Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/oZAQjaxDsrnN_6MJESx-6jNzLs4.roa
File: oZAQjaxDsrnN_6MJESx-6jNzLs4.roa (raw, json)
Hash identifier: FAdRml0p15e1C/Sm/Yzi7T9d6oifKAJYgroNMrldwI0=
Subject key identifier: A1:90:10:8D:AC:43:B2:B9:CD:FF:A3:09:11:2C:7E:EA:33:73:2E:CE
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 21B0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/oZAQjaxDsrnN_6MJESx-6jNzLs4.roa
Signing time: Fri 25 Nov 2022 04:40:11 +0000
ROA not before: Fri 25 Nov 2022 04:40:11 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 211.76.118.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8624 (0x21b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:40:11 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A190108DAC43B2B9CDFFA309112C7EEA33732ECE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:75:e0:1f:70:74:45:9e:58:0a:b2:8d:ea:08:
63:42:91:6b:a4:55:48:df:b2:1d:6f:48:ae:18:02:
42:52:5f:46:2d:73:d3:c1:e0:ec:e4:8e:24:00:33:
71:37:81:01:2d:8f:69:7a:74:bd:32:e9:44:fb:f3:
3c:9f:93:87:f3:9d:9f:86:06:f6:ce:6c:a6:99:5a:
9f:2d:f4:2b:a8:fc:c3:fd:db:23:54:f8:fc:ff:9f:
9e:22:1d:89:1c:ac:0b:87:2c:f5:8c:d4:a7:3a:4f:
41:b4:ff:c2:03:cb:ea:2a:a5:cc:58:e3:96:a8:4b:
ac:89:a2:40:14:5e:e3:21:df:f1:da:c8:ec:d7:13:
b2:47:00:93:14:78:9a:e8:1b:9e:1a:76:3e:61:04:
89:57:b8:0f:41:ca:61:d4:f1:5f:ba:29:fa:3c:63:
63:a4:dc:b0:88:71:13:3c:c4:44:00:f3:52:df:c3:
06:59:4b:82:26:50:f4:5c:db:11:be:27:56:56:64:
c7:30:e4:be:cd:c7:4e:7d:ba:33:a0:d5:38:85:b2:
b2:a8:2e:d2:8d:e0:79:0b:25:a3:a4:5e:76:48:ed:
f7:f8:a4:f9:d4:fc:73:06:d9:ac:fb:65:2c:c8:1c:
78:c3:52:f8:dc:07:87:cd:4b:4d:a8:50:33:38:03:
7c:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:90:10:8D:AC:43:B2:B9:CD:FF:A3:09:11:2C:7E:EA:33:73:2E:CE
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/oZAQjaxDsrnN_6MJESx-6jNzLs4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.118.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:c1:a0:b1:9b:bf:c0:7a:2b:f4:38:1b:5e:1a:a1:b3:a8:5e:
78:57:21:e7:5a:21:ad:96:5f:34:2d:0b:e8:ab:08:ed:86:01:
54:77:fe:dc:b9:32:47:37:ec:21:71:de:dc:39:65:70:9a:5c:
69:98:92:c8:8f:30:3a:72:2a:5e:ab:20:47:ba:86:af:5c:f1:
ca:4c:6c:d2:e3:af:a9:70:3f:75:59:e0:32:3b:d1:e4:9f:d8:
e1:d9:c5:13:29:05:be:fe:91:dd:92:28:bb:33:73:a6:00:1d:
ac:0d:68:42:10:e7:dc:a2:3e:cf:af:35:52:c3:7a:74:1a:fe:
03:49:e1:88:3d:e9:22:96:0c:ec:0d:f9:7d:8e:8e:13:15:6a:
95:1f:64:da:12:17:04:8c:6e:17:38:2d:e9:71:f8:3c:40:c1:
05:17:2a:df:b5:ac:0b:a9:b3:89:69:07:db:7c:a9:cf:03:68:
36:a7:6c:09:27:e9:5d:d6:37:33:c3:23:5b:3a:7e:25:7a:a4:
3d:e0:19:60:5d:ba:54:9c:8f:43:dc:d3:9e:d7:bc:c3:9d:0e:
2e:17:ea:33:58:99:df:a7:c1:0d:cf:c6:b4:93:e6:ae:49:c8:
88:6f:8f:ea:c5:7a:07:86:64:dd:15:4d:ca:c8:34:3f:5f:3f:
4f:e9:db:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:40 2024 by rpki-client on console-ams.rpki-client.org