Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/cBwKKL5_KDAVEn0_dNKp-nPzGLs.roa
File: cBwKKL5_KDAVEn0_dNKp-nPzGLs.roa (raw, json)
Hash identifier: sXAxhfwCy795EfRwbG7QtZbMRi8zg7MnOpomeUwy00c=
Subject key identifier: 70:1C:0A:28:BE:7F:28:30:15:12:7D:3F:74:D2:A9:FA:73:F3:18:BB
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/cBwKKL5_KDAVEn0_dNKp-nPzGLs.roa
Signing time: Thu 15 Sep 2022 02:54:07 +0000
ROA not before: Thu 15 Sep 2022 02:54:07 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 211.76.120.0/25 maxlen: 25
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8098 (0x1fa2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:54:07 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=701C0A28BE7F283015127D3F74D2A9FA73F318BB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:63:44:51:10:1f:bf:85:a3:fa:c1:fc:36:05:
26:b1:cb:1a:95:27:bf:93:da:41:9a:4e:13:eb:4b:
82:97:69:57:67:c0:d4:7c:36:6c:1b:a1:f3:84:b0:
15:e0:49:a0:fb:1e:32:4b:b7:65:20:23:c7:55:cf:
1f:d8:9d:d5:a1:58:b9:d1:3b:93:a3:4e:97:ec:68:
f9:61:f1:a1:96:c0:d6:1f:26:ae:1a:eb:8f:36:a2:
38:1b:90:96:ac:a9:ab:9b:87:9e:4e:ce:7b:4f:ee:
fb:5d:fc:27:63:c5:3e:4d:47:9d:f4:5d:b8:ea:a0:
68:26:32:96:62:0c:93:b3:07:dd:2f:e7:c9:1c:b0:
fc:78:6e:d6:02:2a:6c:99:1a:06:7b:24:35:b9:e7:
69:aa:bb:9d:c5:0f:3a:c2:15:20:e8:ad:89:a8:14:
9c:97:99:96:6f:6f:4c:95:68:7c:25:7a:b8:2c:68:
e8:52:80:34:af:2e:06:3f:9f:19:a1:aa:05:7c:90:
20:44:2f:6b:c3:a9:ca:a6:61:41:e2:d3:41:41:79:
2c:95:c5:b1:a4:03:62:fd:96:ce:e4:cd:d2:4f:78:
86:91:ac:19:1f:34:8f:09:1a:47:30:68:62:f9:ba:
8d:af:b1:a5:e0:d7:0b:3c:26:a1:c1:1a:f5:79:9d:
e6:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:1C:0A:28:BE:7F:28:30:15:12:7D:3F:74:D2:A9:FA:73:F3:18:BB
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/cBwKKL5_KDAVEn0_dNKp-nPzGLs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.120.0/25
Signature Algorithm: sha256WithRSAEncryption
0a:a8:76:d0:bf:4e:24:ad:de:ed:57:98:ec:43:b9:e6:b8:51:
cc:68:e1:36:b2:fa:42:16:16:34:a1:33:3f:4d:f9:74:b5:fe:
f3:63:24:1d:53:52:8e:b9:c1:54:a1:8d:1c:1c:36:93:b8:8e:
82:45:2b:2c:15:39:73:a4:14:41:e2:c7:13:6f:97:b8:5e:9e:
ad:3b:c9:1f:c6:57:97:dc:7d:75:4c:39:f3:fa:ea:f9:d4:2a:
1b:c8:9a:b3:e8:23:89:f5:ef:8c:43:e8:8a:34:eb:17:7b:81:
42:8a:7f:16:11:a8:48:f7:ce:63:aa:ae:01:f8:37:0c:c8:36:
90:3c:8d:48:3f:70:f3:49:3e:8c:18:9a:46:50:91:e5:05:0b:
7f:18:08:24:de:93:84:3b:b7:a9:e7:df:e8:ae:a4:2d:82:16:
c6:cc:ff:ce:13:a3:65:96:06:fb:f1:03:2d:a1:f9:f8:71:c3:
c3:83:d9:50:c5:40:1e:be:be:37:d2:06:5c:49:28:70:9e:4d:
40:d0:ed:1b:45:a0:ce:2d:26:1f:8c:7e:7a:64:bd:b8:78:89:
8b:95:53:c1:9b:1f:43:7f:a6:4f:c6:d9:f4:b7:fb:a0:96:8f:
de:7d:2c:2f:b2:22:67:2a:5f:6b:ce:04:3f:da:65:98:4d:22:
20:5f:7c:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:35 2024 by rpki-client on console-ams.rpki-client.org