EkPwUxHg.roa
File: 28cB--qLA7rSfCL-0l3EkPwUxHg.roa (raw, json)
Hash identifier: 0dF/tAMLu1puvIyGCleJHl30qu4PvA0Ckyq3ouWHQuY=
Subject key identifier: DB:C7:01:FB:EA:8B:03:BA:D2:7C:22:FE:D2:5D:C4:90:FC:14:C4:78
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 0D02
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/28cB--qLA7rSfCL-0l3EkPwUxHg.roa
Signing time: Tue 29 Sep 2020 09:54:04 +0000
ROA not before: Tue 29 Sep 2020 09:54:04 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 211.76.126.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3330 (0xd02)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 09:54:04 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=DBC701FBEA8B03BAD27C22FED25DC490FC14C478
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:4a:08:45:b1:f7:78:f1:63:60:7f:f8:86:b7:
8d:32:92:7d:de:ac:1d:25:4b:73:81:14:b3:26:fd:
f6:87:03:39:33:60:9e:cf:2a:40:30:c9:1d:11:03:
61:1e:87:56:4d:25:7e:2b:5c:4e:83:c8:c1:3e:0e:
d3:ea:82:3b:ad:c4:d2:ab:f7:b1:a7:c5:d1:4e:3e:
4a:0c:37:c6:ef:a1:10:4a:34:79:ef:99:80:40:ed:
4e:cb:a0:18:65:de:f6:f5:74:ab:96:68:88:7f:99:
3f:ea:43:e6:47:27:a9:69:6a:4e:ed:6c:11:09:1a:
46:b3:a9:f9:02:cc:24:b6:20:4c:6e:69:31:7e:78:
3a:27:10:4d:03:8d:3b:30:c3:49:c3:40:a2:de:0c:
46:bb:f1:9e:73:92:de:f7:1f:d5:58:26:0f:95:bc:
95:81:08:2c:cd:a0:cc:8a:62:4c:fc:7a:57:eb:5c:
74:e3:44:fe:b5:d8:a6:8b:6d:db:3b:77:78:19:09:
9c:dc:a5:5a:21:1f:8b:6e:9e:64:8e:f1:1b:bb:81:
96:5b:5e:5f:a1:01:80:00:0e:58:a5:67:4e:47:07:
9b:a9:b7:a7:25:4c:e3:2c:72:42:87:d9:26:b9:7a:
e3:23:2f:46:f4:2c:56:7c:54:ad:34:b7:fd:2b:17:
ef:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:C7:01:FB:EA:8B:03:BA:D2:7C:22:FE:D2:5D:C4:90:FC:14:C4:78
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/28cB--qLA7rSfCL-0l3EkPwUxHg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.126.0/23
Signature Algorithm: sha256WithRSAEncryption
76:43:8c:b7:13:41:a1:75:40:51:21:46:98:82:32:4f:e3:e1:
5e:55:93:02:1a:f4:d8:78:73:02:15:d4:9f:b2:10:1a:dd:2d:
40:97:f9:4d:ee:b5:4a:d1:e9:c2:23:d4:9a:ec:9c:5b:74:b4:
17:33:bd:53:c2:7b:6f:4e:60:08:f4:c2:94:5c:51:f3:c3:07:
f9:aa:c0:0b:83:2a:5c:90:bb:37:b4:04:0b:c6:ac:5c:21:4e:
f2:80:3b:95:fc:92:c6:87:55:b0:a9:2b:ab:a5:ef:d9:87:c6:
b2:f7:e4:35:d2:e2:fc:ad:cb:56:da:fd:d9:e5:e1:96:b2:2f:
a4:f6:0e:89:71:e0:37:9a:e5:81:5b:ad:b4:9b:5b:58:96:e8:
71:3c:e0:1b:f6:24:f5:8a:b0:02:b3:d2:65:43:72:70:28:7c:
25:70:50:a9:87:f6:1a:e5:e0:d8:8d:87:fd:af:51:33:ca:4d:
82:15:12:41:1d:10:9f:13:af:52:2b:7c:15:3f:82:70:56:2d:
0c:87:68:9e:a9:aa:3a:29:b8:5f:28:42:c6:94:be:f8:b2:25:
db:19:0f:83:dc:4c:4c:cd:fe:c6:84:7c:c0:04:76:a1:48:f0:
7b:ce:6a:f7:d9:38:f6:39:ee:b1:92:7d:1d:ef:a0:8c:b9:09:
7f:b8:31:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:23 2024 by rpki-client on console-ams.rpki-client.org