Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/0HBJreBogFeXP1LQOrpv30Db5ps.roa
File: 0HBJreBogFeXP1LQOrpv30Db5ps.roa (raw, json)
Hash identifier: pdbuUmRimS0QqbqrwIcUM3EQGp7zUbk0tTffHSyQOY4=
Subject key identifier: D0:70:49:AD:E0:68:80:57:97:3F:52:D0:3A:BA:6F:DF:40:DB:E6:9B
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 161F
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/0HBJreBogFeXP1LQOrpv30Db5ps.roa
Signing time: Sun 07 Feb 2021 12:08:28 +0000
ROA not before: Sun 07 Feb 2021 12:08:28 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 123.195.9.64/26 maxlen: 26
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5663 (0x161f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:08:28 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D07049ADE0688057973F52D03ABA6FDF40DBE69B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:93:64:f0:25:f8:74:74:73:9d:e3:36:a5:d0:
cf:1c:ba:25:c0:2e:30:0a:8f:3e:2b:f6:04:de:af:
67:0d:d1:70:2a:66:c0:eb:57:4a:52:10:0c:76:25:
d4:81:71:58:4b:9b:53:69:d9:01:48:16:95:13:6e:
10:79:1c:48:da:d9:d8:8d:4c:f9:ba:d0:3a:51:b6:
4c:f8:a3:ca:4f:a2:7a:f8:b0:9e:26:19:7e:9b:d6:
e5:69:24:92:22:4f:f1:ae:98:f9:a5:77:c7:c9:73:
58:6f:06:d3:38:88:d5:27:a6:5d:8b:4d:64:f8:8e:
90:9d:e0:a8:aa:fe:54:57:9e:a2:e7:fa:f9:3c:d8:
9e:03:8c:ad:c8:25:ef:76:20:30:31:e1:5c:c8:f7:
3e:2d:ee:c1:51:5a:90:0a:80:86:50:23:4c:df:8c:
e9:94:ad:3a:b5:6b:b7:00:a0:84:cd:fb:8a:2e:02:
52:61:e5:b7:b9:18:62:2a:3a:59:14:33:84:c2:0e:
02:fb:8d:e4:dd:fa:97:8c:e0:57:19:a4:7a:6e:15:
cd:01:65:94:3b:41:99:2d:f9:1f:30:d2:be:eb:43:
cc:a6:8b:67:5f:3f:ef:5d:d0:a2:2d:96:5c:09:31:
73:db:ee:ff:52:5e:ee:5e:06:b0:27:1f:b3:b5:8f:
e2:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:70:49:AD:E0:68:80:57:97:3F:52:D0:3A:BA:6F:DF:40:DB:E6:9B
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/0HBJreBogFeXP1LQOrpv30Db5ps.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.9.64/26
Signature Algorithm: sha256WithRSAEncryption
14:c8:13:41:a9:d4:c9:1f:57:e0:90:a7:02:6d:c3:62:17:99:
87:01:e3:dc:ce:40:32:40:7e:e8:f4:64:04:3f:78:2a:f2:78:
83:3c:9a:a2:4e:6b:c2:92:ea:35:26:ab:ce:14:d4:d1:ce:e4:
d4:b2:31:6c:3e:49:8d:3d:07:44:32:76:b9:80:01:4c:6a:f0:
8e:c1:b6:f5:f3:56:0b:26:a5:78:2c:ba:3e:bf:42:7a:02:89:
69:95:04:aa:6f:22:e2:73:0b:7c:d5:f0:6b:e6:cc:b5:13:54:
58:74:24:f7:b7:d0:4a:72:de:4c:1c:02:24:81:89:8b:04:74:
30:36:d8:04:d1:03:47:27:57:e5:c6:36:3a:c4:d2:36:d9:bb:
7a:b7:d8:a5:a4:dd:87:d9:84:00:e5:80:ec:b2:bc:82:e6:28:
07:6c:bd:61:4c:75:5c:f4:e6:58:83:ba:ba:3c:ea:82:92:a7:
53:c2:2e:f3:69:98:3d:48:55:61:b0:16:2a:b4:c6:7c:65:a0:
dc:0b:43:da:9a:e2:10:72:7b:63:b3:73:f0:41:27:45:5a:51:
a8:4e:2e:0d:29:e0:70:cc:f6:d7:48:a4:d3:dc:b1:44:62:f9:
ad:8e:78:b6:d4:f3:ff:69:02:dc:8d:34:14:a6:1b:d9:1e:74:
d7:50:44:a7
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgICFh8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMTAyMDcx
MjA4MjhaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEQwNzA0OUFERTA2ODgw
NTc5NzNGNTJEMDNBQkE2RkRGNDBEQkU2OUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCzk2TwJfh0dHOd4zal0M8cuiXALjAKjz4r9gTer2cN0XAqZsDr
V0pSEAx2JdSBcVhLm1Np2QFIFpUTbhB5HEja2diNTPm60DpRtkz4o8pPonr4sJ4m
GX6b1uVpJJIiT/GumPmld8fJc1hvBtM4iNUnpl2LTWT4jpCd4Kiq/lRXnqLn+vk8
2J4DjK3IJe92IDAx4VzI9z4t7sFRWpAKgIZQI0zfjOmUrTq1a7cAoITN+4ouAlJh
5be5GGIqOlkUM4TCDgL7jeTd+peM4FcZpHpuFc0BZZQ7QZkt+R8w0r7rQ8ymi2df
P+9d0KItllwJMXPb7v9SXu5eBrAnH7O1j+L1AgMBAAGjggHvMIIB6zAdBgNVHQ4E
FgQU0HBJreBogFeXP1LQOrpv30Db5pswHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzBIQkpyZUJvZ0ZlWFAxTFFP
cnB2MzBEYjVwcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgABMAcDBQZ7
wwlAMA0GCSqGSIb3DQEBCwUAA4IBAQAUyBNBqdTJH1fgkKcCbcNiF5mHAePczkAy
QH7o9GQEP3gq8niDPJqiTmvCkuo1JqvOFNTRzuTUsjFsPkmNPQdEMna5gAFMavCO
wbb181YLJqV4LLo+v0J6AolplQSqbyLicwt81fBr5sy1E1RYdCT3t9BKct5MHAIk
gYmLBHQwNtgE0QNHJ1flxjY6xNI22bt6t9ilpN2H2YQA5YDssryC5igHbL1hTHVc
9OZYg7q6POqCkqdTwi7zaZg9SFVhsBYqtMZ8ZaDcC0PamuIQcntjs3PwQSdFWlGo
Ti4NKeBwzPbXSKTT3LFEYvmtjni21PP/aQLcjTQUphvZHnTXUESn
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:22 2024 by rpki-client on console-ams.rpki-client.org