Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/1K5SVSY-s5HBDFtSUeNd2fJoMHU.roa
File: 1K5SVSY-s5HBDFtSUeNd2fJoMHU.roa (raw, json)
Hash identifier: JzBjQ99mFyYynah+2vz/vwA+Fw2qFOkVJ6bUQXGjSuY=
Subject key identifier: D4:AE:52:55:26:3E:B3:91:C1:0C:5B:52:51:E3:5D:D9:F2:68:30:75
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 10B4
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/1K5SVSY-s5HBDFtSUeNd2fJoMHU.roa
Signing time: Wed 25 Nov 2020 04:20:08 +0000
ROA not before: Wed 25 Nov 2020 04:20:08 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 118.232.248.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4276 (0x10b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:20:08 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D4AE5255263EB391C10C5B5251E35DD9F2683075
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:fb:89:2a:bc:46:cd:3d:b0:d0:18:16:1f:d6:
e3:57:9e:50:70:48:ac:01:c6:69:69:0f:5f:1c:4a:
e5:66:b1:81:09:c4:f8:3c:bd:57:d1:17:fc:02:e1:
2a:6b:c9:6b:81:8d:21:ff:98:0b:5b:4d:80:20:58:
b4:0e:ad:32:0b:9a:7f:36:2c:ff:b1:da:90:5a:63:
73:8e:cb:df:43:a5:9b:cf:66:da:e6:25:3f:6b:f0:
3a:03:01:3a:47:2f:e3:0a:1b:9d:66:06:c4:ca:80:
d5:2a:f3:fb:9a:cc:47:20:66:7a:03:1f:1c:cc:c6:
34:69:22:71:ab:1f:6d:ff:8f:05:a4:bf:4a:2b:d0:
66:5e:13:ac:ef:bf:1a:b5:23:cc:d7:d3:23:91:75:
22:8e:fb:c8:e3:c5:4c:de:bf:1f:c3:db:9c:a1:07:
cd:b8:fc:8d:5b:47:6f:a8:9d:b8:ad:9c:ce:91:fa:
53:e5:f0:35:58:e5:3c:78:b9:14:5a:b9:33:e8:e3:
e0:6d:ba:57:6c:e3:53:7b:b1:71:8c:76:e5:fe:30:
26:dc:3e:85:37:13:d9:2e:2d:ca:da:9c:47:ac:85:
fd:bf:97:a7:d7:30:9b:3a:a7:67:66:6d:d7:7e:8e:
7c:bc:38:e5:75:de:50:c2:57:19:01:2f:54:b3:1f:
13:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:AE:52:55:26:3E:B3:91:C1:0C:5B:52:51:E3:5D:D9:F2:68:30:75
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/1K5SVSY-s5HBDFtSUeNd2fJoMHU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.248.0/22
Signature Algorithm: sha256WithRSAEncryption
b5:15:ea:2f:8b:26:6c:db:65:43:d0:d3:80:b2:69:c7:fa:8c:
19:49:7b:82:05:13:dc:84:e0:21:f5:47:fa:ed:43:e5:4a:b6:
f2:7b:ab:ea:27:5a:c2:69:bc:74:6a:5b:cc:3c:29:e0:e3:1a:
4f:13:76:da:85:7d:d7:da:d5:0f:3d:49:da:af:47:13:47:01:
af:dd:49:a9:07:e0:9a:e5:cd:a1:5e:8b:27:90:7b:72:dc:3c:
5b:a6:e5:9f:a5:f4:40:9d:31:2a:13:32:66:44:da:33:10:74:
67:8b:75:36:dd:49:e7:b9:7d:cb:e9:81:9e:9c:d2:4f:fe:2b:
27:a9:08:89:05:6b:bf:97:6d:c2:12:76:d0:20:98:22:28:7c:
b7:f1:00:a4:ef:5d:63:9c:3a:8b:47:70:ef:a3:8d:15:cd:93:
5d:c9:04:e7:9e:b4:8f:45:45:c1:60:26:4d:ad:28:88:0a:58:
a4:eb:69:bd:fa:8f:43:3b:71:12:82:bf:4b:ec:e7:ab:ff:61:
21:7d:c6:30:84:a5:86:02:4e:9d:28:d7:ae:2e:6a:5f:d4:83:
05:20:51:37:aa:d3:8e:af:8c:0b:db:f8:33:dc:33:27:df:29:
c8:f8:35:d5:bc:ac:8e:a4:a0:aa:47:aa:f4:28:6e:68:f2:8b:
b6:bc:46:4e
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICELQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMDExMjUw
NDIwMDhaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEQ0QUU1MjU1MjYzRUIz
OTFDMTBDNUI1MjUxRTM1REQ5RjI2ODMwNzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDb+4kqvEbNPbDQGBYf1uNXnlBwSKwBxmlpD18cSuVmsYEJxPg8
vVfRF/wC4SpryWuBjSH/mAtbTYAgWLQOrTILmn82LP+x2pBaY3OOy99DpZvPZtrm
JT9r8DoDATpHL+MKG51mBsTKgNUq8/uazEcgZnoDHxzMxjRpInGrH23/jwWkv0or
0GZeE6zvvxq1I8zX0yORdSKO+8jjxUzevx/D25yhB824/I1bR2+onbitnM6R+lPl
8DVY5Tx4uRRauTPo4+Btulds41N7sXGMduX+MCbcPoU3E9kuLcranEeshf2/l6fX
MJs6p2dmbdd+jny8OOV13lDCVxkBL1SzHxM1AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQU1K5SVSY+s5HBDFtSUeNd2fJoMHUwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzFLNVNWU1ktczVIQkRGdFNV
ZU5kMmZKb01IVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2
6PgwDQYJKoZIhvcNAQELBQADggEBALUV6i+LJmzbZUPQ04Cyacf6jBlJe4IFE9yE
4CH1R/rtQ+VKtvJ7q+onWsJpvHRqW8w8KeDjGk8TdtqFfdfa1Q89SdqvRxNHAa/d
SakH4JrlzaFeiyeQe3LcPFum5Z+l9ECdMSoTMmZE2jMQdGeLdTbdSee5fcvpgZ6c
0k/+KyepCIkFa7+XbcISdtAgmCIofLfxAKTvXWOcOotHcO+jjRXNk13JBOeetI9F
RcFgJk2tKIgKWKTrab36j0M7cRKCv0vs56v/YSF9xjCEpYYCTp0o164ual/UgwUg
UTeq046vjAvb+DPcMyffKcj4NdW8rI6koKpHqvQobmjyi7a8Rk4=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:46 2024 by rpki-client on console-fra.rpki-client.org