Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/DqtY5n2d4VFr20tIwbg9yGNtPBY.roa
File: DqtY5n2d4VFr20tIwbg9yGNtPBY.roa (raw, json)
Hash identifier: 7uSwHRWHG1U7qo+wWgau532S5M+Q7Wg4bzd8n6p4Q/M=
Subject key identifier: 0E:AB:58:E6:7D:9D:E1:51:6B:DB:4B:48:C1:B8:3D:C8:63:6D:3C:16
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 0E46
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/DqtY5n2d4VFr20tIwbg9yGNtPBY.roa
Signing time: Tue 29 Sep 2020 09:55:33 +0000
ROA not before: Tue 29 Sep 2020 09:55:33 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 211.76.123.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3654 (0xe46)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 09:55:33 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0EAB58E67D9DE1516BDB4B48C1B83DC8636D3C16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:3d:8c:13:ec:87:d4:8b:e0:0f:f9:f5:fb:3d:
4c:dc:30:59:b5:67:97:bb:b1:1f:e9:b2:d8:60:59:
ba:bf:f7:d0:eb:e3:a2:44:b8:47:15:84:cc:69:d7:
02:42:03:1e:2f:ba:7b:3d:f6:22:c2:33:b7:13:23:
c2:48:07:3f:3f:5d:b4:a9:ae:a0:75:d8:7b:39:39:
ac:46:49:08:31:8b:09:49:b3:7e:56:23:3e:a5:aa:
b6:59:3e:70:a9:d2:17:01:c4:f0:45:53:83:9b:b9:
f4:ad:00:5e:52:13:b8:ae:af:91:7b:7f:63:8f:6d:
3f:1f:02:d0:c9:ca:96:1b:c3:22:df:ea:d5:94:89:
77:35:92:ec:5e:87:eb:97:79:b9:77:99:2d:ca:85:
aa:f3:03:53:ed:f4:ac:27:67:7d:18:7f:02:3f:43:
d3:e6:a7:29:21:d4:5f:db:0d:d5:87:5d:f5:60:3d:
78:ef:2d:e0:b3:6f:52:a1:7a:cf:af:ae:fb:57:8f:
e0:fd:52:34:10:0f:f1:7d:fc:ec:d3:ca:e6:d9:8c:
6b:34:64:e8:49:ef:77:29:ab:eb:7b:82:39:b7:0c:
9b:77:70:7e:55:16:23:d1:fd:c5:5c:37:7e:9e:60:
6c:7a:2b:5c:2f:ab:c3:fc:ff:af:34:c6:1c:e7:01:
97:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:AB:58:E6:7D:9D:E1:51:6B:DB:4B:48:C1:B8:3D:C8:63:6D:3C:16
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/DqtY5n2d4VFr20tIwbg9yGNtPBY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.123.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:9c:92:7d:70:a9:c7:5b:f8:b2:ef:dd:16:56:ba:53:da:3a:
91:b8:dc:a2:46:b4:4a:a0:a2:2d:f7:d5:bd:5b:51:f4:b3:37:
89:ee:48:75:e4:48:55:36:f3:04:4d:d8:0b:f2:0e:9e:7c:ac:
05:b6:37:c5:fd:81:89:3e:be:a3:71:f1:9e:84:52:77:d8:97:
19:99:7d:a4:82:45:08:f4:de:50:28:6e:c2:86:05:8b:b9:da:
7a:22:3d:17:c1:ae:24:fb:d0:2b:00:4d:15:88:b4:7e:37:3e:
19:d0:ce:12:30:93:dd:6e:5f:d1:63:ff:cd:d5:c9:27:87:b0:
54:8c:f2:39:a0:b5:94:c1:ec:5b:cb:19:bc:85:1a:f9:c9:32:
2f:ae:bb:d4:37:4c:fe:4d:f0:33:10:48:99:21:40:42:b8:78:
60:d6:de:51:18:09:66:2f:86:8e:e9:f6:b0:1a:76:b7:4d:d5:
4e:c7:d6:8b:17:c8:6f:9f:6f:8d:ab:f4:09:45:bf:ee:f7:4d:
c7:0a:bf:7d:dd:d1:4e:63:f0:72:13:e5:d5:ef:27:67:8a:37:
4d:e2:2d:ae:06:52:d4:3d:a0:47:85:f5:4d:01:80:17:48:98:
5f:1d:eb:75:82:18:46:6f:35:cc:d9:8b:f1:5e:80:97:c3:08:
c6:e3:8c:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:34:36 2025 by rpki-client