Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/-IOTFMx2Qoaqozht2ZQoyqeY_zs.roa
File: -IOTFMx2Qoaqozht2ZQoyqeY_zs.roa (raw, json)
Hash identifier: rbqO4SE0J1Gban3T9dq3ZzTX+uEPw9W2kYc5WMdbWWM=
Subject key identifier: F8:83:93:14:CC:76:42:86:AA:A3:38:6D:D9:94:28:CA:A7:98:FF:3B
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 16C3
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/-IOTFMx2Qoaqozht2ZQoyqeY_zs.roa
Signing time: Sun 07 Feb 2021 12:14:11 +0000
ROA not before: Sun 07 Feb 2021 12:14:11 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 211.76.119.0/25 maxlen: 25
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5827 (0x16c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:14:11 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F8839314CC764286AAA3386DD99428CAA798FF3B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:d8:7b:b5:cd:40:47:1b:a6:f1:83:8d:8e:44:
77:df:82:67:68:8b:ab:dc:01:f9:6d:57:22:4c:0c:
48:2c:7f:8d:20:37:63:07:c5:c5:24:07:2b:6a:f1:
d7:e8:09:5e:03:80:1a:f7:28:4c:8d:ad:7b:ff:0e:
5e:71:a8:1a:cd:dd:68:35:03:5b:1c:5d:e5:fd:20:
8b:43:4b:2f:4a:cb:db:7a:f1:31:6a:9d:9b:56:38:
bb:4c:10:a1:e2:b0:66:aa:52:b4:5e:e3:be:5c:31:
a1:dc:28:7d:d2:8d:c2:06:92:8c:6c:5f:99:59:f4:
1a:80:07:ab:4c:ff:2d:84:33:0f:a8:65:08:79:e0:
f2:3e:d3:6d:fb:e4:21:24:38:d7:7b:ee:c3:f3:45:
df:14:18:82:55:1c:ed:31:36:a6:7c:f6:6f:ac:d1:
c6:71:bc:34:a3:23:cd:d5:55:91:e1:53:e0:4f:76:
09:85:55:87:39:78:3a:59:e3:24:db:c3:79:2e:88:
7e:1e:1e:35:cd:c4:3f:58:45:8d:52:c4:6b:21:9d:
fb:6c:74:12:44:fa:e6:66:51:50:92:cf:e4:f1:39:
cc:99:e6:4c:b8:64:bc:b2:53:b2:1c:4f:07:ab:61:
c4:3f:eb:b0:7a:88:98:d1:31:b7:5d:c2:57:64:bb:
09:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:83:93:14:CC:76:42:86:AA:A3:38:6D:D9:94:28:CA:A7:98:FF:3B
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/-IOTFMx2Qoaqozht2ZQoyqeY_zs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.119.0/25
Signature Algorithm: sha256WithRSAEncryption
98:1e:b6:d2:a6:5b:29:7d:94:53:1c:90:91:02:f3:90:93:9d:
7c:79:b6:1e:94:d8:9c:8f:78:dc:c4:87:86:1a:e9:c6:f8:44:
8f:04:ab:e6:2c:58:3b:e8:5f:43:05:05:a3:6b:9a:7d:2c:1c:
2d:b4:e0:fa:31:cf:a0:96:ee:52:7e:17:48:67:51:a0:b1:32:
97:89:ac:ce:25:62:6a:11:74:a5:37:db:be:50:28:c3:18:99:
4b:31:42:6d:13:4a:a8:8b:87:c7:4c:da:4c:f0:1e:21:e6:59:
c1:0b:17:d1:88:bb:26:10:83:35:c6:4e:fe:89:89:f2:ff:e8:
b7:a6:90:9c:34:08:b0:af:32:c4:7d:77:91:20:c5:02:b4:9d:
87:50:ac:da:e5:6c:af:18:8c:1b:c0:44:c7:71:c5:37:37:78:
59:3b:89:a6:c0:56:f2:73:7e:c9:4e:a9:7c:12:b9:10:4a:fd:
b2:33:f2:ea:a4:16:73:66:de:0d:e9:5e:e3:e1:58:77:48:02:
7e:36:d8:cb:91:01:a8:96:30:71:7c:23:14:14:db:70:81:ce:
4a:04:7a:6a:4a:91:54:83:b4:94:81:20:5b:bc:d9:9b:c8:c4:
23:81:e2:f8:34:52:2c:2a:77:48:f1:54:d3:57:f8:f3:ec:20:
f3:ba:79:92
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgICFsMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMTAyMDcx
MjE0MTFaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEY4ODM5MzE0Q0M3NjQy
ODZBQUEzMzg2REQ5OTQyOENBQTc5OEZGM0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDM2Hu1zUBHG6bxg42ORHffgmdoi6vcAfltVyJMDEgsf40gN2MH
xcUkBytq8dfoCV4DgBr3KEyNrXv/Dl5xqBrN3Wg1A1scXeX9IItDSy9Ky9t68TFq
nZtWOLtMEKHisGaqUrRe475cMaHcKH3SjcIGkoxsX5lZ9BqAB6tM/y2EMw+oZQh5
4PI+02375CEkONd77sPzRd8UGIJVHO0xNqZ89m+s0cZxvDSjI83VVZHhU+BPdgmF
VYc5eDpZ4yTbw3kuiH4eHjXNxD9YRY1SxGshnftsdBJE+uZmUVCSz+TxOcyZ5ky4
ZLyyU7IcTwerYcQ/67B6iJjRMbddwldkuwnXAgMBAAGjggHvMIIB6zAdBgNVHQ4E
FgQU+IOTFMx2Qoaqozht2ZQoyqeY/zswHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLy1JT1RGTXgyUW9hcW96aHQy
WlFveXFlWV96cy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgABMAcDBQfT
THcAMA0GCSqGSIb3DQEBCwUAA4IBAQCYHrbSplspfZRTHJCRAvOQk518ebYelNic
j3jcxIeGGunG+ESPBKvmLFg76F9DBQWja5p9LBwttOD6Mc+glu5SfhdIZ1GgsTKX
iazOJWJqEXSlN9u+UCjDGJlLMUJtE0qoi4fHTNpM8B4h5lnBCxfRiLsmEIM1xk7+
iYny/+i3ppCcNAiwrzLEfXeRIMUCtJ2HUKza5WyvGIwbwETHccU3N3hZO4mmwFby
c37JTql8ErkQSv2yM/LqpBZzZt4N6V7j4Vh3SAJ+NtjLkQGoljBxfCMUFNtwgc5K
BHpqSpFUg7SUgSBbvNmbyMQjgeL4NFIsKndI8VTTV/jz7CDzunmS
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:07 2023 by rpki-client on console-ams.rpki-client.org