Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/08HHsklR3oxlysRLdxG4kCJl520.roa
File: 08HHsklR3oxlysRLdxG4kCJl520.roa (raw, json)
Hash identifier: /9n4cyWFnX4czgnkasff/XiawIEOfJbimfGSCIW6g58=
Subject key identifier: D3:C1:C7:B2:49:51:DE:8C:65:CA:C4:4B:77:11:B8:90:22:65:E7:6D
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 17AB
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/08HHsklR3oxlysRLdxG4kCJl520.roa
Signing time: Sun 07 Feb 2021 12:22:36 +0000
ROA not before: Sun 07 Feb 2021 12:22:36 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 118.232.116.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6059 (0x17ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:22:36 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D3C1C7B24951DE8C65CAC44B7711B8902265E76D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:4a:3e:4d:d3:a3:5e:81:c1:f9:0c:f0:b6:39:
d9:6d:b3:d8:74:58:3f:54:b9:62:e8:86:36:92:51:
3f:b4:14:db:96:05:f7:c9:66:58:83:fb:fb:e2:7b:
91:14:8a:b5:2b:4a:37:07:2c:b0:23:17:d8:5d:0d:
8e:7f:e1:6c:30:40:b6:40:4b:57:c5:74:f3:0e:1d:
cf:56:4e:ee:ce:97:f4:73:6c:58:d2:27:97:55:61:
be:e9:53:1b:03:f4:65:c8:5b:69:a0:ec:8f:57:c7:
48:55:4b:a5:f7:37:a0:fa:88:34:37:ea:9d:2e:b6:
43:d3:cb:d6:87:15:1e:6b:cc:57:36:97:72:e3:46:
82:b7:c6:f9:2c:9f:d2:bd:99:dc:fd:cf:d0:16:33:
44:5f:cc:ae:cb:8a:30:89:cd:1c:cd:fa:23:33:53:
08:42:09:4b:31:fb:8d:17:10:53:c0:74:40:fa:7d:
1f:3e:ef:dc:73:15:c3:5f:b9:70:70:f7:8d:85:78:
81:c4:d0:45:48:29:3c:9b:bc:b9:e4:79:21:a8:92:
4e:a1:02:0e:ab:7b:e9:33:1c:b0:00:54:32:2c:06:
c5:9d:6e:be:8f:d6:38:1f:8c:7e:ab:26:d7:cf:a5:
0a:9e:58:00:6b:99:8b:13:c4:54:f9:8d:dd:56:28:
ff:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:C1:C7:B2:49:51:DE:8C:65:CA:C4:4B:77:11:B8:90:22:65:E7:6D
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/08HHsklR3oxlysRLdxG4kCJl520.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.116.0/22
Signature Algorithm: sha256WithRSAEncryption
81:99:2e:63:51:86:45:a1:70:ca:c5:f7:81:09:de:7f:20:2f:
35:75:d2:35:66:80:71:30:12:25:5d:6e:d0:17:55:cf:f0:9b:
17:bd:49:58:ee:e4:43:05:04:b0:e9:84:8b:91:10:4c:b5:ee:
68:0c:e7:81:7f:3f:7f:22:8a:4d:7e:48:45:d4:4c:0a:e7:5a:
17:e4:8f:ea:f4:86:78:31:b3:2b:7e:a2:cd:a5:f0:5c:fa:71:
47:2f:f5:6f:27:2a:91:2f:4c:ea:ef:f7:46:7c:45:e8:1d:ce:
50:a9:29:41:af:61:af:fe:e3:75:02:86:de:57:85:80:6b:53:
f6:72:98:83:ee:26:57:12:54:6d:16:6f:01:9e:d9:8a:0d:25:
28:f2:1a:de:16:cf:43:63:41:76:db:56:ae:62:a0:e4:40:a5:
be:d8:ec:d3:7c:50:4c:54:85:24:33:5f:96:3d:09:48:51:7f:
d4:3b:79:c5:37:10:98:66:e2:ac:92:fb:9e:0c:32:2e:bf:e1:
6e:db:d3:b6:96:9f:af:f5:6b:8c:2a:75:56:9a:4c:56:6c:c6:
69:15:85:ab:d2:54:09:aa:69:2b:16:10:26:a2:0c:f0:50:28:
6d:75:24:33:a8:21:a5:70:15:33:9e:21:38:fd:ba:3a:39:73:
57:f4:12:8c
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICF6swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMTAyMDcx
MjIyMzZaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEQzQzFDN0IyNDk1MURF
OEM2NUNBQzQ0Qjc3MTFCODkwMjI2NUU3NkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC2Sj5N06NegcH5DPC2Odlts9h0WD9UuWLohjaSUT+0FNuWBffJ
ZliD+/vie5EUirUrSjcHLLAjF9hdDY5/4WwwQLZAS1fFdPMOHc9WTu7Ol/RzbFjS
J5dVYb7pUxsD9GXIW2mg7I9Xx0hVS6X3N6D6iDQ36p0utkPTy9aHFR5rzFc2l3Lj
RoK3xvksn9K9mdz9z9AWM0RfzK7LijCJzRzN+iMzUwhCCUsx+40XEFPAdED6fR8+
79xzFcNfuXBw942FeIHE0EVIKTybvLnkeSGokk6hAg6re+kzHLAAVDIsBsWdbr6P
1jgfjH6rJtfPpQqeWABrmYsTxFT5jd1WKP85AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQU08HHsklR3oxlysRLdxG4kCJl520wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzA4SEhza2xSM294bHlzUkxk
eEc0a0NKbDUyMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2
6HQwDQYJKoZIhvcNAQELBQADggEBAIGZLmNRhkWhcMrF94EJ3n8gLzV10jVmgHEw
EiVdbtAXVc/wmxe9SVju5EMFBLDphIuREEy17mgM54F/P38iik1+SEXUTArnWhfk
j+r0hngxsyt+os2l8Fz6cUcv9W8nKpEvTOrv90Z8RegdzlCpKUGvYa/+43UCht5X
hYBrU/ZymIPuJlcSVG0WbwGe2YoNJSjyGt4Wz0NjQXbbVq5ioORApb7Y7NN8UExU
hSQzX5Y9CUhRf9Q7ecU3EJhm4qyS+54MMi6/4W7b07aWn6/1a4wqdVaaTFZsxmkV
havSVAmqaSsWECaiDPBQKG11JDOoIaVwFTOeITj9ujo5c1f0Eow=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:19 2023 by rpki-client on console-fra.rpki-client.org