Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/wEICmCHdLesAQE99Bq965k4Zn6c.roa
File: wEICmCHdLesAQE99Bq965k4Zn6c.roa (raw, json)
Hash identifier: EKs1UzF2pZetFHuqRJJAXxvQPzcwIy/GgQwOWwpY6Os=
Subject key identifier: C0:42:02:98:21:DD:2D:EB:00:40:4F:7D:06:AF:7A:E6:4E:19:9F:A7
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 159F
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/wEICmCHdLesAQE99Bq965k4Zn6c.roa
Signing time: Sun 07 Feb 2021 12:05:37 +0000
ROA not before: Sun 07 Feb 2021 12:05:37 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 211.76.118.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5535 (0x159f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:05:37 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C042029821DD2DEB00404F7D06AF7AE64E199FA7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:15:01:8a:d0:c2:60:4b:fb:3b:12:27:09:db:
40:b1:d2:f9:ab:68:34:b7:41:db:4f:8b:00:69:18:
68:a9:22:88:3f:d2:7f:eb:70:55:74:f9:0e:d7:d9:
80:d6:dc:b3:b1:ec:61:69:a1:25:7d:0b:a7:ce:92:
18:cd:c9:e0:ef:56:f0:8f:29:0b:ab:4c:3d:74:20:
1b:66:76:4b:75:0e:77:7c:22:ac:57:db:23:5a:c1:
4c:34:f5:71:a9:a5:1d:26:ee:e1:f2:b0:4c:8f:fa:
9b:ff:52:56:35:c8:13:35:f4:6e:f0:ed:93:3a:13:
84:65:ff:f8:a0:64:64:53:fb:d6:11:50:a1:f0:f3:
57:53:d8:df:15:23:80:c6:6c:00:90:94:c1:31:67:
5c:f6:77:71:ab:2d:92:29:61:9d:6b:91:1c:ba:7a:
61:8d:8f:ab:b4:6d:42:1a:5c:87:6d:d9:8b:c9:8b:
48:cf:d1:8d:b8:35:1f:6b:28:14:ef:11:97:df:fc:
5c:db:e2:4b:6b:dd:02:2c:74:0d:26:d5:f3:5c:e5:
06:2b:03:4b:8d:7c:d6:a3:c2:3f:c2:d5:3d:ec:73:
24:a7:26:c0:b2:a4:85:f0:a4:a4:4a:f2:05:c0:59:
95:47:c3:48:7b:1a:71:ec:d4:7f:2a:5a:ff:2d:ab:
2e:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:42:02:98:21:DD:2D:EB:00:40:4F:7D:06:AF:7A:E6:4E:19:9F:A7
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/wEICmCHdLesAQE99Bq965k4Zn6c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.118.0/24
Signature Algorithm: sha256WithRSAEncryption
11:4f:c5:8d:92:36:14:79:20:0b:46:50:f4:23:13:5b:7c:a6:
75:50:25:9e:8d:0e:a2:96:da:59:8d:97:79:46:95:7d:bd:fb:
13:cc:8d:0a:a2:61:b6:bd:b9:4f:2d:3d:bf:9d:b0:b7:bd:82:
3d:28:44:3e:59:c6:d1:f2:f1:25:10:b3:59:2b:7a:86:00:4e:
b9:fb:4a:08:16:fc:e4:d2:ea:2b:09:28:81:de:4b:b3:f0:d5:
90:84:d4:94:38:7f:ec:bc:02:96:20:96:2b:f3:6f:85:ba:62:
39:fc:5f:e4:71:c7:29:1f:45:df:e9:bd:b3:a2:96:cb:13:8a:
f1:dc:5b:8f:09:c0:df:b8:4d:fc:55:6a:c7:58:01:70:26:b5:
57:7b:7a:f5:93:47:1b:96:93:fc:0b:98:7c:12:60:b7:17:6d:
4a:c7:7b:7f:ed:40:b4:c9:8d:b1:e6:67:bc:72:3e:bc:8f:0f:
f8:80:55:4b:80:6f:05:9a:21:5e:55:d2:f4:73:63:e3:77:72:
75:2e:bb:5d:ed:28:c7:0b:23:32:1f:4f:1f:a6:9b:18:9a:3d:
5c:35:c6:8b:d0:30:5f:b5:eb:45:ab:ed:2a:35:f8:2e:d3:6e:
3e:b0:54:d7:d8:f8:5e:58:b5:17:23:54:27:48:e3:5b:72:44:
b2:7f:4f:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:31 2023 by rpki-client on console-ams.rpki-client.org