Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/aYAP4mErs5eCgifVXJfHU3IJ5q8.roa
File: aYAP4mErs5eCgifVXJfHU3IJ5q8.roa (raw, json)
Hash identifier: sYZyV+4KE9B99ZwmOIqWaKr9oRVkXJOJ2A254yIUy2Y=
Subject key identifier: 69:80:0F:E2:61:2B:B3:97:82:82:27:D5:5C:97:C7:53:72:09:E6:AF
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1C46
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/aYAP4mErs5eCgifVXJfHU3IJ5q8.roa
Signing time: Wed 29 Sep 2021 02:47:33 +0000
ROA not before: Wed 29 Sep 2021 02:47:33 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 211.76.121.128/25 maxlen: 25
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7238 (0x1c46)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:47:33 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=69800FE2612BB397828227D55C97C7537209E6AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:62:61:f6:63:8b:a4:c7:73:d3:4f:36:e1:83:
4d:bd:23:4f:bf:07:d1:f9:ee:4a:4e:8b:97:90:42:
74:87:f9:6f:7e:82:ca:28:4a:42:a9:68:7f:da:f6:
44:f7:13:15:8e:62:0f:00:a4:76:13:8a:df:f4:9f:
d9:73:82:f2:f6:fd:10:a1:a7:e4:23:54:74:66:ee:
bf:aa:fc:88:d2:50:74:13:48:19:a9:31:e3:5e:27:
19:37:ac:7d:ec:55:ad:23:9d:9f:48:19:7d:2b:c0:
4c:75:0f:85:a1:3b:81:e1:55:0c:67:37:ae:8c:c9:
8a:67:cc:1b:ca:3d:05:0d:c0:05:62:e5:21:8d:da:
7d:67:e0:89:af:c3:5d:b9:88:7f:e7:3f:34:5d:61:
a0:70:5c:63:79:8c:6a:20:61:3e:52:b8:69:12:7d:
ce:cb:9e:ec:ae:f9:7f:22:91:e7:68:ea:5d:8c:94:
bd:8a:8e:5c:b1:cc:b2:08:98:ca:a9:b3:76:30:2b:
0d:3f:d6:f5:8b:f6:72:23:4d:a7:c4:09:56:f8:9b:
19:1e:45:e0:33:97:1f:94:17:ef:23:7c:64:74:08:
fb:b2:b9:d5:42:c8:0d:24:67:90:17:c4:71:a3:7a:
a9:37:a4:a2:3d:91:b9:7b:63:d5:eb:03:b9:27:e5:
44:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:80:0F:E2:61:2B:B3:97:82:82:27:D5:5C:97:C7:53:72:09:E6:AF
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/aYAP4mErs5eCgifVXJfHU3IJ5q8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.121.128/25
Signature Algorithm: sha256WithRSAEncryption
a6:6b:41:08:3c:1d:93:fd:f9:f7:94:8b:33:4c:d6:24:21:0b:
07:42:13:3c:98:fc:2e:3a:52:b3:51:80:4a:10:b4:8e:a0:19:
ba:6c:ea:fc:df:20:bd:37:3d:f1:32:20:a2:cd:e0:e3:08:bb:
08:4c:77:70:ef:f2:ee:a8:db:7a:2e:8d:55:5c:30:59:5e:0f:
9a:59:2d:16:b8:12:3b:01:34:05:c7:8f:c0:2e:46:bc:fa:e7:
54:af:91:ac:db:cd:63:05:f4:a2:51:13:c4:c8:ae:93:c6:9d:
72:58:8a:d4:77:f5:90:48:fb:bf:0d:58:14:77:ec:2f:c2:84:
6b:b0:70:d9:3a:36:38:43:fe:a5:ae:6b:dc:ff:c9:f4:6c:50:
2c:43:04:ec:04:cb:18:e1:38:e0:f5:2d:70:8a:51:a2:26:73:
63:03:b4:d0:46:8b:96:70:77:72:8c:08:4a:85:d1:86:a5:eb:
1d:fa:5c:bf:2e:39:54:e2:e4:3b:86:a2:8a:f0:4c:80:96:dd:
6a:82:1b:67:87:72:19:a4:f7:a1:1d:17:5e:b0:a5:71:80:ce:
47:26:9e:93:2c:4b:fe:61:cc:d7:06:89:86:66:b5:c3:8c:ff:
bf:52:86:c7:aa:ef:29:0b:b8:13:1c:4d:e2:d1:d8:96:dd:79:
63:bb:da:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:55 2024 by rpki-client on console-fra.rpki-client.org