Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KUGV848jfRcM9jWoVeIYp_KBUj8.roa
File: KUGV848jfRcM9jWoVeIYp_KBUj8.roa (raw, json)
Hash identifier: 1yVf9wyOWKl7R3spzuKAWY58ZoKTGyzUFXLJwnWZWDY=
Subject key identifier: 29:41:95:F3:8F:23:7D:17:0C:F6:35:A8:55:E2:18:A7:F2:81:52:3F
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1D5D
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KUGV848jfRcM9jWoVeIYp_KBUj8.roa
Signing time: Wed 29 Sep 2021 02:48:55 +0000
ROA not before: Wed 29 Sep 2021 02:48:55 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9924
IP address blocks: 211.76.123.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7517 (0x1d5d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:48:55 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=294195F38F237D170CF635A855E218A7F281523F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:a0:25:9f:60:1e:4a:58:4f:dc:c5:60:ef:0f:
9e:02:7c:0c:c5:87:0d:17:11:29:32:0b:de:0a:98:
e1:b8:19:98:e1:27:da:10:5c:0f:f6:43:35:69:4f:
44:51:46:d3:b1:73:02:f4:e2:92:6d:be:f5:d2:e5:
d1:3f:50:67:8e:1a:ac:b1:bd:35:63:ca:fa:fc:14:
cd:eb:06:bc:2a:b7:a6:44:76:4e:f3:0f:ba:83:80:
f9:78:a2:8c:44:c5:59:af:bd:84:36:7f:4b:14:15:
3c:f8:8c:25:ed:28:fa:a3:a8:5f:02:72:80:b0:9f:
19:1e:37:5a:b7:00:e3:df:1f:2d:dd:48:20:d4:99:
f0:1d:eb:8b:61:bc:34:0b:8a:a1:37:28:a1:46:9c:
35:c5:98:ef:4f:85:a6:98:f2:6f:f6:43:9b:f0:c6:
88:1c:81:fa:48:ef:d4:80:e9:8d:f1:d9:7e:4b:4d:
a1:d3:24:d1:62:5a:03:83:b4:c0:89:c7:c8:fa:08:
12:8e:50:d3:fd:ee:ea:3c:8e:7a:ff:ad:e4:c4:cd:
84:37:67:ad:35:de:9a:88:ac:fb:b0:32:79:8b:d5:
a9:a0:07:53:c7:d2:85:09:e9:d8:3c:13:10:ff:99:
fe:9e:f0:66:6c:be:35:f9:ef:3e:38:f1:af:0b:9d:
b8:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:41:95:F3:8F:23:7D:17:0C:F6:35:A8:55:E2:18:A7:F2:81:52:3F
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KUGV848jfRcM9jWoVeIYp_KBUj8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.123.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:60:04:46:02:23:77:a6:e3:be:b1:b8:38:f3:b9:4c:1a:0f:
97:1c:ee:2b:03:9f:ef:c1:6a:6c:7e:7a:25:d6:ae:a2:b7:d8:
4c:9a:96:04:da:71:e4:7b:26:4b:a1:0c:a5:8f:21:c2:20:b3:
71:07:f6:32:bc:90:03:d1:1f:47:cd:30:74:49:9e:06:c4:39:
38:ed:02:e0:2e:c3:53:db:a3:ae:f5:7d:de:97:24:3e:32:b7:
f3:04:b6:e7:ea:81:5b:b0:da:ab:a8:97:3f:63:8e:ad:0c:03:
32:cd:3d:72:41:2a:96:7a:9e:fb:50:0e:b9:2b:84:f2:2d:0e:
3b:0c:e4:9d:58:1f:fc:a4:cc:a8:9a:19:a4:ac:69:69:02:77:
1b:97:ea:5f:68:3d:28:46:2d:db:9d:c4:85:b3:3f:2a:bb:d0:
26:74:e2:da:50:a2:64:77:43:45:20:ee:5e:85:6b:2c:cb:1f:
19:dc:3e:17:15:04:32:f9:72:67:f5:d4:1f:4a:2f:36:e6:68:
ed:df:f0:39:14:19:f2:cc:64:fa:87:1d:8c:2d:1e:f5:46:40:
ee:27:48:f9:70:04:47:5c:06:b2:a8:3b:cf:1f:7f:7f:fe:b0:
b1:ff:4e:34:48:b5:b1:f2:59:4f:60:02:9d:cc:8c:21:c6:db:
33:d4:84:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:51 2024 by rpki-client on console-fra.rpki-client.org