Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/-oviFK-9742skTksKyVkhBBc5wY.roa
File: -oviFK-9742skTksKyVkhBBc5wY.roa (raw, json)
Hash identifier: NJi8y/uWFH26HeGTMW75KR1+X+kkpdAphyJ2lluLxtE=
Subject key identifier: FA:8B:E2:14:AF:BD:EF:8D:AC:91:39:2C:2B:25:64:84:10:5C:E7:06
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/-oviFK-9742skTksKyVkhBBc5wY.roa
Signing time: Thu 15 Sep 2022 02:54:11 +0000
ROA not before: Thu 15 Sep 2022 02:54:11 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 180.176.0.0/20 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8098 (0x1fa2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:54:11 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=FA8BE214AFBDEF8DAC91392C2B256484105CE706
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:bd:ba:4d:bf:c0:52:4f:a9:49:9c:f7:55:9f:
55:55:1a:cb:59:f4:6a:29:89:91:07:7a:f2:02:43:
b0:47:ed:27:9d:05:ac:89:62:5a:fe:91:ad:5e:90:
9d:9a:23:77:41:63:c0:df:bd:d7:31:88:ff:c3:84:
22:24:8f:42:c2:62:db:93:43:d1:27:31:43:3c:75:
3c:2d:6d:5e:de:6f:6f:2e:45:f6:d8:fb:48:14:d7:
82:90:18:1d:a1:56:06:4c:7d:c3:8c:1e:84:ae:64:
1e:0c:fb:c3:16:11:ac:ef:bb:c8:6b:74:70:b9:b8:
88:24:2b:09:0e:02:6d:c4:5c:e6:72:80:71:d6:62:
88:14:a0:48:9f:b6:c8:6f:ce:67:43:ac:a6:17:07:
df:5c:cc:c8:d1:69:e4:b8:aa:e9:38:99:77:d0:aa:
dd:04:60:ca:e4:88:3b:25:f0:3d:3d:e0:3a:bd:00:
5f:47:bb:c4:96:fa:87:d3:8f:b8:76:12:db:20:a7:
b9:6a:6e:8a:df:1d:81:bc:66:d0:23:8a:00:57:09:
40:4e:3a:b8:fe:91:1b:5a:7e:d7:75:4e:0a:8a:68:
c2:d8:8c:ed:fa:07:62:e3:84:77:ef:09:77:94:94:
c1:a5:3f:bb:c1:c4:8f:27:64:5b:60:d3:02:b5:f9:
84:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:8B:E2:14:AF:BD:EF:8D:AC:91:39:2C:2B:25:64:84:10:5C:E7:06
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/-oviFK-9742skTksKyVkhBBc5wY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.176.0.0/20
Signature Algorithm: sha256WithRSAEncryption
a8:9e:13:21:c8:c7:22:b0:1d:8d:53:db:c6:0f:6d:e4:e5:8e:
78:22:6d:aa:92:60:2d:64:06:16:fc:54:fb:b9:e3:13:5a:0a:
31:39:6b:22:8f:6c:d8:f5:ef:cd:07:1e:a3:c3:ac:c3:36:fa:
24:99:6c:44:4a:4c:c8:43:ff:d4:5a:cc:c7:ca:ce:29:cf:b1:
0d:74:f5:29:0e:fc:75:3a:7b:52:25:3d:9d:13:8b:e5:b2:b9:
19:9f:1f:21:18:63:cb:a1:0f:71:4e:30:44:15:17:8f:a9:ac:
e4:66:b9:c5:5f:00:a3:85:9c:a1:08:5a:05:59:97:0b:9e:f6:
58:d2:d7:95:bf:7c:92:0e:32:13:c6:ca:7d:48:f3:2f:6a:a3:
d4:71:06:de:25:1f:df:e6:b6:28:d1:74:95:ee:7b:ee:fc:95:
8d:ec:17:61:6d:45:f2:85:4a:3c:48:df:7d:fa:5b:c3:5a:e6:
49:b3:23:4b:17:f0:65:69:10:a1:f3:1b:3b:c3:57:aa:95:0e:
c2:a4:8a:61:06:15:16:e6:c5:b4:ad:56:64:35:ee:76:fe:37:
a4:86:8d:6e:e2:54:a9:14:66:e3:69:78:42:e4:21:24:31:1c:
44:e4:a2:ae:60:c4:a5:25:c3:4c:55:96:24:39:19:02:52:af:
c2:75:5a:9e
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICH6IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMjA5MTUw
MjU0MTFaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEZBOEJFMjE0QUZCREVG
OERBQzkxMzkyQzJCMjU2NDg0MTA1Q0U3MDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDWvbpNv8BST6lJnPdVn1VVGstZ9GopiZEHevICQ7BH7SedBayJ
Ylr+ka1ekJ2aI3dBY8DfvdcxiP/DhCIkj0LCYtuTQ9EnMUM8dTwtbV7eb28uRfbY
+0gU14KQGB2hVgZMfcOMHoSuZB4M+8MWEazvu8hrdHC5uIgkKwkOAm3EXOZygHHW
YogUoEiftshvzmdDrKYXB99czMjRaeS4quk4mXfQqt0EYMrkiDsl8D094Dq9AF9H
u8SW+ofTj7h2Etsgp7lqborfHYG8ZtAjigBXCUBOOrj+kRtaftd1TgqKaMLYjO36
B2LjhHfvCXeUlMGlP7vBxI8nZFtg0wK1+YT5AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQU+oviFK+9742skTksKyVkhBBc5wYwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLy1vdmlGSy05NzQyc2tUa3NL
eVZraEJCYzV3WS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAS0
sAAwDQYJKoZIhvcNAQELBQADggEBAKieEyHIxyKwHY1T28YPbeTljngibaqSYC1k
Bhb8VPu54xNaCjE5ayKPbNj1780HHqPDrMM2+iSZbERKTMhD/9RazMfKzinPsQ10
9SkO/HU6e1IlPZ0Ti+WyuRmfHyEYY8uhD3FOMEQVF4+prORmucVfAKOFnKEIWgVZ
lwue9ljS15W/fJIOMhPGyn1I8y9qo9RxBt4lH9/mtijRdJXue+78lY3sF2FtRfKF
SjxI3336W8Na5kmzI0sX8GVpEKHzGzvDV6qVDsKkimEGFRbmxbStVmQ17nb+N6SG
jW7iVKkUZuNpeELkISQxHETkoq5gxKUlw0xVliQ5GQJSr8J1Wp4=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:46 2024 by rpki-client on console-fra.rpki-client.org