Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/1f4o3-Wc-J1EmiVn0vnuZtf3Tyg.roa
File: 1f4o3-Wc-J1EmiVn0vnuZtf3Tyg.roa (raw, json)
Hash identifier: idugIzo4QZQplBSMG/bWLMW1FDd2TNr9RlK68/wpgo0=
Subject key identifier: D5:FE:28:DF:E5:9C:F8:9D:44:9A:25:67:D2:F9:EE:66:D7:F7:4F:28
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1BF8
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/1f4o3-Wc-J1EmiVn0vnuZtf3Tyg.roa
Signing time: Wed 29 Sep 2021 02:47:13 +0000
ROA not before: Wed 29 Sep 2021 02:47:13 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 180.177.168.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7160 (0x1bf8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:47:13 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D5FE28DFE59CF89D449A2567D2F9EE66D7F74F28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:d2:8f:23:0d:a8:0d:88:d8:37:ce:d5:bb:70:
30:a7:2d:8a:1e:45:be:55:50:73:68:10:e0:61:a6:
b4:66:94:4e:a2:ca:da:07:58:1f:38:ab:69:cf:4d:
41:f4:4a:af:66:1c:fb:d4:d6:4e:c6:c0:c6:54:b1:
56:22:87:71:22:c9:3a:e8:83:90:3c:76:a8:b3:3f:
98:6a:03:eb:0b:b5:3d:0f:ef:5a:8e:fc:21:84:b9:
50:92:4c:d7:ad:6d:22:04:e9:bd:71:c0:9b:e8:7d:
f8:2d:f1:a2:46:46:ef:f3:74:6d:91:06:bc:c2:64:
32:5f:ed:6e:a6:c5:c9:06:89:d3:7e:64:d8:f9:e0:
ad:41:a0:dd:47:0e:5e:65:44:0a:b4:8f:cc:61:bc:
ce:00:d6:bc:c2:c2:9c:3a:5f:c4:6a:7d:eb:de:2b:
ae:e6:85:7d:a2:00:e5:b0:a5:6f:2e:ba:f2:b5:30:
31:76:52:21:06:57:4d:5b:a7:e0:92:e3:48:46:d7:
82:4b:b3:f7:10:32:76:6c:45:79:c0:a5:ea:2d:b6:
2a:d1:38:b6:3c:6f:ca:93:b6:d0:e7:33:60:97:2b:
47:e3:30:9a:06:33:e0:2c:a9:e9:57:7f:78:d9:cd:
f1:74:63:9c:7b:b0:bd:cb:50:6b:75:2a:e1:1f:90:
f3:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:FE:28:DF:E5:9C:F8:9D:44:9A:25:67:D2:F9:EE:66:D7:F7:4F:28
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/1f4o3-Wc-J1EmiVn0vnuZtf3Tyg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.177.168.0/22
Signature Algorithm: sha256WithRSAEncryption
07:7e:7e:e8:84:c9:83:dd:16:12:04:9b:c0:29:6e:e6:d2:0e:
02:62:4f:58:8a:eb:ce:df:56:77:51:4e:87:10:85:bb:ac:c9:
8e:44:5c:2e:98:b7:6e:cf:13:13:3f:5e:73:f9:4a:07:a4:cf:
7c:0b:37:5c:3b:1e:9f:c2:27:fb:c3:85:7d:84:d6:68:9f:25:
01:58:f8:1a:a6:ed:cf:e0:c2:18:7e:37:96:6d:35:4a:e2:f7:
4c:9a:37:d9:e4:4c:15:c9:72:f3:18:d1:80:67:b1:53:f2:58:
19:1d:3b:b9:21:e6:e6:6c:42:7b:98:01:09:2b:c9:7d:18:63:
c9:56:42:ca:67:d1:23:ff:ba:97:49:e7:fa:a4:b0:bd:01:73:
b0:db:26:f6:89:d0:7d:09:d3:83:79:ef:db:5a:1a:db:91:73:
1e:d7:c3:43:d7:6a:13:4f:01:37:c1:53:e6:50:b0:10:6d:21:
77:0e:f3:1b:e7:72:25:b1:45:63:0b:ff:75:5f:c5:61:e1:51:
2e:47:59:40:60:3a:da:d4:38:f8:08:73:46:77:48:10:a4:d5:
2c:f1:41:ae:b5:a7:78:f4:59:7b:28:9a:b5:4c:d7:a4:b2:19:
7e:42:77:53:02:96:67:72:61:41:ec:b3:d0:ad:2f:a7:3c:a5:
f4:62:c3:86
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICG/gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMTA5Mjkw
MjQ3MTNaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEQ1RkUyOERGRTU5Q0Y4
OUQ0NDlBMjU2N0QyRjlFRTY2RDdGNzRGMjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDA0o8jDagNiNg3ztW7cDCnLYoeRb5VUHNoEOBhprRmlE6iytoH
WB84q2nPTUH0Sq9mHPvU1k7GwMZUsVYih3EiyTrog5A8dqizP5hqA+sLtT0P71qO
/CGEuVCSTNetbSIE6b1xwJvoffgt8aJGRu/zdG2RBrzCZDJf7W6mxckGidN+ZNj5
4K1BoN1HDl5lRAq0j8xhvM4A1rzCwpw6X8RqfeveK67mhX2iAOWwpW8uuvK1MDF2
UiEGV01bp+CS40hG14JLs/cQMnZsRXnApeottirROLY8b8qTttDnM2CXK0fjMJoG
M+AsqelXf3jZzfF0Y5x7sL3LUGt1KuEfkPMHAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQU1f4o3+Wc+J1EmiVn0vnuZtf3TygwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzFmNG8zLVdjLUoxRW1pVm4w
dm51WnRmM1R5Zy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAK0
sagwDQYJKoZIhvcNAQELBQADggEBAAd+fuiEyYPdFhIEm8ApbubSDgJiT1iK687f
VndRTocQhbusyY5EXC6Yt27PExM/XnP5Sgekz3wLN1w7Hp/CJ/vDhX2E1mifJQFY
+Bqm7c/gwhh+N5ZtNUri90yaN9nkTBXJcvMY0YBnsVPyWBkdO7kh5uZsQnuYAQkr
yX0YY8lWQspn0SP/updJ5/qksL0Bc7DbJvaJ0H0J04N579taGtuRcx7Xw0PXahNP
ATfBU+ZQsBBtIXcO8xvnciWxRWML/3VfxWHhUS5HWUBgOtrUOPgIc0Z3SBCk1Szx
Qa61p3j0WXsomrVM16SyGX5Cd1MClmdyYUHss9CtL6c8pfRiw4Y=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:23 2024 by rpki-client on console-ams.rpki-client.org