Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lXrpo8JkXk-5XtCPTdtzLTjEjy0.roa
File: lXrpo8JkXk-5XtCPTdtzLTjEjy0.roa (raw, json)
Hash identifier: +/8DBcLH/v6KKe4VTCyRueai/qPjkG3iGylO8bmmimA=
Subject key identifier: 95:7A:E9:A3:C2:64:5E:4F:B9:5E:D0:8F:4D:DB:73:2D:38:C4:8F:2D
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1921
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lXrpo8JkXk-5XtCPTdtzLTjEjy0.roa
Signing time: Sun 07 Feb 2021 12:57:26 +0000
ROA not before: Sun 07 Feb 2021 12:57:26 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 211.76.119.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6433 (0x1921)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:57:26 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=957AE9A3C2645E4FB95ED08F4DDB732D38C48F2D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:60:7d:19:c5:1a:19:96:e4:ff:54:6f:84:e8:
c8:d6:19:ca:9f:86:f1:3f:4f:39:fa:19:2b:b7:4a:
72:70:ac:fb:ef:17:52:02:93:61:ab:ea:a9:df:1d:
86:28:fd:a6:54:0f:cb:04:8d:e1:be:5b:bf:bd:cb:
2b:fb:f1:a2:3d:7a:28:ba:cb:b1:c6:87:89:78:47:
92:ee:1d:8c:c3:e6:79:80:7a:a2:f7:ef:17:97:e9:
cb:6c:4e:88:c7:5d:df:75:cb:76:e9:e0:91:02:f5:
7a:d7:3c:b1:24:1e:69:41:9e:6a:bc:82:94:38:9f:
e7:97:b2:2f:19:3f:f1:85:31:3b:c7:0a:eb:e5:ff:
ce:1e:bf:eb:5b:c8:a2:5c:92:fe:16:86:53:4d:27:
5a:26:5b:02:e8:17:a1:69:dd:75:3e:a8:99:98:08:
e8:c6:83:8a:c8:ac:99:5b:91:56:8d:3b:c0:09:c3:
46:04:38:ee:8e:85:fd:d7:de:b6:10:0d:2f:39:24:
d8:0c:ae:aa:49:92:5c:43:11:8d:7e:4e:45:ee:cf:
f6:3f:16:b8:de:2a:af:af:52:08:40:24:e2:2d:df:
fc:7f:b0:9c:4c:f1:be:01:0c:e0:0d:ea:cb:f5:07:
fb:23:7d:96:97:93:be:ce:aa:e9:b8:0a:e1:75:30:
98:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:7A:E9:A3:C2:64:5E:4F:B9:5E:D0:8F:4D:DB:73:2D:38:C4:8F:2D
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lXrpo8JkXk-5XtCPTdtzLTjEjy0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.119.0/24
Signature Algorithm: sha256WithRSAEncryption
03:aa:05:c2:6c:33:39:45:22:26:fa:0c:69:59:e3:cf:e1:3d:
82:0c:b2:98:a9:f6:2a:d7:9e:0f:56:3f:51:bc:b9:ee:6c:55:
4b:b5:90:ee:fe:3c:e6:75:ab:54:2a:f6:ea:aa:a2:5e:47:09:
8d:2a:be:55:b3:82:d7:65:8a:a7:e1:ed:6c:cf:f4:f3:1a:32:
0f:a9:b0:e9:b3:a2:e9:8d:c8:ac:f9:fd:8d:8d:2a:5d:84:04:
57:fd:51:ca:41:53:43:d4:44:07:3a:f8:89:62:e0:0c:9b:50:
c1:3b:ac:72:ee:ec:c2:6a:8d:f5:cc:84:e2:29:76:04:eb:2e:
d1:1b:fa:5b:62:50:4a:07:e8:b8:21:69:7e:cd:c9:6f:99:48:
8e:9d:2f:85:ff:59:49:92:5d:eb:51:19:ec:12:a3:b2:21:be:
3b:e4:26:55:e8:50:dc:68:de:45:7c:93:20:38:84:c7:f4:ed:
1e:d6:71:b8:4b:f7:e5:95:d4:cc:fb:78:ed:4f:d1:44:f5:e0:
11:5c:d6:cc:d9:d4:b7:fd:b0:e3:61:5d:ba:7d:3c:8d:f6:66:
87:84:78:90:24:a1:44:69:57:7c:17:eb:c8:bf:d0:94:34:a0:
31:bf:5f:86:7e:0a:8a:ab:00:ea:92:bc:a1:32:10:17:6a:12:
29:b9:b2:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:27 2023 by rpki-client on console-ams.rpki-client.org