Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3CHq5PGmaBdIpdf726e6mwVmEgI.roa
File: 3CHq5PGmaBdIpdf726e6mwVmEgI.roa (raw, json)
Hash identifier: A8EMugYEU7glI3lvFd7DsizE7TRahEEvTApmjZ4kXXg=
Subject key identifier: DC:21:EA:E4:F1:A6:68:17:48:A5:D7:FB:DB:A7:BA:9B:05:66:12:02
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1B15
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3CHq5PGmaBdIpdf726e6mwVmEgI.roa
Signing time: Wed 29 Sep 2021 02:46:07 +0000
ROA not before: Wed 29 Sep 2021 02:46:07 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 211.76.112.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6933 (0x1b15)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:46:07 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=DC21EAE4F1A6681748A5D7FBDBA7BA9B05661202
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ad:33:e7:6d:6c:36:77:66:79:02:a5:80:46:
ed:e4:16:4f:25:51:d1:bd:89:c9:0d:dc:3c:f6:3f:
f2:e5:67:d2:4b:fd:94:0f:ae:20:1b:ae:3d:f4:de:
97:ca:40:58:87:70:36:66:36:95:69:11:92:58:ea:
81:86:b4:ad:1a:b9:45:b5:2c:1d:3d:2a:61:2e:22:
4a:fd:ef:c9:c3:06:ab:6b:2d:a9:e0:dc:3f:11:a5:
77:26:d3:76:61:07:f5:23:c5:d5:7b:12:f5:42:7b:
06:cd:6e:ac:db:1b:86:0a:a2:66:e5:ed:ac:74:fb:
fc:a1:2b:52:4a:70:43:8c:54:e0:b1:2a:26:81:26:
94:e0:55:c3:06:3f:c9:aa:d6:45:57:1e:de:05:2a:
7f:06:62:db:b2:3b:da:d0:18:6e:e6:bb:b6:ed:b8:
8c:5b:3b:ee:46:8a:74:3e:62:97:75:39:30:af:be:
c0:0d:d5:4f:c7:51:b1:99:de:4b:3b:b7:22:5b:16:
83:a4:60:ad:db:41:c9:12:b4:08:03:6a:a1:da:f9:
19:85:5b:aa:da:26:cf:71:27:e6:07:9c:8a:8d:f5:
c5:92:0d:c5:ef:34:a4:98:e4:87:bc:4f:ce:58:e6:
72:23:d0:ad:05:1f:6e:4e:13:4a:b3:e9:d4:bd:8f:
97:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:21:EA:E4:F1:A6:68:17:48:A5:D7:FB:DB:A7:BA:9B:05:66:12:02
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3CHq5PGmaBdIpdf726e6mwVmEgI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.112.0/24
Signature Algorithm: sha256WithRSAEncryption
65:46:80:75:36:f5:81:66:ee:86:52:35:8f:0b:41:17:4c:b5:
01:63:0d:d7:7d:5b:8d:12:ab:53:32:6c:6d:05:f2:2c:f5:00:
18:61:5c:67:7f:46:33:8e:05:56:79:36:dc:a2:c6:5c:fe:19:
eb:ab:9c:9f:30:c1:aa:42:23:a5:e9:79:91:3a:b5:7c:6f:c1:
f8:76:48:6b:c4:19:c0:ff:6c:5b:04:66:eb:c4:60:a2:8a:68:
f9:c9:53:4f:00:a6:c5:8c:13:63:94:b3:40:ac:1d:43:be:c4:
42:25:10:4e:6b:21:8f:c2:9d:01:a6:73:16:16:a1:52:63:2c:
5d:58:dc:e6:36:73:10:07:2c:3a:96:d8:4b:33:20:9e:a2:ad:
ff:e2:3d:1e:1e:c6:df:a4:04:3c:23:b5:c5:16:cb:7a:57:ca:
39:b7:44:23:57:9a:ad:5a:3a:3b:54:36:c3:10:11:6d:0d:f1:
00:0a:ee:29:89:26:0f:07:8b:40:03:46:86:40:be:00:28:aa:
93:07:05:e8:66:57:d9:bc:9f:8e:07:c2:88:53:a4:db:83:63:
df:59:e0:56:39:47:18:05:f0:53:74:3a:dc:3a:81:33:62:ff:
f7:1d:b2:55:21:da:e3:e2:de:00:bd:b6:bc:d3:f7:b7:9a:14:
cd:c6:fa:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:20 2023 by rpki-client on console-fra.rpki-client.org