Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2l9COjGHp5JJv8BWPSIqePKz7dg.roa
File: 2l9COjGHp5JJv8BWPSIqePKz7dg.roa (raw, json)
Hash identifier: mhMcyIOuA3g/rj/udrR9bbJmGMuE+oNykI1K7USbemY=
Subject key identifier: DA:5F:42:3A:31:87:A7:92:49:BF:C0:56:3D:22:2A:78:F2:B3:ED:D8
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2l9COjGHp5JJv8BWPSIqePKz7dg.roa
Signing time: Thu 15 Sep 2022 02:45:17 +0000
ROA not before: Thu 15 Sep 2022 02:45:17 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 211.76.120.128/25 maxlen: 25
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8096 (0x1fa0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:45:17 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=DA5F423A3187A79249BFC0563D222A78F2B3EDD8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d0:b9:64:78:4b:7b:92:a5:84:4f:47:f4:f6:
cd:ec:8d:93:66:9a:4e:12:21:a0:63:1c:f6:d4:be:
56:8a:40:d5:c6:b0:d6:08:b0:24:c8:84:39:3e:d4:
8d:73:15:37:52:55:d4:c5:65:f1:4c:3d:83:a3:af:
2b:b1:41:8d:6d:f9:b5:1e:8c:d7:b3:7b:05:3d:d7:
41:78:3d:6f:48:1d:47:fc:80:3a:ea:ee:9d:18:b3:
6e:00:57:e2:a3:42:9f:78:42:fa:03:d2:c9:18:3a:
5c:1b:e0:d8:f1:12:94:09:38:35:24:a8:70:49:7c:
b4:09:71:b2:42:f3:df:f7:d3:49:1a:07:8c:b5:2a:
50:ed:52:9e:0c:54:eb:f2:23:6a:cf:75:66:0c:e4:
cd:ac:05:2a:87:34:76:42:4c:36:fa:14:9d:77:ce:
c5:54:2d:f1:d3:b3:f0:57:a3:e9:05:4e:b2:77:5d:
3b:5f:f7:3b:6c:2f:9b:06:df:3c:a0:9e:6c:8d:dd:
4e:52:34:fb:4a:7e:33:07:04:09:6c:8a:1d:03:16:
74:37:e9:ea:a8:dd:11:7a:6a:ef:d4:c5:9f:66:69:
76:12:4e:12:27:45:da:0d:b2:f0:96:eb:57:7f:c3:
86:a6:0e:77:77:e7:fe:7f:34:e9:3d:a2:fa:7c:43:
72:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:5F:42:3A:31:87:A7:92:49:BF:C0:56:3D:22:2A:78:F2:B3:ED:D8
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2l9COjGHp5JJv8BWPSIqePKz7dg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.120.128/25
Signature Algorithm: sha256WithRSAEncryption
85:18:ea:d4:ef:d4:fe:68:3e:24:a3:34:09:e2:88:b7:e5:d1:
a3:c1:4f:5f:51:89:04:92:29:4d:b4:a1:e7:7a:d4:2b:8f:94:
c7:90:1c:bf:05:67:91:1d:a1:0b:06:ca:89:c6:47:d7:14:d9:
91:f1:0b:78:66:98:fc:ed:7a:cb:62:5c:eb:7e:cd:fd:e5:39:
56:80:56:ca:05:d5:b8:34:19:09:a3:30:2f:69:2a:64:9a:08:
ee:97:b5:10:34:19:a1:61:97:cb:27:ef:ee:92:cf:22:49:38:
87:83:7f:61:8f:b7:88:52:39:e3:8a:7c:4f:68:91:bb:e4:7b:
25:ec:30:62:93:7a:3f:2f:2f:e3:aa:10:b8:4f:47:8b:7f:9c:
5e:8c:a0:74:6c:59:bf:e3:83:69:5d:22:fe:93:1d:0f:ca:04:
6d:ad:20:b3:4d:7a:8d:26:5c:c8:75:df:07:48:15:04:dc:5f:
ee:9f:00:c0:9a:68:fa:ac:45:f4:4c:ec:43:34:89:2f:ff:ca:
f5:ff:45:5b:d5:46:7d:71:92:11:1a:6d:88:34:d0:ed:d0:2a:
3c:d9:6a:84:0d:31:01:34:35:4c:59:b5:7a:0f:1a:29:42:0f:
f1:b3:99:f2:c4:e9:ec:16:ba:e0:9d:75:63:4e:36:9f:a3:c5:
10:bb:c2:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:47 2024 by rpki-client on console-fra.rpki-client.org