Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ApHu9EV9oW_43TVaRve712N5nBw.roa
File: ApHu9EV9oW_43TVaRve712N5nBw.roa (raw, json)
Hash identifier: cr2uaR9LwXdJCZPhtJFd9l5V+xSeunYrDJN1rpvuq2E=
Subject key identifier: 02:91:EE:F4:45:7D:A1:6F:F8:DD:35:5A:46:F7:BB:D7:63:79:9C:1C
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 0DEB
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ApHu9EV9oW_43TVaRve712N5nBw.roa
Signing time: Tue 29 Sep 2020 09:55:07 +0000
ROA not before: Tue 29 Sep 2020 09:55:07 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 211.76.113.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3563 (0xdeb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 09:55:07 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0291EEF4457DA16FF8DD355A46F7BBD763799C1C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:cc:4e:16:38:2c:db:b8:d2:d8:1c:be:c3:ff:
4c:e0:ed:b2:54:82:e3:8b:0b:f8:66:2b:3f:72:60:
1d:e1:8c:1b:d8:f5:f6:54:2d:78:a3:77:7c:d9:1f:
ff:a4:71:d6:94:76:49:d4:60:03:11:df:d6:d9:94:
dd:46:ad:2c:ac:78:2e:29:e8:c2:bc:a9:68:1f:29:
8b:a3:dc:86:3f:2f:4c:7e:54:d4:36:58:b0:03:0a:
e5:a3:9b:81:0e:ca:af:63:aa:b0:da:a4:bd:19:99:
bc:4c:eb:0b:38:db:ec:a9:a3:da:e3:e0:36:ae:41:
0b:43:3f:cd:9e:9d:d6:69:da:5d:e2:90:f4:9b:e9:
41:7e:b5:d3:5d:c4:22:e5:0f:37:b4:cb:f3:26:31:
30:7b:2f:97:0c:d2:7a:90:20:76:ce:4e:af:fb:b5:
f1:25:79:17:cb:5a:1a:bb:b5:73:62:10:e4:12:59:
fc:3b:23:15:1a:c7:b9:1b:25:f5:fc:1b:09:09:5d:
5b:57:e6:e7:c3:e5:ac:3e:af:6a:7e:fb:0b:4b:70:
bc:c5:a1:d1:a3:df:cc:d7:0d:b9:83:49:3b:5b:99:
bf:e3:5b:0b:16:7d:a2:92:ca:b6:e2:25:0e:c5:5d:
13:06:b3:ad:c0:b1:47:9d:7c:fc:6b:db:f1:21:fd:
0b:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:91:EE:F4:45:7D:A1:6F:F8:DD:35:5A:46:F7:BB:D7:63:79:9C:1C
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ApHu9EV9oW_43TVaRve712N5nBw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.113.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:35:9c:92:5e:4e:96:49:42:6a:3c:96:50:96:9b:f7:0f:61:
0d:e0:00:d9:ec:2d:ae:80:63:42:7c:f7:ed:2e:7a:a9:c8:e4:
b0:c3:c6:d2:3b:af:36:cc:4a:2e:be:83:11:42:b2:20:79:ba:
8b:9b:2b:fb:90:fc:94:a2:88:74:ea:77:9e:ee:56:33:f1:21:
b0:83:89:10:af:6c:1d:e1:11:40:e6:6f:be:c8:af:47:03:10:
16:ef:ea:86:b1:65:d8:e9:90:74:ef:8d:f3:ac:1c:0d:cb:60:
4f:bc:cb:fd:47:fc:cf:b5:ae:27:08:8c:22:46:94:72:0c:84:
7c:f8:2f:9b:3a:64:91:80:bc:5d:4b:9c:cf:46:cc:a3:ed:a0:
28:4f:eb:44:21:07:a9:12:1e:ea:24:38:0e:78:d3:d1:b8:5b:
f2:0c:e0:4b:6f:89:09:0a:a7:28:c8:59:23:25:30:0a:55:25:
93:0d:86:72:ca:37:be:33:a0:a2:5e:8a:db:04:5f:45:ee:69:
d4:74:da:a3:47:e7:25:8b:8c:db:dc:ee:2a:3d:66:78:6a:9a:
e3:bd:6b:75:2a:00:15:88:2c:bc:a4:bb:ac:8f:95:66:63:02:
1a:e3:9e:cd:9c:dc:df:81:1a:a1:c1:93:7a:13:f5:99:50:57:
d4:d4:cd:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:25 2024 by rpki-client on console-ams.rpki-client.org