Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3AIQjpqXaMHlC6kKh73LQU2ZI-o.roa
File: 3AIQjpqXaMHlC6kKh73LQU2ZI-o.roa (raw, json)
Hash identifier: G2femxDHoIkDB7v4/5GCxQgGNyicFDWw79tRKVOu6OQ=
Subject key identifier: DC:02:10:8E:9A:97:68:C1:E5:0B:A9:0A:87:BD:CB:41:4D:99:23:EA
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 0D37
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3AIQjpqXaMHlC6kKh73LQU2ZI-o.roa
Signing time: Tue 29 Sep 2020 09:54:19 +0000
ROA not before: Tue 29 Sep 2020 09:54:19 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 123.194.176.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3383 (0xd37)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 09:54:19 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=DC02108E9A9768C1E50BA90A87BDCB414D9923EA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ba:8e:9c:b5:be:64:53:bb:4b:48:32:5f:bf:
ef:28:b1:61:b1:89:2b:23:71:d5:3a:a5:7d:57:79:
45:5e:7b:02:ff:c7:92:0d:2f:a8:44:da:59:4a:4b:
dc:82:e0:28:6f:1c:c3:87:81:be:c1:3b:68:64:d5:
49:e3:42:1f:cd:0d:bb:5b:21:6b:0b:8a:36:dd:ba:
1b:18:4a:dd:5b:b9:f2:3a:5d:6a:27:e4:66:ee:e3:
ab:39:0d:72:a3:a2:c6:0c:f0:86:3a:b7:7d:1f:34:
b2:a8:e8:23:9f:36:6e:ea:be:1a:fc:fd:e8:4c:86:
32:f2:9e:1c:f6:41:6c:6f:b8:77:5f:b1:a4:6b:62:
22:f6:89:ac:9f:95:da:6b:dc:0f:5f:51:f7:fe:8f:
ef:c0:cc:bc:29:8b:85:e0:a4:45:b1:df:ab:f0:6f:
8c:c8:18:4e:d3:89:a2:b9:f7:60:85:97:86:a2:25:
83:c8:83:1b:ba:e4:9d:57:9d:32:b0:3c:ac:0d:7f:
7e:a1:a1:b0:e9:55:40:25:71:ce:6c:e0:c2:e6:44:
72:c4:b9:c1:a0:af:b1:2b:ec:cd:13:b7:f3:2c:6f:
bd:26:ea:d0:a3:ac:d1:0f:08:bc:b5:a3:6b:7d:34:
70:f9:14:02:d1:66:11:e8:be:21:03:4a:7c:ae:28:
1f:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:02:10:8E:9A:97:68:C1:E5:0B:A9:0A:87:BD:CB:41:4D:99:23:EA
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3AIQjpqXaMHlC6kKh73LQU2ZI-o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.176.0/21
Signature Algorithm: sha256WithRSAEncryption
42:b3:de:18:ae:de:60:63:ed:2f:9d:7a:2a:48:da:bc:44:4c:
2c:87:55:03:cc:2e:eb:04:11:52:87:b5:86:b4:c0:96:75:3e:
45:bf:b3:9d:13:a3:5f:8c:f2:1c:67:17:0e:92:83:e9:7e:40:
8b:34:06:c3:2f:2f:1b:b6:19:d9:76:f5:d2:8a:29:61:6f:4c:
6d:a7:ff:7c:21:37:b5:dc:43:b1:19:cb:3e:ed:31:68:55:63:
e7:56:9d:70:d4:62:8b:a9:23:1a:6e:98:c0:79:34:77:e3:97:
45:e1:2e:69:bf:0e:d1:0b:b4:d6:16:50:85:0b:2f:68:c8:56:
e2:05:dc:2d:74:d5:21:57:4e:a6:a8:87:d8:16:77:77:50:f4:
06:43:7e:f7:5d:4e:e3:79:9a:98:63:84:04:f1:62:88:02:f9:
2f:22:ac:20:43:a4:03:df:b0:c2:b4:91:cd:11:c3:6c:24:f6:
36:2d:0b:e4:da:e2:bc:24:37:40:d5:62:2a:15:da:9a:70:b0:
84:94:a2:4e:51:ee:84:71:4f:f2:21:9b:9a:b2:e4:09:21:f7:
9d:6e:49:41:ba:b5:c4:3e:63:2b:4c:0a:67:0f:ce:64:41:7a:
b2:17:19:bc:9b:cf:7c:1f:e2:60:22:31:19:0a:f5:c5:9e:e6:
f6:09:22:a2
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICDTcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMDA5Mjkw
OTU0MTlaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKERDMDIxMDhFOUE5NzY4
QzFFNTBCQTkwQTg3QkRDQjQxNEQ5OTIzRUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC1uo6ctb5kU7tLSDJfv+8osWGxiSsjcdU6pX1XeUVeewL/x5IN
L6hE2llKS9yC4ChvHMOHgb7BO2hk1UnjQh/NDbtbIWsLijbduhsYSt1bufI6XWon
5Gbu46s5DXKjosYM8IY6t30fNLKo6COfNm7qvhr8/ehMhjLynhz2QWxvuHdfsaRr
YiL2iayfldpr3A9fUff+j+/AzLwpi4XgpEWx36vwb4zIGE7TiaK592CFl4aiJYPI
gxu65J1XnTKwPKwNf36hobDpVUAlcc5s4MLmRHLEucGgr7Er7M0Tt/Msb70m6tCj
rNEPCLy1o2t9NHD5FALRZhHoviEDSnyuKB8fAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQU3AIQjpqXaMHlC6kKh73LQU2ZI+owHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzNBSVFqcHFYYU1IbEM2a0to
NzNMUVUyWkktby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7
wrAwDQYJKoZIhvcNAQELBQADggEBAEKz3hiu3mBj7S+deipI2rxETCyHVQPMLusE
EVKHtYa0wJZ1PkW/s50To1+M8hxnFw6Sg+l+QIs0BsMvLxu2Gdl29dKKKWFvTG2n
/3whN7XcQ7EZyz7tMWhVY+dWnXDUYoupIxpumMB5NHfjl0XhLmm/DtELtNYWUIUL
L2jIVuIF3C101SFXTqaoh9gWd3dQ9AZDfvddTuN5mphjhATxYogC+S8irCBDpAPf
sMK0kc0Rw2wk9jYtC+Ta4rwkN0DVYioV2ppwsISUok5R7oRxT/Ihm5qy5Akh951u
SUG6tcQ+YytMCmcPzmRBerIXGbybz3wf4mAiMRkK9cWe5vYJIqI=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:08 2023 by rpki-client on console-ams.rpki-client.org