Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/XZNYCbYYv6yxRCqnLaMB0ld-zu4.roa
File: XZNYCbYYv6yxRCqnLaMB0ld-zu4.roa (raw, json)
Hash identifier: 7IeuxH/4nGytXpRciHt8Ne9J9AFEWV/4aolHDfd2O2s=
Subject key identifier: 5D:93:58:09:B6:18:BF:AC:B1:44:2A:A7:2D:A3:01:D2:57:7E:CE:EE
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 16C5
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/XZNYCbYYv6yxRCqnLaMB0ld-zu4.roa
Signing time: Sun 07 Feb 2021 12:14:14 +0000
ROA not before: Sun 07 Feb 2021 12:14:14 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 211.76.119.128/25 maxlen: 25
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5829 (0x16c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:14:14 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5D935809B618BFACB1442AA72DA301D2577ECEEE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:67:91:66:9d:8d:2a:13:2b:18:e0:6e:a7:ae:
00:ce:41:d1:0e:f6:b9:f0:8f:0c:26:3a:63:41:5a:
4b:77:23:81:bf:0f:76:89:0b:4a:d0:fe:34:6b:a8:
cf:99:fe:89:08:46:c5:c9:e4:ab:5f:72:77:7e:7b:
2c:d8:36:6a:32:32:dd:04:d5:7a:67:c9:18:44:76:
62:ad:c5:dd:09:4d:51:2b:3b:db:a2:f0:4d:44:94:
6f:b0:34:5f:19:72:72:45:4e:c6:fb:d9:38:11:23:
35:3d:27:19:5c:3b:1b:7d:7b:79:09:db:d8:76:30:
d8:c1:71:9c:f3:f3:46:82:00:67:4b:67:60:ef:8c:
57:2c:37:5b:fd:bd:d0:75:24:2e:a6:98:eb:24:b2:
ef:8f:ce:d3:b8:20:e7:a1:e4:92:c1:fa:b6:b3:af:
6e:6a:36:43:8e:6d:93:1c:0c:4a:9a:1b:94:c7:db:
e2:aa:c9:6c:ed:98:7d:3f:ce:e0:01:0a:d8:5b:3d:
b7:98:21:0b:fc:66:82:46:a4:2b:87:83:8b:1d:63:
ef:54:8c:bc:f6:d1:3a:72:5e:02:82:fa:26:2c:7e:
2a:9e:0a:2c:b9:74:3d:f5:54:dd:9d:b5:29:e5:de:
7d:ad:4e:f7:ec:8b:27:d6:4c:a2:42:71:12:5d:3c:
cf:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:93:58:09:B6:18:BF:AC:B1:44:2A:A7:2D:A3:01:D2:57:7E:CE:EE
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/XZNYCbYYv6yxRCqnLaMB0ld-zu4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.119.128/25
Signature Algorithm: sha256WithRSAEncryption
b0:5f:9c:82:d8:00:76:9a:1f:76:56:34:bc:5e:be:85:ff:18:
e2:a5:3e:60:b0:a7:04:06:16:99:e7:2e:66:54:d6:a9:57:ee:
80:d6:81:ac:ab:0d:17:f6:80:eb:65:a7:33:0c:71:4c:d5:b5:
76:c1:7e:db:8c:df:ca:69:76:55:82:3d:ce:6e:5f:e6:46:a1:
fa:5f:28:fb:07:c6:64:2d:75:1a:aa:de:86:98:9f:2f:de:bf:
e6:b3:fa:e0:70:6b:eb:9f:02:46:59:b7:95:92:6b:8e:f3:bb:
31:ed:0b:cd:54:89:86:bc:9e:57:1f:b0:d6:9a:3e:7c:74:9c:
6e:47:a9:53:cb:e2:c2:d1:ca:25:54:82:9f:24:06:4c:e4:df:
e1:3d:93:0d:8f:b3:85:7e:4a:db:0a:84:ea:3c:84:71:ad:68:
dd:6c:61:56:76:58:40:9b:6c:8a:7e:21:36:81:62:e6:b7:3d:
e2:04:97:63:8c:2f:5c:42:2a:fc:2d:2e:d2:d8:79:e7:b2:9b:
45:c5:12:ca:ed:ca:2c:d6:5b:2f:54:41:b4:2c:3f:21:c9:93:
98:31:da:cb:c8:5e:0d:5f:03:6c:9c:a5:96:3c:65:0f:d9:6f:
58:a2:f4:1b:e5:20:63:df:f3:92:98:d1:00:ea:78:68:be:42:
74:d0:92:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:33 2024 by rpki-client on console-ams.rpki-client.org