Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2pk7__MznUUoEGhARlen7yWurtc.roa
File: 2pk7__MznUUoEGhARlen7yWurtc.roa (raw, json)
Hash identifier: nwEU4QkKdQ3og7RoOQWBli/0ZLUqkRhI/6m5pk+D8Hk=
Subject key identifier: DA:99:3B:FF:F3:33:9D:45:28:10:68:40:46:57:A7:EF:25:AE:AE:D7
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1F63
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2pk7__MznUUoEGhARlen7yWurtc.roa
Signing time: Tue 23 Aug 2022 09:33:45 +0000
ROA not before: Tue 23 Aug 2022 09:33:45 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 123.192.248.0/21 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8035 (0x1f63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Aug 23 09:33:45 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=DA993BFFF3339D45281068404657A7EF25AEAED7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:87:7e:45:2e:7e:24:16:19:e3:23:93:23:4c:
5a:0f:a6:99:12:3b:ca:51:b6:56:ed:fb:d7:83:bf:
dc:78:88:ce:d4:10:d6:4d:ca:62:00:0a:f5:97:53:
49:2a:f0:ee:3c:91:13:1e:fd:06:26:d9:f5:af:e0:
90:9b:2b:2c:dd:86:1d:9a:64:0e:d6:5f:a1:ca:30:
1d:74:57:17:a8:66:c6:d9:70:a7:f3:50:8d:34:23:
14:d2:c3:6c:94:d1:eb:de:1b:bd:df:dc:4f:16:37:
34:07:26:e4:59:16:0d:85:55:b7:0d:b0:e3:37:a5:
14:b3:1a:c2:8a:5a:ea:b1:ad:63:28:66:47:c6:e1:
3e:db:0a:b0:0f:3f:59:a3:f8:ba:dc:e6:7c:25:67:
0e:b3:38:95:f1:e8:06:d5:ab:36:4e:63:68:12:d9:
47:b2:4a:69:9d:fe:72:56:67:53:1a:26:71:7c:5c:
68:b9:07:c7:b6:7c:53:ba:73:0f:eb:32:da:e5:69:
47:50:f5:91:eb:09:d3:32:ec:86:bc:84:6e:22:6d:
5c:94:c6:50:7b:37:68:65:8b:30:f0:59:f6:c3:b5:
0a:0b:86:0f:52:36:8e:42:d7:7b:a3:70:bb:6a:04:
9e:0f:31:06:88:db:9c:1f:45:76:ba:7d:06:61:41:
2e:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:99:3B:FF:F3:33:9D:45:28:10:68:40:46:57:A7:EF:25:AE:AE:D7
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2pk7__MznUUoEGhARlen7yWurtc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.192.248.0/21
Signature Algorithm: sha256WithRSAEncryption
a4:e3:26:5d:52:d6:67:c3:36:98:f8:7b:7e:7d:d1:85:77:96:
38:90:22:97:19:1b:de:71:29:1a:58:8f:77:5c:a8:69:96:67:
ba:ea:92:3e:0b:c3:c7:4e:3f:94:b6:c6:a1:6f:b0:45:86:0f:
9d:1e:0c:79:32:17:b7:e3:b8:03:d7:1c:fc:a6:02:25:6e:7b:
9e:5f:cf:68:26:b2:13:d8:1e:55:48:6c:69:35:27:04:e9:02:
b8:db:0b:4a:ba:f7:ea:3a:76:1c:f1:76:2d:bb:44:53:93:b4:
ee:1c:59:6b:2c:c0:8e:7f:dd:da:38:5f:5e:1d:df:22:78:d2:
92:70:95:d4:2c:25:ff:37:56:9b:ca:2c:f8:b0:73:01:13:12:
d6:87:12:56:65:0a:36:24:c1:c9:66:61:b1:ae:86:49:84:21:
e8:02:be:95:46:31:e3:39:52:d6:34:f7:c2:c5:17:5a:0c:c0:
48:32:72:75:1c:59:55:16:92:74:85:bf:9f:8d:fb:4d:8a:95:
33:5c:e9:b5:c9:de:0d:5a:25:03:9a:22:d6:24:25:ee:06:79:
09:bd:05:df:d2:ec:bf:90:02:30:7e:9e:5c:9b:a0:79:0d:24:
fb:46:f1:e9:f9:80:c8:d2:e1:98:a4:ac:c2:7c:79:25:19:9c:
cb:fc:02:6c
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICH2MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMjA4MjMw
OTMzNDVaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKERBOTkzQkZGRjMzMzlE
NDUyODEwNjg0MDQ2NTdBN0VGMjVBRUFFRDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDsh35FLn4kFhnjI5MjTFoPppkSO8pRtlbt+9eDv9x4iM7UENZN
ymIACvWXU0kq8O48kRMe/QYm2fWv4JCbKyzdhh2aZA7WX6HKMB10VxeoZsbZcKfz
UI00IxTSw2yU0eveG73f3E8WNzQHJuRZFg2FVbcNsOM3pRSzGsKKWuqxrWMoZkfG
4T7bCrAPP1mj+Lrc5nwlZw6zOJXx6AbVqzZOY2gS2UeySmmd/nJWZ1MaJnF8XGi5
B8e2fFO6cw/rMtrlaUdQ9ZHrCdMy7Ia8hG4ibVyUxlB7N2hlizDwWfbDtQoLhg9S
No5C13ujcLtqBJ4PMQaI25wfRXa6fQZhQS4dAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQU2pk7//MznUUoEGhARlen7yWurtcwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzJwazdfX016blVVb0VHaEFS
bGVuN3lXdXJ0Yy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7
wPgwDQYJKoZIhvcNAQELBQADggEBAKTjJl1S1mfDNpj4e3590YV3ljiQIpcZG95x
KRpYj3dcqGmWZ7rqkj4Lw8dOP5S2xqFvsEWGD50eDHkyF7fjuAPXHPymAiVue55f
z2gmshPYHlVIbGk1JwTpArjbC0q69+o6dhzxdi27RFOTtO4cWWsswI5/3do4X14d
3yJ40pJwldQsJf83VpvKLPiwcwETEtaHElZlCjYkwclmYbGuhkmEIegCvpVGMeM5
UtY098LFF1oMwEgycnUcWVUWknSFv5+N+02KlTNc6bXJ3g1aJQOaItYkJe4GeQm9
Bd/S7L+QAjB+nlyboHkNJPtG8en5gMjS4ZikrMJ8eSUZnMv8Amw=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:20 2023 by rpki-client on console-fra.rpki-client.org