Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2FGcXIs-7aEDrfBvQVnUo16XLeY.roa
File: 2FGcXIs-7aEDrfBvQVnUo16XLeY.roa (raw, json)
Hash identifier: AaRxs35I0/N3iwMeHpQ1I+5T5gRcHGd9/7dcahwAe88=
Subject key identifier: D8:51:9C:5C:8B:3E:ED:A1:03:AD:F0:6F:41:59:D4:A3:5E:97:2D:E6
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 15F9
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2FGcXIs-7aEDrfBvQVnUo16XLeY.roa
Signing time: Sun 07 Feb 2021 12:07:35 +0000
ROA not before: Sun 07 Feb 2021 12:07:35 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 118.233.230.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5625 (0x15f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:07:35 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D8519C5C8B3EEDA103ADF06F4159D4A35E972DE6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:31:e5:d9:d3:e0:38:78:48:ee:d7:1c:2c:9c:
2e:ee:29:c2:d8:59:29:cf:64:f4:75:aa:dd:f1:e8:
00:a8:c1:a0:0a:76:4d:32:ce:4a:78:b9:a4:04:eb:
ae:e8:29:a5:8d:2d:42:db:00:67:01:b2:37:62:f0:
a0:e6:58:38:8e:90:f4:45:ac:e7:b4:f6:47:46:2f:
40:a6:49:b4:87:f5:19:62:4e:e7:8a:98:b9:8d:d1:
14:81:65:92:72:c2:45:98:85:66:bf:9b:e5:ad:3c:
3b:d7:01:7c:b2:f6:16:98:d0:78:17:f8:75:a1:95:
31:b3:91:fb:21:9b:d8:8d:aa:d4:3a:55:96:ff:43:
7c:7e:04:f5:ee:63:f5:b7:09:eb:7c:dc:02:6b:30:
fd:de:f9:0a:80:01:e7:6a:f5:7b:4d:b9:cf:0f:e0:
ec:d4:63:13:4b:a9:2e:f5:d4:c3:c1:f8:ab:9f:bb:
6f:8c:06:01:a5:e4:6e:8c:7e:6c:8c:c4:1d:f9:50:
8c:87:4e:79:43:5e:8b:32:df:9d:1f:60:a6:59:c0:
01:72:b4:6a:c9:70:e9:7a:8f:f4:3d:e6:34:f1:0f:
53:4c:2b:2c:95:ea:1e:4d:ef:b5:2f:9c:0f:35:d2:
44:b6:ac:2d:d6:56:6c:39:35:d4:5e:f6:02:c8:15:
3b:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:51:9C:5C:8B:3E:ED:A1:03:AD:F0:6F:41:59:D4:A3:5E:97:2D:E6
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2FGcXIs-7aEDrfBvQVnUo16XLeY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.230.0/23
Signature Algorithm: sha256WithRSAEncryption
37:93:cb:e7:9f:03:15:07:1f:8a:05:0c:bc:da:be:d9:d4:28:
27:c5:b1:24:af:f1:ea:11:ec:9f:4c:77:3d:1a:3b:50:62:f1:
df:fa:5c:bf:fc:90:a2:28:9a:b3:85:57:a2:a2:d0:e2:8f:a5:
b1:5a:77:7a:90:bd:4d:bb:22:e6:37:1b:dd:ac:de:9e:54:c5:
84:03:a2:ea:c6:a7:0c:75:33:b6:21:91:d5:b8:2f:d8:83:1d:
74:9c:55:74:13:dd:34:61:80:9f:f0:4b:e1:fa:c0:6b:34:7a:
f8:ed:23:e9:84:fb:35:a1:03:00:ee:cf:4c:29:8d:5d:1c:8f:
dc:a4:f5:21:b4:51:b6:45:b2:3c:74:d8:b6:3d:38:78:b3:cf:
9e:0d:b7:4c:65:ca:6a:ad:c7:f6:ce:e3:b1:81:b0:49:b2:29:
aa:0d:8c:04:09:55:b6:47:8b:b1:8b:b3:29:db:7a:91:f0:18:
bc:db:73:50:59:2c:ff:e0:02:23:3c:37:8c:ed:5d:f2:c9:1c:
83:ae:f0:1c:0d:bf:b9:87:40:0d:7f:2e:65:33:f4:e6:08:92:
c2:65:7f:3f:d8:bf:01:3c:c5:75:cc:28:73:76:df:4a:7a:06:
67:5e:d7:8e:37:5b:a8:15:ab:09:2e:3b:72:b2:f7:b6:77:06:
ed:22:7d:5f
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICFfkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMTAyMDcx
MjA3MzVaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEQ4NTE5QzVDOEIzRUVE
QTEwM0FERjA2RjQxNTlENEEzNUU5NzJERTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC0MeXZ0+A4eEju1xwsnC7uKcLYWSnPZPR1qt3x6ACowaAKdk0y
zkp4uaQE667oKaWNLULbAGcBsjdi8KDmWDiOkPRFrOe09kdGL0CmSbSH9RliTueK
mLmN0RSBZZJywkWYhWa/m+WtPDvXAXyy9haY0HgX+HWhlTGzkfshm9iNqtQ6VZb/
Q3x+BPXuY/W3Cet83AJrMP3e+QqAAedq9XtNuc8P4OzUYxNLqS711MPB+Kufu2+M
BgGl5G6MfmyMxB35UIyHTnlDXosy350fYKZZwAFytGrJcOl6j/Q95jTxD1NMKyyV
6h5N77UvnA810kS2rC3WVmw5NdRe9gLIFTvHAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQU2FGcXIs+7aEDrfBvQVnUo16XLeYwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzJGR2NYSXMtN2FFRHJmQnZR
Vm5VbzE2WExlWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAF2
6eYwDQYJKoZIhvcNAQELBQADggEBADeTy+efAxUHH4oFDLzavtnUKCfFsSSv8eoR
7J9Mdz0aO1Bi8d/6XL/8kKIomrOFV6Ki0OKPpbFad3qQvU27IuY3G92s3p5UxYQD
ourGpwx1M7YhkdW4L9iDHXScVXQT3TRhgJ/wS+H6wGs0evjtI+mE+zWhAwDuz0wp
jV0cj9yk9SG0UbZFsjx02LY9OHizz54Nt0xlymqtx/bO47GBsEmyKaoNjAQJVbZH
i7GLsynbepHwGLzbc1BZLP/gAiM8N4ztXfLJHIOu8BwNv7mHQA1/LmUz9OYIksJl
fz/YvwE8xXXMKHN230p6Bmde1443W6gVqwkuO3Ky97Z3Bu0ifV8=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:46 2024 by rpki-client on console-fra.rpki-client.org