Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/41Vy05dVNiaS-FFxbKwnQM6GQuw.roa
File: 41Vy05dVNiaS-FFxbKwnQM6GQuw.roa (raw, json)
Hash identifier: qTFt+birBKghNMaYlmFTyzle12TN+R5g5iVXQpXmJ5o=
Subject key identifier: E3:55:72:D3:97:55:36:26:92:F8:51:71:6C:AC:27:40:CE:86:42:EC
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 0EEB
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/41Vy05dVNiaS-FFxbKwnQM6GQuw.roa
Signing time: Tue 29 Sep 2020 09:56:17 +0000
ROA not before: Tue 29 Sep 2020 09:56:17 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 211.76.119.0/25 maxlen: 25
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3819 (0xeeb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 09:56:17 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E35572D39755362692F851716CAC2740CE8642EC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:fd:39:e9:e1:2f:50:8a:37:5f:a1:96:94:14:
6f:ef:aa:2d:35:e4:4a:94:7b:b5:8e:ae:f3:2e:e8:
d8:42:66:19:88:d5:e6:8d:01:30:cb:7f:a0:90:be:
b7:fa:0c:32:af:dc:a9:8a:81:ea:fb:07:1f:6c:61:
38:11:f6:60:c0:a3:5a:40:25:eb:cc:c3:79:55:fc:
02:09:03:6d:37:06:d7:fe:41:03:40:dd:7f:b8:fa:
35:17:27:0c:c7:a8:a4:ac:b1:7e:0f:7e:24:79:d4:
3d:23:f4:bf:b2:ec:60:a3:8d:19:e8:5c:a1:ac:14:
78:5a:0d:55:4b:79:aa:fc:c1:d6:1a:d4:69:0f:8c:
4b:72:46:08:d1:1e:1c:48:52:3a:2b:cd:c5:f5:29:
d6:2e:34:e1:da:1d:ce:89:35:92:88:07:4b:1d:4e:
17:64:2b:9b:0f:55:36:2b:14:3c:23:99:31:79:55:
5f:23:91:36:52:05:42:22:79:7a:00:56:ae:ab:e2:
fb:2e:eb:30:fc:5d:86:68:12:33:73:c2:d7:27:7c:
8c:08:ca:25:c8:76:31:05:c3:50:03:69:6b:80:65:
27:47:91:95:9f:fb:5a:c4:7c:f8:18:9c:19:a9:46:
db:11:8f:0a:bc:2a:6d:f2:98:a0:7c:9b:70:36:a2:
7d:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:55:72:D3:97:55:36:26:92:F8:51:71:6C:AC:27:40:CE:86:42:EC
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/41Vy05dVNiaS-FFxbKwnQM6GQuw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.119.0/25
Signature Algorithm: sha256WithRSAEncryption
80:67:98:0e:01:2a:ac:25:05:17:e4:ed:31:a4:78:bc:a8:15:
9d:95:17:b7:ee:89:fb:fc:42:0f:1f:1d:a6:e8:53:f5:e1:e9:
7e:f0:93:6e:58:72:8d:63:02:e7:e0:ab:fa:dd:7e:63:3a:08:
b5:20:78:50:3c:f7:87:5a:45:e7:dd:1d:ff:9f:ba:97:6d:87:
f5:9a:dd:53:90:f8:c5:3a:3c:7f:37:dd:d3:fe:8e:37:89:9c:
11:3a:98:b2:68:90:0c:6d:32:05:eb:3b:48:39:d6:71:df:39:
28:3c:00:19:65:1a:f8:a6:71:19:fd:ca:79:d4:39:be:0c:1e:
06:2f:2b:25:c0:77:81:81:1a:3a:33:14:6a:e2:8e:62:90:dc:
b6:db:79:66:d4:7e:54:01:ab:9e:57:42:90:ca:1f:ce:b2:fb:
d5:55:cd:ec:0f:4c:92:ff:33:9d:2b:a9:ec:33:72:64:a3:a7:
b4:f9:4b:00:4e:9a:37:9f:68:fd:f6:d0:2f:fd:59:4c:2d:4b:
13:cc:55:16:41:45:3c:a3:ab:d4:76:50:5e:25:97:7b:5e:bc:
21:7c:9e:82:9f:09:56:4f:75:39:1a:b3:ea:e6:40:f2:23:a9:
46:74:2f:f5:d7:5c:d4:9b:c8:ef:fd:a5:30:af:e4:3d:1f:52:
92:11:2a:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:47 2024 by rpki-client on console-fra.rpki-client.org