Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OkHSyV8Zb2vZLyDwDVekKkk6pHg.roa
File: OkHSyV8Zb2vZLyDwDVekKkk6pHg.roa (raw, json)
Hash identifier: ZZZkYL+ubOxl45cifK+npmKAvcSjieD0nyKyBcAV7gA=
Subject key identifier: 3A:41:D2:C9:5F:19:6F:6B:D9:2F:20:F0:0D:57:A4:2A:49:3A:A4:78
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1B9E
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OkHSyV8Zb2vZLyDwDVekKkk6pHg.roa
Signing time: Wed 29 Sep 2021 02:46:48 +0000
ROA not before: Wed 29 Sep 2021 02:46:48 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 211.76.117.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7070 (0x1b9e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:46:48 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=3A41D2C95F196F6BD92F20F00D57A42A493AA478
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:c4:62:c6:df:77:7b:91:ce:1d:91:12:e8:ac:
a8:e5:a0:bf:1e:74:ef:2b:38:3b:a3:45:b9:86:c1:
fe:58:95:3c:97:f2:64:6b:13:26:7b:73:ed:60:00:
3d:26:d3:31:f7:b5:1a:f6:7c:b6:a8:61:71:44:63:
7b:4a:e2:de:3c:ba:ed:27:c2:e7:06:fc:67:d0:fd:
44:ae:20:6f:4c:63:41:66:6d:a5:1c:b7:5d:02:ba:
36:21:0e:81:d0:70:67:6d:50:59:4d:bd:95:26:4c:
b7:3d:4d:27:7d:04:e8:12:48:1c:fb:73:56:67:62:
06:58:de:d9:18:d4:3a:0f:dc:82:b8:7c:b7:69:2b:
9f:21:5f:a8:9c:87:ed:74:68:b6:52:cb:24:d4:34:
95:de:17:6f:00:cf:6a:9f:38:3a:c9:04:68:da:3d:
db:cf:9a:79:7f:3a:62:49:c3:92:d7:6d:31:45:fb:
af:51:66:a2:16:e8:f8:af:4c:08:bf:96:62:19:fc:
d5:da:3e:89:29:8b:b6:84:72:7c:87:d4:44:20:24:
ae:f4:a6:ee:37:3f:2a:0d:be:c7:d5:b7:23:a0:e3:
e5:78:24:f4:5b:fe:bf:e2:4e:e3:49:2d:88:36:10:
e5:3d:42:2f:ce:04:2a:e1:1c:7d:0e:22:b5:8c:7b:
66:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:41:D2:C9:5F:19:6F:6B:D9:2F:20:F0:0D:57:A4:2A:49:3A:A4:78
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OkHSyV8Zb2vZLyDwDVekKkk6pHg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.117.0/24
Signature Algorithm: sha256WithRSAEncryption
18:7a:c5:b2:33:47:47:e4:84:c5:d4:1a:09:b5:a7:17:84:a5:
b2:1e:96:e2:32:76:e4:00:de:84:8f:28:1e:a4:bd:25:ad:38:
0f:20:40:58:0e:d9:71:90:3c:30:de:63:f6:8d:ed:25:f1:37:
72:ff:81:ae:d1:7b:0c:4b:99:07:0f:9f:06:57:7c:34:fb:80:
b4:b7:d7:0c:99:0b:43:5c:3a:d1:dc:a0:85:80:4f:d1:3d:5a:
b7:ed:56:22:a6:e8:71:06:cc:80:ab:6d:fc:76:59:bd:a0:51:
fa:90:81:93:0f:1d:49:cd:9a:27:52:fc:07:95:a2:8e:c7:20:
ea:9b:98:87:bc:5b:83:ae:85:94:11:9f:54:cc:6d:1d:59:c0:
72:66:47:99:fc:ea:05:8f:94:f0:c5:0a:7f:ab:f6:93:aa:4a:
8f:81:79:2a:c3:f9:9c:b9:cd:25:86:bf:13:4d:b0:4a:21:67:
0b:83:bc:87:34:ec:14:9e:78:c7:9d:4d:cc:43:c4:f5:e7:f5:
93:ff:bf:52:84:9f:84:f7:a6:ba:3f:14:0d:88:05:59:2c:b8:
17:7d:d3:a8:81:0b:13:a2:51:4c:aa:30:7a:9a:84:34:c0:86:
70:00:33:83:5d:b7:a7:17:9f:e9:9d:69:93:ab:52:7c:8f:97:
93:14:2c:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:18 2023 by rpki-client on console-ams.rpki-client.org