Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/kX1rFzaTgr-OAo7jCMxUcuJ_PGE.roa
File: kX1rFzaTgr-OAo7jCMxUcuJ_PGE.roa (raw, json)
Hash identifier: czpOCQVpd3to/cMOUVXQR7HtR400fPKjdT8XabdiDB4=
Subject key identifier: 91:7D:6B:17:36:93:82:BF:8E:02:8E:E3:08:CC:54:72:E2:7F:3C:61
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 179B
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/kX1rFzaTgr-OAo7jCMxUcuJ_PGE.roa
Signing time: Sun 07 Feb 2021 12:20:39 +0000
ROA not before: Sun 07 Feb 2021 12:20:39 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 211.76.122.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6043 (0x179b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:20:39 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=917D6B17369382BF8E028EE308CC5472E27F3C61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:14:cb:ff:c4:b6:df:3f:25:38:41:62:9f:6e:
5c:6c:7b:96:b3:52:0f:bd:7a:18:c1:34:93:97:4f:
b0:bf:ab:d8:65:38:99:18:64:a7:17:f3:f6:25:d3:
db:fb:be:dc:a8:db:89:a8:9c:fb:d8:5f:38:59:a7:
6e:1e:18:a3:f6:2a:e4:d9:90:21:32:e9:9c:fc:28:
e6:68:68:8b:e1:71:28:98:48:a3:d8:7a:9d:9b:ed:
56:21:75:09:63:fa:b9:81:c5:b5:6c:7b:5e:bf:44:
20:8a:6b:05:b1:70:86:7c:9f:f4:2b:7f:ea:84:e1:
96:ae:22:32:d8:74:e7:b4:0b:8f:26:f4:01:fb:82:
94:43:4b:89:b1:32:d4:38:93:92:79:29:f3:fe:d7:
bf:94:7d:a6:9d:41:55:a2:c8:6b:28:2f:08:cc:d2:
a7:4d:c1:8b:91:7d:28:f4:4b:4b:0e:4a:04:9f:f4:
e0:c2:46:ae:e4:24:44:d8:ba:86:b9:78:af:b8:7d:
51:3b:75:d2:00:d5:f6:a4:b7:8d:bf:1d:9a:7d:06:
18:ba:46:5a:a9:59:9b:45:33:b8:03:40:e3:7f:49:
bb:52:ca:6f:ac:61:64:fc:34:a4:f9:d4:9e:d0:9c:
9b:c8:84:04:f5:ca:9d:e7:50:d7:4f:3a:61:ad:fc:
20:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:7D:6B:17:36:93:82:BF:8E:02:8E:E3:08:CC:54:72:E2:7F:3C:61
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/kX1rFzaTgr-OAo7jCMxUcuJ_PGE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.122.0/24
Signature Algorithm: sha256WithRSAEncryption
56:55:b3:88:8b:91:63:07:9d:88:13:bc:03:b2:bf:4a:d2:6a:
77:7d:52:42:8f:c7:8c:73:1b:5e:78:c9:42:d3:7e:61:3e:05:
ec:a7:02:f8:1d:33:e9:76:f4:80:3c:3b:02:10:ec:90:7a:6e:
e2:58:17:b4:07:2c:83:31:14:78:df:4f:05:5f:10:1a:eb:39:
e8:b5:ad:9d:b3:3b:20:9c:fe:68:38:25:a0:6f:e2:06:8b:9d:
6d:e1:13:1a:52:a4:d9:d1:bb:43:f2:9c:a9:c2:ac:c5:da:a0:
cc:6b:85:60:29:3c:34:7f:65:ac:2c:c7:83:19:cf:28:fd:24:
aa:55:f4:21:05:2b:37:29:61:7a:c8:96:d6:3b:df:2a:57:83:
24:02:c1:19:e9:48:d7:e4:c9:83:df:25:60:d4:fd:ec:e7:e9:
e4:5f:84:4e:08:1d:ad:3c:1a:22:94:c7:62:e9:f0:22:db:88:
6b:4d:1f:75:ca:7c:fb:fc:54:1c:14:21:9f:89:50:57:70:f0:
65:20:d8:1f:0e:7c:6e:ad:df:c4:65:d4:8b:87:de:8d:6e:92:
c6:9d:7f:cf:96:ec:05:67:7a:a0:92:a3:9f:40:aa:0d:37:33:
1f:d0:ee:60:46:fb:90:43:32:68:c7:4f:90:49:53:f9:ad:75:
8b:ff:63:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:38 2024 by rpki-client on console-ams.rpki-client.org