Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/1mpZuqcguoUZvLKXSAtC1MQrRMs.roa
File: 1mpZuqcguoUZvLKXSAtC1MQrRMs.roa (raw, json)
Hash identifier: h9lNR9f1uGdVDR1TbKDR1YKNEhG4bpIwpNAh4NYB7gg=
Subject key identifier: D6:6A:59:BA:A7:20:BA:85:19:BC:B2:97:48:0B:42:D4:C4:2B:44:CB
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/1mpZuqcguoUZvLKXSAtC1MQrRMs.roa
Signing time: Thu 15 Sep 2022 02:53:17 +0000
ROA not before: Thu 15 Sep 2022 02:53:17 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.195.128.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8098 (0x1fa2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:53:17 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D66A59BAA720BA8519BCB297480B42D4C42B44CB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:11:bf:6f:15:e0:3f:60:28:c3:93:e1:3c:03:
33:2f:ec:4f:3e:4f:51:e1:7f:74:7b:52:5f:4a:a6:
f6:b7:b2:ef:d5:91:4d:7a:e7:96:f7:99:b6:25:50:
0e:15:c3:c0:ca:73:49:4c:46:4e:60:97:00:7f:5e:
6b:8a:f4:e1:7e:95:a0:da:42:40:41:81:10:5b:d0:
75:61:05:0b:bb:fc:a0:e0:a1:88:44:67:52:a4:2c:
cc:c3:f0:cb:21:e4:0f:7b:88:f5:82:0b:96:3d:14:
78:95:92:72:0e:5c:cc:fb:40:10:43:47:8e:7b:6e:
0e:cb:66:3e:2c:8f:2a:6a:4d:57:84:4a:51:d5:08:
bb:a2:98:c6:6b:e8:81:b9:9b:16:86:f1:1b:40:2c:
c7:cc:a5:b4:2a:22:38:32:6e:48:ff:98:e9:98:9e:
b1:38:23:7a:86:66:b0:2d:be:b4:24:21:40:99:2c:
8e:5a:37:0f:9a:4a:11:cb:8b:cd:10:b8:bb:a1:b2:
a3:83:e2:2d:e4:d5:94:e5:3a:db:b2:df:37:98:15:
47:60:9b:f5:ea:8c:11:75:ed:71:60:56:68:f5:65:
fb:5c:ac:58:94:6e:ff:66:b0:28:0e:39:65:df:85:
ea:9d:c1:e5:6d:84:5c:a7:46:2f:3f:ca:ff:53:02:
fb:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:6A:59:BA:A7:20:BA:85:19:BC:B2:97:48:0B:42:D4:C4:2B:44:CB
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/1mpZuqcguoUZvLKXSAtC1MQrRMs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.128.0/20
Signature Algorithm: sha256WithRSAEncryption
5e:04:92:d9:e6:7b:72:db:96:7d:57:f7:7d:14:0f:3d:dd:82:
d2:18:ac:8b:a2:72:c4:66:ad:6b:a6:7a:07:30:c0:75:61:7c:
3d:89:24:b0:f3:6c:64:d7:d1:d5:be:d5:f0:43:0e:75:4b:e1:
68:1b:1a:e2:7e:34:0d:9f:b8:e1:ee:39:0a:80:2e:da:d0:fa:
a3:ee:95:aa:88:cc:b9:57:af:1f:d2:0e:08:83:4a:5d:2d:4c:
df:3e:b2:d6:ac:4b:ea:e6:7e:81:4e:fb:71:f2:f6:8b:4e:bc:
e8:eb:68:5a:67:a4:ce:c9:1c:e4:f8:2d:f6:6f:7f:c5:29:71:
85:50:2c:a0:77:f1:ee:89:d3:92:cc:70:34:ab:c1:be:48:2e:
4e:7b:9f:db:76:85:d7:67:13:5f:41:65:4d:38:31:c1:22:fe:
3b:f2:8a:5c:92:29:b4:82:7e:c7:63:14:56:f7:31:a4:bb:88:
ad:22:81:e9:b5:0a:31:14:e9:85:a9:9e:29:fb:3d:2f:4e:3b:
30:66:ec:ac:c7:67:3a:92:d8:28:1a:73:0c:da:40:fc:2e:fd:
8c:b6:bc:69:1e:a1:56:fa:01:cb:19:a9:67:16:e8:11:d6:57:
7e:30:a4:ce:8e:97:f2:47:9e:c0:2d:0f:d1:5f:68:e7:5e:a8:
42:d4:39:ba
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICH6IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMjA5MTUw
MjUzMTdaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEQ2NkE1OUJBQTcyMEJB
ODUxOUJDQjI5NzQ4MEI0MkQ0QzQyQjQ0Q0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDFEb9vFeA/YCjDk+E8AzMv7E8+T1Hhf3R7Ul9Kpva3su/VkU16
55b3mbYlUA4Vw8DKc0lMRk5glwB/XmuK9OF+laDaQkBBgRBb0HVhBQu7/KDgoYhE
Z1KkLMzD8Msh5A97iPWCC5Y9FHiVknIOXMz7QBBDR457bg7LZj4sjypqTVeESlHV
CLuimMZr6IG5mxaG8RtALMfMpbQqIjgybkj/mOmYnrE4I3qGZrAtvrQkIUCZLI5a
Nw+aShHLi80QuLuhsqOD4i3k1ZTlOtuy3zeYFUdgm/XqjBF17XFgVmj1ZftcrFiU
bv9msCgOOWXfheqdweVthFynRi8/yv9TAvvhAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQU1mpZuqcguoUZvLKXSAtC1MQrRMswHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzFtcFp1cWNndW9VWnZMS1hT
QXRDMU1RclJNcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAR7
w4AwDQYJKoZIhvcNAQELBQADggEBAF4Ektnme3Lbln1X930UDz3dgtIYrIuicsRm
rWumegcwwHVhfD2JJLDzbGTX0dW+1fBDDnVL4WgbGuJ+NA2fuOHuOQqALtrQ+qPu
laqIzLlXrx/SDgiDSl0tTN8+stasS+rmfoFO+3Hy9otOvOjraFpnpM7JHOT4LfZv
f8UpcYVQLKB38e6J05LMcDSrwb5ILk57n9t2hddnE19BZU04McEi/jvyilySKbSC
fsdjFFb3MaS7iK0igem1CjEU6YWpnin7PS9OOzBm7KzHZzqS2CgacwzaQPwu/Yy2
vGkeoVb6AcsZqWcW6BHWV34wpM6Ol/JHnsAtD9FfaOdeqELUObo=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:23 2024 by rpki-client on console-ams.rpki-client.org