Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/crI758Gbp36FbY2YpVf8U25WtvM.roa
File: crI758Gbp36FbY2YpVf8U25WtvM.roa (raw, json)
Hash identifier: ysXtCUUBiU3IC4PpgcMgtcMm1a4IbIRSkcdA+72TXXw=
Subject key identifier: 72:B2:3B:E7:C1:9B:A7:7E:85:6D:8D:98:A5:57:FC:53:6E:56:B6:F3
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2302
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/crI758Gbp36FbY2YpVf8U25WtvM.roa
Signing time: Fri 25 Nov 2022 04:41:54 +0000
ROA not before: Fri 25 Nov 2022 04:41:54 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 211.76.119.0/25 maxlen: 25
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8962 (0x2302)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:41:54 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=72B23BE7C19BA77E856D8D98A557FC536E56B6F3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:37:5c:60:8b:20:22:c8:af:39:3b:26:90:8b:
74:70:16:29:b1:dd:ac:9c:9d:c4:2f:87:ff:3b:e0:
53:6f:2f:76:29:ea:93:5e:4f:ea:8b:19:93:41:92:
30:fe:51:a6:02:d1:70:80:20:89:31:f7:37:54:63:
96:c6:e0:4f:6f:9f:e9:6e:ea:03:83:60:f4:b4:01:
e2:f8:e7:30:26:a4:1a:2f:d7:35:0b:03:d3:59:ca:
f1:e9:42:c3:ab:35:3b:3e:21:2a:c9:ca:21:e2:6b:
14:55:62:58:27:58:fa:3a:ab:c5:c9:c8:84:d1:09:
cb:99:7c:5c:63:b4:a7:a1:c7:aa:3a:b4:34:2e:24:
04:da:c2:9e:2d:fe:49:cc:9a:61:f4:5d:1a:22:da:
c2:f7:5d:54:ac:a4:0b:b5:0c:1c:b3:e8:99:a0:d3:
1f:dc:19:31:be:46:86:e4:89:68:55:6f:28:44:8a:
84:c3:e6:83:b3:8c:c9:45:38:96:96:a9:4f:bb:50:
1f:92:82:93:ae:f8:53:dd:21:4d:62:8e:d0:ed:c4:
bb:97:4d:02:a3:19:7a:e1:f5:89:b8:23:8d:96:17:
72:21:4d:95:cb:d9:e1:21:61:78:01:c1:0c:29:aa:
9d:0c:09:0b:27:17:90:0c:87:63:3a:c1:ed:5c:82:
e6:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:B2:3B:E7:C1:9B:A7:7E:85:6D:8D:98:A5:57:FC:53:6E:56:B6:F3
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/crI758Gbp36FbY2YpVf8U25WtvM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.119.0/25
Signature Algorithm: sha256WithRSAEncryption
2d:1c:17:9c:b9:77:8b:4b:02:40:5a:4a:b0:1e:45:de:96:8c:
3d:a6:dd:ce:32:36:d9:78:5d:c4:8e:28:33:80:4e:b2:f1:9f:
39:d4:f0:9a:5b:24:05:26:27:1b:fe:0f:f1:d0:4a:26:54:e0:
d5:c3:d0:26:8e:ab:1f:8e:10:c8:bf:a1:3d:88:25:fd:76:9b:
c3:46:c6:97:0b:e2:79:35:63:8a:db:4a:4c:e5:3c:18:63:23:
7b:34:ea:79:ee:ae:5f:0c:06:ff:bd:38:68:a1:2a:75:ba:a0:
79:ca:02:c4:c3:dd:67:40:7e:0c:63:3d:48:d6:0e:10:b5:f4:
9a:fb:e3:68:dd:1b:41:a9:4b:4a:ee:59:e3:f5:3d:cc:28:cf:
34:b7:bd:ef:58:8c:d2:3b:67:20:fd:7e:f4:25:16:d6:3c:0b:
fa:69:62:e4:ac:5f:b6:bc:8f:31:a1:8c:80:23:3d:89:1d:9c:
a3:75:60:fa:76:0c:c6:93:12:70:55:48:b4:50:e7:f4:3b:b8:
38:d1:6e:6a:af:64:84:4c:ca:7f:6d:e6:f8:79:9c:9b:06:33:
88:4c:bb:92:22:83:60:c4:79:27:53:3e:07:b9:08:f2:fc:d0:
55:5d:8e:f4:58:5a:79:6f:e3:5d:56:be:08:b0:ba:bb:a2:11:
05:25:28:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:55 2024 by rpki-client on console-fra.rpki-client.org