Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/kszgMjbraxEmgOKcLKIt36JjYag.roa
File: kszgMjbraxEmgOKcLKIt36JjYag.roa (raw, json)
Hash identifier: OGb8mqIvBj3DeSmPwnr9wsRdUCDqZdyBDgVcnm683Y4=
Subject key identifier: 92:CC:E0:32:36:EB:6B:11:26:80:E2:9C:2C:A2:2D:DF:A2:63:61:A8
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/kszgMjbraxEmgOKcLKIt36JjYag.roa
Signing time: Thu 15 Sep 2022 02:54:09 +0000
ROA not before: Thu 15 Sep 2022 02:54:09 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 211.76.112.0/20 maxlen: 25
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8098 (0x1fa2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:54:09 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=92CCE03236EB6B112680E29C2CA22DDFA26361A8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:d1:04:d9:16:99:30:e9:d1:0c:56:7f:e3:55:
64:d8:59:45:ec:ea:12:0f:69:74:91:a9:47:1a:54:
ac:cb:87:86:c1:c8:47:54:d7:ce:d9:6a:2c:ee:cd:
70:0b:75:f2:3e:b2:a1:7b:ef:df:35:6d:d7:44:14:
25:93:c3:6e:0c:2d:85:2f:16:a1:39:49:e5:dd:86:
4d:88:71:83:d4:10:b1:fe:7f:c8:d6:f8:4f:fa:fe:
00:7d:ba:33:b9:68:62:fc:c8:26:95:48:3d:51:2f:
63:4a:05:74:1f:d6:9b:d6:37:0d:77:5d:94:02:eb:
45:92:7c:ba:7b:f8:19:2a:0b:88:b6:06:23:a3:26:
0d:1f:91:c7:0e:7c:7c:68:73:27:ee:8e:c8:ce:c9:
11:ad:9f:93:32:eb:e4:ad:a0:a0:14:fc:28:94:e1:
05:51:54:17:01:1b:b8:83:4b:84:9e:d6:7a:90:5d:
ad:b6:10:84:77:10:98:fa:7d:d3:44:ad:70:d2:13:
49:47:b4:e3:cf:d8:2e:61:a1:16:06:1c:a2:ed:55:
81:a7:94:7c:c9:a5:db:16:64:25:a3:0b:b2:04:16:
cb:2b:80:2c:d0:69:0b:ea:d5:58:a3:b9:17:42:21:
ed:90:1c:dc:38:4f:c0:8d:39:da:0f:01:53:3e:26:
69:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:CC:E0:32:36:EB:6B:11:26:80:E2:9C:2C:A2:2D:DF:A2:63:61:A8
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/kszgMjbraxEmgOKcLKIt36JjYag.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.112.0/20
Signature Algorithm: sha256WithRSAEncryption
81:ad:7f:b3:ba:3d:1a:d4:0c:b7:6f:90:c7:59:fc:2c:ed:c8:
19:11:35:7f:dc:e6:a1:21:b8:20:f2:e7:1c:b9:05:91:d1:4e:
01:c9:fd:db:94:c2:78:74:6a:70:7b:01:b2:02:0e:67:24:61:
33:3a:a3:d3:ef:1f:b1:b1:a9:ab:b0:64:42:d7:30:b8:0b:92:
24:f1:01:34:ed:3e:45:d9:c4:ad:20:85:57:dc:f5:f9:d6:d2:
24:cb:34:a1:fe:71:20:da:73:0e:d6:6b:5c:c4:98:2e:4a:e6:
b3:a1:bc:1d:db:8f:5e:94:a9:6a:a2:f2:5c:66:3e:f0:97:f0:
84:29:42:eb:ec:50:2e:52:b8:0e:55:2f:36:ba:1e:aa:df:68:
d7:63:1a:ea:65:30:68:8c:3d:61:d3:42:31:48:9c:d2:56:a5:
06:26:32:2f:cf:5c:df:c2:84:d3:5c:17:91:12:da:80:84:64:
b2:53:f5:c6:01:c4:d0:6c:29:ff:f8:5b:ae:a7:31:e6:b2:16:
1e:25:81:81:34:bb:d6:c7:eb:1e:e0:1f:df:4d:26:4d:88:a9:
46:3f:5e:dd:75:53:e8:53:e4:7b:74:bf:4b:e0:da:98:bf:ca:
f3:32:91:38:ab:10:30:41:0e:85:e9:37:28:48:1c:43:61:31:
6d:32:83:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:38 2024 by rpki-client on console-ams.rpki-client.org