Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/dP0MjKzFVoeSb_u7QIaWBrO5Q8E.roa
File: dP0MjKzFVoeSb_u7QIaWBrO5Q8E.roa (raw, json)
Hash identifier: pavj+NZBZgNxP1YaWI+a2K6DLdRk+WijhCBkk8WvYGE=
Subject key identifier: 74:FD:0C:8C:AC:C5:56:87:92:6F:FB:BB:40:86:96:06:B3:B9:43:C1
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1C95
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/dP0MjKzFVoeSb_u7QIaWBrO5Q8E.roa
Signing time: Wed 29 Sep 2021 02:47:57 +0000
ROA not before: Wed 29 Sep 2021 02:47:57 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 211.76.123.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7317 (0x1c95)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:47:57 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=74FD0C8CACC55687926FFBBB40869606B3B943C1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:79:a0:0b:ce:12:fb:87:9d:c8:1e:d5:65:db:
4c:14:9e:31:81:35:63:5f:68:09:a1:e1:49:5d:de:
39:ae:d2:81:e9:a6:3a:22:ce:be:5f:05:6f:5f:c9:
12:f7:1e:3e:23:f4:bb:d3:d5:5c:83:c7:f8:a9:02:
77:93:63:16:48:2e:bc:e5:a5:02:41:b8:20:af:32:
7c:47:b0:f8:64:9f:42:d7:4d:e5:43:fc:a8:b3:71:
19:83:21:1d:56:c5:53:b3:c9:2b:d2:66:ce:d9:71:
5b:3a:bb:58:c4:38:7e:8e:ad:4e:ea:f3:12:f3:82:
b3:8f:30:4e:b0:7d:05:7b:2c:ac:31:0d:3d:9e:74:
96:83:80:36:24:a4:9f:68:3b:61:96:3e:f0:c4:71:
b4:c2:c0:78:95:1d:f9:3a:8f:c0:d0:ed:f5:af:8a:
de:cd:cd:b0:f1:54:75:d2:78:c9:ef:ac:0a:f4:0b:
fe:cd:8a:ee:de:e8:d7:78:62:f8:d9:4f:b8:1c:ad:
2a:bc:ec:da:ce:6d:d9:af:58:e5:fb:97:6d:96:2a:
6c:5b:c6:fe:49:67:a9:0a:47:c0:6e:a7:ff:c3:f5:
9b:7c:6d:e1:45:49:bb:47:c4:af:84:ef:c3:b3:92:
99:3d:6d:ce:89:6d:1a:74:f1:71:da:e1:43:42:46:
b6:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:FD:0C:8C:AC:C5:56:87:92:6F:FB:BB:40:86:96:06:B3:B9:43:C1
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/dP0MjKzFVoeSb_u7QIaWBrO5Q8E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.123.0/24
Signature Algorithm: sha256WithRSAEncryption
33:bd:e3:72:06:70:32:1b:66:98:9c:39:92:ed:ea:98:1a:38:
d1:5b:a8:91:72:7f:94:dd:9b:d4:a8:f7:bd:9f:82:7a:ac:73:
c7:3d:5e:af:3d:10:6c:1c:bd:82:af:ab:b4:20:92:b2:59:a7:
6d:9c:65:2d:62:9e:9a:36:ab:c2:dc:06:4c:11:9a:db:56:9a:
2f:a1:1c:88:fd:11:3c:4c:a3:2b:f7:4b:5b:e1:21:21:d8:8f:
1d:61:4b:12:11:4a:b8:30:39:43:f7:5c:d0:e5:0c:0d:38:f9:
32:75:48:8b:50:1f:49:96:6b:0a:43:9d:25:97:c2:ab:4d:09:
ac:23:28:81:98:ae:17:a7:a8:d3:c6:4f:fe:e0:0f:84:82:43:
44:01:c8:ab:29:9e:ba:53:80:3a:dd:7e:a9:19:0f:4c:f2:45:
7b:f7:17:f8:ea:b1:5a:18:07:bb:e4:73:e2:4c:0a:f6:bb:ce:
a5:0e:96:57:ee:70:e0:4a:68:70:54:b0:2c:b8:82:95:73:72:
bb:a9:cc:87:b1:ea:24:39:75:e5:5f:cb:41:2c:84:4c:fe:00:
16:ae:b8:7a:2c:d7:cd:66:ab:75:ae:8e:10:c0:99:e0:a1:57:
aa:fc:ce:0d:ff:93:a5:d3:f6:45:e1:e5:72:4c:d2:c1:6c:6e:
82:99:a8:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:24 2023 by rpki-client on console-ams.rpki-client.org