Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ESCSwcOmAGBuQboSYevcLFt_nh4.roa
File: ESCSwcOmAGBuQboSYevcLFt_nh4.roa (raw, json)
Hash identifier: ZZcIfUAmDdFy8NRxEWqAlT4Hrb5iIpAKU830d/6ofvI=
Subject key identifier: 11:20:92:C1:C3:A6:00:60:6E:41:BA:12:61:EB:DC:2C:5B:7F:9E:1E
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2AB9
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ESCSwcOmAGBuQboSYevcLFt_nh4.roa
Signing time: Fri 01 Sep 2023 10:08:13 +0000
ROA not before: Fri 01 Sep 2023 10:08:13 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 211.76.125.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10937 (0x2ab9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:08:13 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=112092C1C3A600606E41BA1261EBDC2C5B7F9E1E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:58:28:e6:ef:0a:83:f5:49:4b:03:5a:a2:d1:
65:b8:eb:4f:ac:a8:98:7d:bd:c9:0e:bc:3f:a1:ca:
d1:01:08:ee:6f:bd:39:b2:48:6f:ff:6f:ee:43:63:
54:7a:d0:9d:38:f4:c2:bc:65:b2:8e:fa:2a:1d:34:
7f:66:f5:2e:0a:39:40:c8:4c:f2:5e:67:66:4e:93:
35:7c:e2:de:20:38:1f:1d:17:3f:ad:0d:24:98:80:
d5:03:ab:5c:66:41:16:53:c0:a4:c4:3c:c0:4f:9f:
ff:cc:d8:48:b1:f9:26:a5:4c:fa:40:a6:d8:e8:42:
9b:b2:51:d4:67:41:09:59:b6:6c:2d:68:53:9c:52:
33:5b:33:dc:cd:8b:2d:cf:38:94:7d:56:9f:ec:e6:
91:0d:c8:6f:77:24:bd:ba:53:10:05:4d:db:eb:d0:
90:1e:bb:89:84:8a:57:88:0d:fe:55:8b:7b:88:21:
0a:b8:1c:53:59:c5:2c:c4:7c:16:ca:d1:c2:40:f3:
aa:5f:ce:1a:6c:21:58:0b:17:57:d5:88:98:99:0b:
96:bc:80:ed:d3:f3:59:eb:2b:16:b2:0c:65:3c:14:
ab:2e:cd:bc:b5:e0:05:f7:e4:6c:5b:9d:ba:bc:6c:
60:4d:a0:ac:03:2e:3f:c0:93:44:b9:20:68:bc:80:
79:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:20:92:C1:C3:A6:00:60:6E:41:BA:12:61:EB:DC:2C:5B:7F:9E:1E
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ESCSwcOmAGBuQboSYevcLFt_nh4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.125.0/24
Signature Algorithm: sha256WithRSAEncryption
51:e8:3f:77:e5:fa:24:72:e5:6c:c8:e2:50:e6:ff:8f:1b:a7:
bf:ba:60:19:5d:cd:71:9d:a2:77:a6:b5:eb:0f:0d:5b:d9:d2:
2b:20:2c:4d:8e:ac:0e:67:04:9f:d6:b5:ef:6e:bc:4d:0d:d5:
d1:b7:0c:9d:81:24:ae:a9:08:28:fb:dd:d2:6a:58:3e:01:8f:
ee:43:f9:50:41:2f:eb:07:73:80:af:17:ca:af:a3:41:d5:58:
12:b2:96:96:74:76:45:56:b8:56:2a:e0:43:e7:a7:77:e4:0c:
be:a6:e3:7a:6a:44:24:f4:eb:11:1d:ed:79:a3:56:0f:3d:6b:
ad:e7:98:34:ab:12:28:a4:b0:4c:3c:3c:ac:7c:06:75:7d:b5:
d7:dc:98:10:ca:11:d6:33:23:f8:92:6a:24:69:74:fa:4d:22:
6f:4c:8a:50:43:bd:29:46:e1:dc:87:85:d9:c5:3d:fc:c5:9f:
47:2f:0e:e7:45:08:8c:02:84:69:97:6c:60:39:98:b1:e0:08:
35:95:a6:59:36:c6:55:39:fa:0e:c4:1a:fc:bb:5a:2e:99:e4:
b5:19:28:e7:1f:29:f5:8d:98:53:9c:82:c1:fa:c1:cb:a3:c6:
27:90:ab:c2:e8:98:7b:9a:b5:63:32:9a:cc:79:72:dd:09:a7:
54:3d:fa:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:34:40 2025 by rpki-client