Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/DlkHTfCyun1v8tr4uhSeq1WrEAE.roa
File: DlkHTfCyun1v8tr4uhSeq1WrEAE.roa (raw, json)
Hash identifier: pz3azyafU+7CR8WKQ2xGGqjcub7qM8Q9H0BZvUThG24=
Subject key identifier: 0E:59:07:4D:F0:B2:BA:7D:6F:F2:DA:F8:BA:14:9E:AB:55:AB:10:01
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1ABC
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/DlkHTfCyun1v8tr4uhSeq1WrEAE.roa
Signing time: Wed 29 Sep 2021 02:45:42 +0000
ROA not before: Wed 29 Sep 2021 02:45:42 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 211.76.114.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6844 (0x1abc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:45:42 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=0E59074DF0B2BA7D6FF2DAF8BA149EAB55AB1001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:e3:ba:b6:b8:cc:4a:c9:78:bc:0b:3f:c2:de:
86:e7:44:71:ba:ac:0d:6a:ad:11:f3:86:43:4d:2a:
48:38:7e:af:03:bd:64:63:5f:ab:0b:86:54:e4:72:
73:29:4a:af:38:19:c3:9a:c6:18:e9:85:8b:76:95:
f8:f0:11:b8:b9:92:7d:17:5d:60:57:33:69:71:2f:
5b:88:9e:fa:95:bd:52:c7:c9:ef:b6:bc:20:9b:aa:
81:37:65:75:eb:b5:51:a2:7f:15:fe:7d:0c:88:63:
2f:94:bc:2f:a1:6c:bc:b6:48:e0:32:c2:70:88:ad:
8d:31:7e:0a:48:f5:15:07:44:6c:c8:f1:21:23:0f:
5b:f6:9f:82:c3:79:ed:65:26:37:04:a9:22:41:b7:
b5:f2:0d:d4:fc:06:89:dc:75:b4:d9:45:24:c2:11:
c8:84:de:ce:ae:e9:1b:39:ba:95:4c:c3:ca:c6:a1:
d9:2a:ad:79:1e:26:a0:55:a4:12:27:57:65:83:2f:
74:28:ef:1b:86:8f:73:5a:61:3c:89:c9:9a:24:d2:
b4:03:16:8d:d2:4f:a6:ff:bb:79:bb:f6:1d:a0:f2:
87:0b:03:ff:23:7c:25:1e:27:de:9a:5d:dc:4e:6d:
63:ee:98:82:50:b1:f8:53:b3:24:10:9f:5a:33:2e:
0c:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:59:07:4D:F0:B2:BA:7D:6F:F2:DA:F8:BA:14:9E:AB:55:AB:10:01
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/DlkHTfCyun1v8tr4uhSeq1WrEAE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.114.0/24
Signature Algorithm: sha256WithRSAEncryption
50:50:4f:31:93:b2:e1:6f:09:80:fb:01:06:e4:0e:45:55:52:
f9:4b:7b:ac:b2:6c:c0:76:d2:d4:86:41:6d:62:22:d0:6f:a8:
77:16:0a:d9:a8:92:24:12:89:58:ed:de:28:de:ec:0e:3d:2a:
d1:5f:b9:c1:33:6c:39:39:02:88:5e:13:7f:b4:7b:f8:84:9a:
50:d4:68:50:4d:48:dc:4e:94:36:2c:bb:3a:75:aa:69:2d:ca:
ef:9d:52:98:79:44:5d:4b:ab:20:ac:4e:5a:97:f1:4c:af:b5:
8e:6c:ac:1c:33:15:8b:40:30:f6:36:69:a7:c6:5b:d7:94:57:
be:86:f1:56:3f:e9:c3:58:2b:58:ec:92:be:b8:a7:dd:96:c3:
d5:61:ae:40:7a:51:d3:b7:38:c2:97:e2:16:62:3b:5f:78:7f:
c7:bf:c3:a1:ed:e8:8e:87:33:04:c2:1e:92:1b:f5:d4:4f:41:
2d:a4:d8:54:19:cb:0b:d8:64:ac:ff:7e:e2:df:7e:1d:2c:8c:
46:58:94:93:93:36:ad:d6:3b:d7:6e:87:49:f0:5d:84:9c:40:
b8:d9:49:93:81:b6:b1:91:b5:bf:9f:97:66:f3:4e:71:b5:96:
52:97:c8:ac:70:88:d2:0a:df:e9:1b:6c:8b:d5:43:1a:44:26:
77:f1:32:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:49 2024 by rpki-client on console-fra.rpki-client.org