Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/sgeh5GmfG0fWr1ybkQqsD3r-fKc.roa
File: sgeh5GmfG0fWr1ybkQqsD3r-fKc.roa (raw, json)
Hash identifier: hlM6hOwghhAfstwv3DwYcZPdQicskdLbvd67OzoO4Bs=
Subject key identifier: B2:07:A1:E4:69:9F:1B:47:D6:AF:5C:9B:91:0A:AC:0F:7A:FE:7C:A7
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2077
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/sgeh5GmfG0fWr1ybkQqsD3r-fKc.roa
Signing time: Fri 25 Nov 2022 04:38:45 +0000
ROA not before: Fri 25 Nov 2022 04:38:45 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 211.76.114.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8311 (0x2077)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:38:45 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B207A1E4699F1B47D6AF5C9B910AAC0F7AFE7CA7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:eb:57:9d:67:58:a6:98:f0:56:b6:71:6f:5c:
26:16:10:b1:7a:a0:d8:d0:ca:d4:14:b6:f0:45:8b:
59:65:70:43:ed:fb:a3:e6:da:1e:54:38:e3:db:b6:
dd:c4:10:1b:00:da:c1:fa:47:68:67:54:66:9d:f3:
18:f1:c5:9e:52:0c:e9:a7:ca:ec:62:47:cc:50:5f:
88:19:1f:51:1c:3f:ce:64:d9:2c:14:de:55:62:95:
7f:6a:bc:3a:34:25:ad:17:72:6c:8d:4d:e8:d9:bc:
ac:98:da:16:90:77:9a:a6:1e:6e:ab:62:d9:04:0f:
a1:23:22:bb:43:62:04:04:ce:c7:6b:7e:be:a4:22:
3d:44:11:6f:97:c2:a4:b9:34:02:85:33:92:72:48:
33:ea:7b:be:af:3d:01:b6:02:a6:43:a8:ea:79:44:
69:1a:a0:6d:c2:57:d8:f8:90:5d:cf:ba:be:96:ff:
39:af:10:33:0c:dd:1f:f4:81:a0:8c:a4:e1:45:28:
77:19:36:21:ee:a6:f1:a9:7d:72:2a:08:af:59:2e:
57:c3:cb:90:c4:3e:d2:2f:27:c0:a7:f4:aa:61:a3:
f5:ed:65:39:9d:ac:77:80:64:7e:78:c2:4e:c4:ef:
5a:b9:1e:e9:b0:72:d6:30:bf:21:a4:2c:61:a0:5e:
66:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:07:A1:E4:69:9F:1B:47:D6:AF:5C:9B:91:0A:AC:0F:7A:FE:7C:A7
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/sgeh5GmfG0fWr1ybkQqsD3r-fKc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.114.0/24
Signature Algorithm: sha256WithRSAEncryption
55:a8:fb:5f:ce:f5:df:cc:df:86:53:da:05:b1:29:74:14:7c:
8f:4d:6d:5a:23:62:2c:97:e9:5b:49:cc:70:2a:e9:53:2b:b2:
24:1b:df:33:16:35:61:c6:5f:95:f8:c9:7d:f7:55:74:d6:07:
0a:b1:fd:df:3b:7c:e9:e0:ff:ce:08:12:f6:63:09:d6:38:02:
a0:50:cd:3e:30:0e:21:53:28:90:15:fa:8c:02:57:34:46:52:
06:08:55:cb:90:75:6b:48:18:d3:6e:2a:45:ed:88:92:57:5c:
07:6d:cc:29:a5:4a:a6:82:5e:9f:be:4a:d2:a0:d6:71:f8:18:
51:e2:56:77:f2:d7:fa:50:06:01:e9:99:5b:ff:bd:c3:36:34:
89:a7:b5:a6:39:46:8b:70:5f:72:e1:3c:da:15:0a:22:23:91:
9d:62:d3:09:a6:25:7f:8c:14:9b:ea:56:e0:3f:94:d7:e2:30:
c9:07:df:e0:cd:4b:85:b8:9f:be:b7:f6:07:c0:76:65:06:86:
cb:54:a8:f9:3d:53:6d:cb:dd:9b:02:e2:bf:6e:c1:6a:c1:a6:
12:ba:87:a9:85:d2:4a:a2:00:d0:49:d9:43:32:97:b9:ec:f0:
8b:48:98:60:bb:13:52:e5:1b:45:78:8f:01:18:cb:18:e2:aa:
0a:f8:e9:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:59 2024 by rpki-client on console-fra.rpki-client.org