Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/II0xZhZjJOlHjVOghGtHOr2Kmzo.roa
File: II0xZhZjJOlHjVOghGtHOr2Kmzo.roa (raw, json)
Hash identifier: GuMS1xLHCymuosrHrAy68XZpafrwX6+IYoTIcJlmftc=
Subject key identifier: 20:8D:31:66:16:63:24:E9:47:8D:53:A0:84:6B:47:3A:BD:8A:9B:3A
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 240E
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/II0xZhZjJOlHjVOghGtHOr2Kmzo.roa
Signing time: Tue 06 Jun 2023 08:17:10 +0000
ROA not before: Tue 06 Jun 2023 08:17:10 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 211.76.112.0/20 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9230 (0x240e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Jun 6 08:17:10 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=208D3166166324E9478D53A0846B473ABD8A9B3A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:04:b5:86:63:a2:d6:19:a3:de:dd:8b:08:d0:
f2:03:15:a5:ca:d6:ee:a4:2a:11:f6:c2:c4:58:f5:
6d:b5:7b:14:00:61:06:8d:7f:20:d1:4a:43:a0:09:
f8:0b:6e:e9:ed:db:09:77:8d:42:7d:db:ad:f0:57:
b3:65:5d:47:3e:9b:e9:14:89:ce:6d:a6:08:85:c2:
34:bf:30:90:60:5f:0d:c4:a8:d2:38:c2:7e:c2:14:
e0:4d:e2:f3:6e:ef:b1:cc:ff:4d:64:da:fd:50:69:
4a:7b:33:53:ad:f0:08:ba:84:4f:6f:7e:8a:5b:09:
89:27:f8:bb:4f:fe:3b:c9:91:c4:9b:5b:17:9f:40:
eb:60:fd:39:27:16:56:d8:3c:46:cc:0a:75:27:b8:
f5:dd:f4:b4:6d:01:db:1c:9b:49:89:a8:b5:7a:85:
82:5c:6d:df:b1:fa:c5:7a:5a:87:9e:5a:92:c5:66:
23:b6:b9:68:66:29:21:0f:13:06:29:92:49:e0:b9:
21:9c:a2:4a:09:fe:7f:46:41:71:f8:f0:a6:db:50:
b4:e9:ec:03:56:92:19:46:1e:c8:75:03:01:9d:0a:
84:65:bd:68:9a:89:37:db:d3:59:cd:ff:67:32:66:
f2:54:00:f0:50:d5:98:ec:c6:6a:ab:7e:bf:10:30:
e8:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:8D:31:66:16:63:24:E9:47:8D:53:A0:84:6B:47:3A:BD:8A:9B:3A
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/II0xZhZjJOlHjVOghGtHOr2Kmzo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.112.0/20
Signature Algorithm: sha256WithRSAEncryption
43:42:78:91:2f:ba:db:3a:7a:80:06:56:42:ae:8e:99:05:9c:
40:fb:6d:f6:64:85:84:33:e7:51:f4:80:a9:7d:9d:07:78:22:
cd:3c:63:8a:da:c4:48:b7:87:8f:82:4d:7f:18:ac:a7:95:d8:
90:eb:0b:84:95:ff:14:71:25:a3:3d:29:d9:dc:16:94:a0:0d:
05:ef:fe:b7:7c:c6:7e:c9:1c:07:56:68:7b:e0:f3:f8:fb:7a:
bb:df:04:dd:85:76:18:81:e1:46:c4:5e:9d:cf:5d:e2:4f:b7:
87:b0:71:8c:a4:2a:69:62:63:9e:53:58:2d:a7:94:16:0c:49:
30:f8:69:76:6b:46:bb:8a:f2:ce:08:29:58:45:a9:e4:61:f9:
07:90:80:22:71:05:d7:72:01:73:c9:4a:36:f8:93:57:66:b6:
8c:a4:6b:76:7a:e3:67:e8:02:23:cf:dd:16:7d:78:f3:c9:a5:
8a:06:78:21:75:cf:8e:8b:d5:c4:35:78:4a:e9:f7:7f:9a:3e:
40:00:2b:eb:16:22:e5:18:63:6f:c2:b0:4e:d5:af:e9:f0:1d:
ed:2e:f7:12:bb:f1:7a:dd:e2:61:b1:32:c6:9d:f5:e0:ec:d8:
81:5a:42:07:f4:1b:92:48:c7:14:15:6c:7c:7d:65:d4:22:cd:
01:0c:a2:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:27 2024 by rpki-client on console-ams.rpki-client.org