Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/08QktzG99LaQMq_3ejadBZFq5Lc.roa
File: 08QktzG99LaQMq_3ejadBZFq5Lc.roa (raw, json)
Hash identifier: sQbeU2Hve2kbZ/GrWb8eELjv4NQ7aAkZSBuPe319G8o=
Subject key identifier: D3:C4:24:B7:31:BD:F4:B6:90:32:AF:F7:7A:36:9D:05:91:6A:E4:B7
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 21FB
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/08QktzG99LaQMq_3ejadBZFq5Lc.roa
Signing time: Fri 25 Nov 2022 04:40:38 +0000
ROA not before: Fri 25 Nov 2022 04:40:38 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.195.149.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8699 (0x21fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:40:38 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D3C424B731BDF4B69032AFF77A369D05916AE4B7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:6a:b5:c3:c1:c9:36:56:a7:11:1b:3d:53:96:
6b:d7:5f:cc:0e:fc:cd:a3:6d:f3:d8:c2:73:f5:26:
15:8d:50:d6:cc:86:18:06:cf:68:b7:a5:e9:0b:be:
db:0a:92:e3:fb:13:f5:58:8b:37:34:04:e7:ec:9e:
74:cc:f9:91:6e:6b:9a:87:84:f2:e6:b1:81:21:7c:
79:95:f4:2b:12:70:68:24:4f:b6:ec:c5:4a:60:65:
e5:27:a9:20:6a:da:de:a1:a0:50:c4:48:78:9e:31:
8b:35:d1:53:7e:33:aa:4b:7c:20:86:aa:75:88:73:
73:42:68:c0:5a:14:90:7e:74:3d:3c:49:d6:ad:6a:
00:77:6d:21:6e:e4:8f:19:02:06:bb:52:ad:1c:83:
bb:63:e5:cd:05:b5:47:2d:e6:06:11:b3:22:9e:2e:
e3:c3:b1:71:9f:0d:07:15:b9:ed:f3:6b:5c:7f:f3:
e8:a0:e2:8d:a7:97:82:a6:83:f2:c5:d7:73:19:f7:
ce:50:ce:06:29:d1:ee:1a:65:8e:ae:7b:5b:21:59:
41:09:ba:9a:63:6b:34:65:f7:4c:5e:1e:01:59:c1:
af:22:30:b0:33:d2:c2:50:d1:37:13:a3:34:25:2b:
f9:c4:ed:ed:0f:e8:7a:7c:84:4d:6d:20:7e:ea:bc:
de:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:C4:24:B7:31:BD:F4:B6:90:32:AF:F7:7A:36:9D:05:91:6A:E4:B7
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/08QktzG99LaQMq_3ejadBZFq5Lc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.149.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:00:70:4b:c9:89:8a:05:e0:73:00:48:d8:df:78:80:81:02:
44:d1:ac:9d:e5:24:13:9f:0c:b2:dc:00:af:34:2e:29:66:7c:
b5:fd:a8:22:99:14:23:8c:88:09:13:48:d5:7a:48:ae:be:85:
a2:2b:02:1a:98:73:ef:ed:99:c0:0d:19:b6:66:7b:74:ea:75:
9c:cd:56:18:8c:8a:42:7c:df:ee:ea:f0:cc:f8:fd:9d:7e:ed:
ce:be:90:0f:a5:ee:ae:a9:9f:52:e9:5c:b0:68:2e:35:2a:3b:
74:da:3e:aa:92:90:2a:19:49:10:7b:9f:58:3f:e8:00:52:70:
b6:c7:03:42:7b:73:e8:5d:7a:33:94:7c:5e:d6:e4:a8:74:8c:
1d:f4:bd:ca:14:60:f3:b2:78:74:37:6c:fd:32:1b:6a:7c:25:
c0:34:6b:05:06:7a:51:38:89:67:ff:d4:e7:24:90:a0:f5:06:
d9:1b:fb:61:68:bf:15:ca:1c:44:a1:9f:ec:02:22:8f:72:c2:
eb:e3:8b:10:e3:6d:f6:64:90:1e:0e:07:95:f1:a2:e6:8f:c9:
2a:ea:67:81:f8:c7:dc:6d:83:6e:70:55:b6:83:93:9f:ae:20:
6c:40:2d:d2:a8:e1:73:af:d3:e6:56:cc:33:e1:2d:7e:62:16:
c0:f3:22:59
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICIfswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMjExMjUw
NDQwMzhaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEQzQzQyNEI3MzFCREY0
QjY5MDMyQUZGNzdBMzY5RDA1OTE2QUU0QjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDfarXDwck2VqcRGz1TlmvXX8wO/M2jbfPYwnP1JhWNUNbMhhgG
z2i3pekLvtsKkuP7E/VYizc0BOfsnnTM+ZFua5qHhPLmsYEhfHmV9CsScGgkT7bs
xUpgZeUnqSBq2t6hoFDESHieMYs10VN+M6pLfCCGqnWIc3NCaMBaFJB+dD08Sdat
agB3bSFu5I8ZAga7Uq0cg7tj5c0FtUct5gYRsyKeLuPDsXGfDQcVue3za1x/8+ig
4o2nl4Kmg/LF13MZ985QzgYp0e4aZY6ue1shWUEJuppjazRl90xeHgFZwa8iMLAz
0sJQ0TcTozQlK/nE7e0P6Hp8hE1tIH7qvN5bAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQU08QktzG99LaQMq/3ejadBZFq5LcwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzA4UWt0ekc5OUxhUU1xXzNl
amFkQlpGcTVMYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB7
w5UwDQYJKoZIhvcNAQELBQADggEBALEAcEvJiYoF4HMASNjfeICBAkTRrJ3lJBOf
DLLcAK80LilmfLX9qCKZFCOMiAkTSNV6SK6+haIrAhqYc+/tmcANGbZme3TqdZzN
VhiMikJ83+7q8Mz4/Z1+7c6+kA+l7q6pn1LpXLBoLjUqO3TaPqqSkCoZSRB7n1g/
6ABScLbHA0J7c+hdejOUfF7W5Kh0jB30vcoUYPOyeHQ3bP0yG2p8JcA0awUGelE4
iWf/1OckkKD1Btkb+2FovxXKHEShn+wCIo9ywuvjixDjbfZkkB4OB5XxouaPySrq
Z4H4x9xtg25wVbaDk5+uIGxALdKo4XOv0+ZWzDPhLX5iFsDzIlk=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:22 2024 by rpki-client on console-ams.rpki-client.org