Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/RMFZ2YDHIqpjx2muEoMf9HYhGhs.roa
File: RMFZ2YDHIqpjx2muEoMf9HYhGhs.roa (raw, json)
Hash identifier: r/sMMx3FkaeyDrqGGLeMKRiIjdttn91sONcJN64yViE=
Subject key identifier: 44:C1:59:D9:80:C7:22:AA:63:C7:69:AE:12:83:1F:F4:76:21:1A:1B
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 173D
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/RMFZ2YDHIqpjx2muEoMf9HYhGhs.roa
Signing time: Sun 07 Feb 2021 12:17:42 +0000
ROA not before: Sun 07 Feb 2021 12:17:42 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 211.76.121.0/25 maxlen: 25
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5949 (0x173d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:17:42 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=44C159D980C722AA63C769AE12831FF476211A1B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:71:75:f0:af:a2:8b:2d:c5:90:81:ba:c8:b5:
b8:ff:86:ec:3c:5b:32:4f:46:48:a3:bb:87:0b:7e:
01:da:90:c2:35:63:7d:d1:af:5d:1b:0a:f2:35:4e:
4b:30:e9:8c:58:94:a3:92:e4:68:c7:ef:65:8b:a4:
65:50:c2:5e:2d:f2:37:43:eb:16:dc:92:9e:da:f1:
a6:1d:bb:95:52:ab:82:5b:5d:97:a0:8d:38:34:f1:
58:c0:26:ee:35:63:7e:2b:38:6b:f6:7e:50:04:cd:
04:51:ad:df:c1:b0:ea:75:3d:eb:7d:9b:0d:d9:a6:
66:36:5c:b9:48:c2:32:c6:47:ea:ee:3d:d9:cf:d8:
da:d7:e8:69:be:07:88:bd:69:7c:30:bc:b4:c7:91:
29:70:9b:83:65:4e:6a:8e:c3:4a:07:25:c5:fd:cc:
e9:ec:35:68:35:1e:ac:0c:16:5e:ca:9d:fe:41:06:
33:00:b0:fd:6d:02:97:57:4e:e5:e2:d1:28:0c:12:
16:6b:92:ee:71:2f:28:42:13:09:17:9b:1b:00:5a:
65:10:73:8a:6a:99:94:94:62:b0:87:0c:7b:8b:5c:
c4:00:2b:aa:17:cf:2c:60:86:f4:2a:fa:9f:ee:05:
4f:5c:10:54:ed:0f:6c:2c:c1:e5:d0:f0:b8:cd:b8:
d2:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:C1:59:D9:80:C7:22:AA:63:C7:69:AE:12:83:1F:F4:76:21:1A:1B
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/RMFZ2YDHIqpjx2muEoMf9HYhGhs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.121.0/25
Signature Algorithm: sha256WithRSAEncryption
8d:6c:35:35:f5:61:95:23:bf:c7:99:f1:45:3c:47:4e:67:50:
ca:b7:76:0f:8e:7d:e8:63:e6:7a:86:87:4e:54:e9:7a:8f:c1:
3a:1d:8f:0f:b3:32:49:57:c5:48:d3:f6:94:d5:a5:04:1e:f4:
a0:44:9b:b4:c0:3a:72:c4:4b:17:31:aa:5c:ce:ae:49:37:0e:
3d:ec:01:35:ac:1b:10:89:9e:93:ee:26:9f:be:fe:f1:ad:ba:
3d:fd:36:b5:66:12:7e:c7:1e:d7:83:9a:80:d0:65:8a:83:e7:
28:38:b9:49:ac:85:80:05:56:15:aa:23:1e:c5:f4:c3:ad:28:
9b:25:c0:d0:d2:c6:2d:f4:c9:7b:d4:85:ec:77:de:ad:fb:e8:
26:ee:f4:a3:8e:c6:57:a6:27:62:5f:b7:cb:d7:03:92:0a:5f:
31:7a:fc:de:c6:09:36:6c:bc:5d:f6:b0:62:0e:73:5c:a5:06:
9b:eb:4b:da:61:dd:7e:15:76:6e:6e:51:75:70:83:3d:ab:91:
89:d1:69:48:42:47:e4:04:70:94:50:e7:f3:68:38:7f:ae:ea:
9a:24:83:c8:05:da:8d:4a:06:2a:ec:7f:91:71:7d:77:c0:ae:
dd:91:3f:c0:17:ff:a9:e6:71:43:f3:49:af:b6:da:40:7a:ee:
58:a9:9f:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:19 2023 by rpki-client on console-ams.rpki-client.org