Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/aTvN3PwYJ2NMubcIYcBYUslrTNI.roa
File: aTvN3PwYJ2NMubcIYcBYUslrTNI.roa (raw, json)
Hash identifier: ZttlF2lX6BNUQiSwwc8R+7NSgxpdogEhZHcJX7vwVPY=
Subject key identifier: 69:3B:CD:DC:FC:18:27:63:4C:B9:B7:08:61:C0:58:52:C9:6B:4C:D2
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1D5C
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/aTvN3PwYJ2NMubcIYcBYUslrTNI.roa
Signing time: Wed 29 Sep 2021 02:48:54 +0000
ROA not before: Wed 29 Sep 2021 02:48:54 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9924
IP address blocks: 211.76.121.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7516 (0x1d5c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:48:54 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=693BCDDCFC1827634CB9B70861C05852C96B4CD2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:f1:6a:df:1e:1d:c2:39:41:6c:e2:24:22:28:
0c:06:5c:31:b0:08:27:41:fb:ab:6e:ac:5a:3a:a5:
cd:ef:26:77:43:b7:2a:6a:28:f4:fc:d4:46:0a:e2:
ad:a6:9d:64:12:99:7f:76:aa:12:50:36:e9:3d:0e:
40:6f:ae:4a:de:6b:28:4a:f0:3e:29:bd:ff:de:0d:
32:54:0e:04:51:de:9b:02:42:d2:9c:1b:6e:45:f0:
a6:f5:a1:91:6b:0a:49:7e:6d:64:85:ab:f6:f4:a9:
4c:19:1f:c0:55:0d:2c:32:ec:36:64:69:48:ba:e3:
fe:5d:54:f6:d8:b8:79:8c:a1:72:66:9c:b6:00:09:
1f:48:2f:ee:b5:4e:f0:c2:5d:c2:3a:59:39:e7:78:
9e:ee:a4:6e:ef:12:d4:20:65:2d:ed:a7:e9:2f:b8:
35:af:09:c0:07:ed:30:4c:2f:3e:38:6a:b2:50:8c:
e5:e7:a5:d1:e4:c6:8d:fb:2e:e7:b1:96:99:f1:1a:
22:f4:f5:18:76:cd:42:18:9e:4d:c1:67:ab:28:af:
2c:57:5f:8e:29:89:44:d0:1c:58:17:a0:c4:27:55:
5f:68:7d:f6:1e:d8:83:41:33:21:a4:94:11:56:15:
fc:40:8c:ae:be:07:1c:0e:98:93:4e:3d:8b:b9:be:
a9:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:3B:CD:DC:FC:18:27:63:4C:B9:B7:08:61:C0:58:52:C9:6B:4C:D2
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/aTvN3PwYJ2NMubcIYcBYUslrTNI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.121.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:da:50:36:bd:36:55:db:ec:5c:bc:2c:91:0c:01:d0:ea:2e:
f4:65:08:e4:00:7a:66:5b:63:47:a4:82:62:80:de:eb:2d:2a:
8c:f6:25:8f:17:25:33:7e:4d:23:97:6f:a2:d2:ca:c7:a8:27:
a9:83:8a:06:f3:56:d3:ba:6a:be:a5:b0:c9:a5:ed:e3:19:21:
5d:27:31:62:2b:f7:f7:34:de:e0:05:0c:1f:ba:1b:23:70:47:
bd:2b:82:03:3d:de:8c:34:7d:41:f9:01:c1:53:1c:96:ea:4b:
c0:9b:9b:bf:b5:35:34:8f:45:57:17:39:73:60:f6:a6:c0:30:
98:9e:84:f1:8a:f6:68:2c:83:d8:1b:47:54:13:47:2a:b3:68:
1a:c3:95:a0:ae:f4:4e:42:57:bb:07:84:94:6d:d4:d8:c4:8b:
4f:75:0f:c9:c8:d3:81:34:90:8f:8c:e1:0e:d0:54:94:76:c1:
46:94:2e:7c:70:12:af:66:a5:f6:66:2a:0b:47:f0:da:a4:61:
62:a3:d8:8f:ec:d3:d8:f7:5e:07:4e:08:27:1b:20:1c:2b:57:
08:d6:74:2b:99:3a:ff:f8:c1:48:7a:db:bb:6a:15:e9:38:67:
2b:8e:28:c1:e9:54:e0:0b:1c:0a:7a:e6:79:09:e2:33:3e:ec:
b7:1b:c1:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:35 2023 by rpki-client on console-fra.rpki-client.org