Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lmgDIQTEJMr5aW_r9ZQfvc5SfRo.roa
File: lmgDIQTEJMr5aW_r9ZQfvc5SfRo.roa (raw, json)
Hash identifier: Xa4YKC1rBJ6GK5l/6oc0mtnlNY0pgwHvSXsvyo+tYKY=
Subject key identifier: 96:68:03:21:04:C4:24:CA:F9:69:6F:EB:F5:94:1F:BD:CE:52:7D:1A
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1553
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lmgDIQTEJMr5aW_r9ZQfvc5SfRo.roa
Signing time: Sun 07 Feb 2021 12:04:01 +0000
ROA not before: Sun 07 Feb 2021 12:04:01 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 211.76.113.0/25 maxlen: 25
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5459 (0x1553)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:04:01 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9668032104C424CAF9696FEBF5941FBDCE527D1A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:fb:fb:e2:9a:df:93:17:7f:7c:10:73:3b:2b:
59:29:02:af:ae:59:86:a4:af:aa:98:02:00:f6:18:
85:75:90:6e:bc:05:a7:a6:2d:b4:d5:10:4c:75:4c:
c5:71:4b:32:07:33:57:f7:7e:f1:ed:9c:95:e7:d8:
ec:2f:96:19:4e:2f:5b:c3:08:8d:a6:ce:46:5c:b8:
e2:15:ac:dc:6b:12:e4:80:6b:52:fe:32:dd:f3:71:
65:a8:58:73:2f:c6:18:82:3c:b5:ce:9b:92:fd:8a:
89:36:e9:bf:df:d5:7b:4f:ac:71:e8:74:47:0d:f1:
01:8c:36:98:d5:50:3e:4e:82:0b:76:19:34:af:3d:
92:4b:73:75:0a:4b:71:cb:53:e8:06:ff:35:ce:11:
bd:79:98:38:e9:63:b2:af:8e:f7:67:31:f7:ef:22:
83:01:5e:a4:bd:fe:87:ca:5c:60:96:d2:f1:75:e8:
ab:18:83:39:6a:1a:74:08:84:33:86:c2:0d:43:3f:
d0:27:00:c6:8c:ed:1b:3f:5a:03:9b:ad:ea:66:10:
01:5d:10:24:0e:9b:91:51:9e:4f:2e:06:d5:e9:fc:
df:8f:f6:ce:93:17:9f:04:be:ec:af:a8:bc:57:bc:
b9:6a:1d:33:f9:cb:1f:cf:9f:3c:34:ac:d9:5b:f7:
8e:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:68:03:21:04:C4:24:CA:F9:69:6F:EB:F5:94:1F:BD:CE:52:7D:1A
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lmgDIQTEJMr5aW_r9ZQfvc5SfRo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.113.0/25
Signature Algorithm: sha256WithRSAEncryption
a2:4c:7f:e7:4f:69:8b:62:33:1c:c7:b9:6a:8d:94:c1:c2:b0:
78:3b:d1:74:ca:82:25:6c:0d:8a:c2:15:98:d8:21:3a:fa:b2:
a3:eb:fd:3f:d2:14:11:be:af:dd:b8:5e:3d:e5:6c:06:ad:f1:
65:24:ec:01:d6:c9:d0:57:03:58:5a:b6:0a:44:21:3c:0c:a9:
a5:0c:d5:4d:0d:aa:d0:7e:e3:5d:8f:68:62:a4:ef:b0:40:d8:
51:36:51:f6:42:4e:01:62:e6:95:4b:26:5f:d8:9d:69:ab:49:
cd:a1:0c:5b:84:c0:c5:73:55:7d:11:c1:72:f5:d5:a7:c9:16:
64:cf:12:34:5c:fb:16:08:8c:0c:67:b2:0e:a8:96:5b:7c:75:
a3:75:30:9d:f0:7d:bf:ec:78:d2:e9:08:9a:22:1b:00:82:46:
9a:4a:d8:fe:b4:64:ee:d4:37:57:bb:23:3c:63:b8:d2:10:72:
d3:8f:47:52:6b:3c:62:c9:5d:56:8b:a5:71:1a:dd:b0:3b:e7:
00:06:22:97:ca:9b:53:1f:e6:07:4c:dd:67:a5:d8:a3:95:ac:
bb:78:d2:28:9b:38:01:99:27:94:2e:49:53:d2:fe:8c:1a:d3:
4a:51:60:c0:04:ad:f8:77:6c:c3:a8:71:68:e6:71:10:47:a9:
bd:32:2a:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:57 2024 by rpki-client on console-fra.rpki-client.org