Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ORZ1YX0qFNWFRupZ35BW74hr5LA.roa
File: ORZ1YX0qFNWFRupZ35BW74hr5LA.roa (raw, json)
Hash identifier: DS9LIOfObHTJxtUZWWhytVYARZMb0wdbLWcgC3Tfs0c=
Subject key identifier: 39:16:75:61:7D:2A:14:D5:85:46:EA:59:DF:90:56:EF:88:6B:E4:B0
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 233A
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ORZ1YX0qFNWFRupZ35BW74hr5LA.roa
Signing time: Fri 25 Nov 2022 04:42:14 +0000
ROA not before: Fri 25 Nov 2022 04:42:14 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 211.76.120.0/25 maxlen: 25
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9018 (0x233a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:42:14 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=391675617D2A14D58546EA59DF9056EF886BE4B0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:7b:82:7b:b4:64:36:3a:e8:56:ba:1c:1c:c7:
30:89:d5:2a:45:48:e6:bf:07:62:e8:8b:d2:73:54:
15:28:99:57:bf:de:25:f2:8d:11:0c:65:e1:b0:37:
27:f6:7c:d4:15:5b:0b:c7:5e:df:2f:78:ba:d4:39:
bd:92:5e:6c:ff:5e:45:64:61:41:1b:83:11:2b:7e:
a6:72:a1:c7:e8:ee:f1:b0:1b:b0:a9:18:b9:00:b8:
95:7c:75:46:f5:d2:27:a5:96:fd:c6:9e:e3:eb:6b:
64:2f:21:79:8b:d2:15:ea:d2:28:7f:66:da:c1:5c:
56:84:d9:a8:03:8b:be:2a:12:08:7a:d6:8c:33:3a:
49:83:4c:33:b3:94:ca:fa:56:4d:d5:f2:fc:64:34:
e5:a2:e2:bb:81:d6:b9:1b:6f:f4:af:81:df:f1:6c:
36:3d:cd:39:ff:f3:20:c5:af:7a:73:d8:9c:9f:a4:
e0:a0:fc:4c:c8:4e:88:6c:f2:1b:46:d7:e2:31:92:
30:7d:7a:95:3f:4e:95:f4:ed:c9:79:21:4c:5b:49:
51:a8:55:cd:f7:d8:c0:3d:d0:02:b9:e1:b8:ea:69:
3d:94:ca:0e:86:28:38:ec:77:37:a5:53:cd:c7:9e:
ef:10:94:eb:49:14:ba:79:18:b1:d7:cc:46:8e:0e:
9c:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:16:75:61:7D:2A:14:D5:85:46:EA:59:DF:90:56:EF:88:6B:E4:B0
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ORZ1YX0qFNWFRupZ35BW74hr5LA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.120.0/25
Signature Algorithm: sha256WithRSAEncryption
12:07:78:d4:34:66:62:7e:85:44:4c:a8:cc:e7:3b:e4:99:d5:
ac:30:3f:b6:3e:a7:26:61:90:75:a9:57:9a:c1:8b:3b:ea:46:
da:3c:b7:54:62:90:a8:4a:85:0f:77:68:b7:89:b5:32:67:08:
fc:a1:25:44:44:56:3a:15:67:ca:04:9f:50:7e:3d:95:6e:32:
d6:d9:f0:93:aa:24:96:f1:6c:78:d6:01:d9:7f:5d:ab:bb:ee:
3e:f0:bd:f5:69:bb:3d:bc:27:bf:00:37:30:33:7d:1d:15:81:
f8:f4:d1:1c:f4:50:ae:e3:83:92:b9:70:92:6e:38:d3:5f:82:
5b:a8:a5:b1:d3:75:a3:7a:d2:8a:5f:f7:3a:04:6a:83:11:f9:
50:9a:c4:80:ce:26:0f:b0:c1:a9:1a:d0:f7:47:87:5a:c2:9b:
de:56:a3:97:cb:b5:29:35:9f:88:6b:89:d4:f6:2d:70:71:1a:
27:8f:b8:69:c5:9a:9a:04:72:86:96:c1:26:a3:1f:ad:d9:9d:
14:33:89:f5:f8:5c:d7:43:7b:7a:d3:b5:0c:46:ab:2d:63:3d:
86:4a:d1:fa:34:66:4a:5d:00:fe:b2:b8:82:f2:d5:41:00:1e:
17:3e:75:62:a9:b2:e6:7c:28:82:bd:3b:b6:95:47:18:0a:3f:
b2:e8:80:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:52 2024 by rpki-client on console-fra.rpki-client.org