Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3EOy5zcsXiX6dcWpS9SOR7ONZNQ.roa
File: 3EOy5zcsXiX6dcWpS9SOR7ONZNQ.roa (raw, json)
Hash identifier: Ah2UVvLJadBFonmzxg87au57GNYuc3NPAbtW8eh0rVs=
Subject key identifier: DC:43:B2:E7:37:2C:5E:25:FA:75:C5:A9:4B:D4:8E:47:B3:8D:64:D4
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2182
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3EOy5zcsXiX6dcWpS9SOR7ONZNQ.roa
Signing time: Fri 25 Nov 2022 04:40:00 +0000
ROA not before: Fri 25 Nov 2022 04:40:00 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.192.16.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8578 (0x2182)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:40:00 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=DC43B2E7372C5E25FA75C5A94BD48E47B38D64D4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:ee:32:e5:12:11:a1:7f:14:f4:bb:3a:d1:41:
03:c9:71:49:19:45:06:15:31:f0:79:4f:8d:54:b6:
0c:e7:df:8e:20:b3:a5:44:f6:c1:7e:eb:b9:83:b1:
e5:1a:0c:46:fe:7a:a3:90:3c:04:67:f6:6a:57:57:
c0:76:a8:97:00:ba:5f:8a:66:f1:76:9e:f0:8e:63:
8b:d6:fa:bd:ff:32:d4:ba:8d:52:3d:80:15:6c:30:
23:ff:1a:14:2b:d8:40:7f:75:9f:78:e5:f8:ff:1b:
24:94:8c:01:c2:c2:bd:f3:3e:f1:ca:57:1c:1e:2b:
b6:8c:a8:e4:94:cb:e7:db:00:04:ee:8b:a8:b8:50:
83:24:c8:d6:9d:a9:86:52:36:25:2d:13:97:09:bc:
1f:ca:ec:3a:32:94:59:6c:83:07:aa:a8:80:97:9e:
5b:cb:40:4e:86:93:5e:97:3e:d0:5e:cf:12:0d:0b:
c5:a2:79:98:28:7b:b4:1a:94:d2:fa:ad:a4:9e:e6:
e4:96:b3:1d:c8:ca:1a:5e:d9:97:41:77:55:08:4b:
53:db:56:bf:c1:23:c6:dc:73:09:9a:0e:e5:1f:fb:
c8:f1:14:32:c9:e5:a4:3c:83:8f:7a:e1:e5:f6:28:
b7:3f:ef:4d:2f:44:25:d3:db:e0:7c:2b:8d:a4:a0:
54:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:43:B2:E7:37:2C:5E:25:FA:75:C5:A9:4B:D4:8E:47:B3:8D:64:D4
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3EOy5zcsXiX6dcWpS9SOR7ONZNQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.192.16.0/21
Signature Algorithm: sha256WithRSAEncryption
78:87:d8:e9:e6:27:99:4b:7b:50:3d:1d:d7:15:06:a9:44:a7:
6f:e6:47:b3:75:9d:0a:86:02:a2:a9:17:85:a6:17:be:5f:54:
a0:01:ed:1d:b6:32:ca:f7:2a:8d:9a:cd:45:ad:ae:35:7b:ee:
c0:e4:cb:68:38:3c:c5:70:72:c7:8e:24:12:91:18:c1:5f:38:
49:18:24:b9:d5:f3:93:df:12:ad:f8:0f:16:2a:d6:32:d1:c8:
84:57:61:6d:0f:59:0f:77:50:3e:7c:f6:48:00:75:a8:e3:9b:
5c:49:bb:ff:c7:72:9a:39:54:24:d9:19:ac:c7:f6:f5:cc:ee:
89:af:cd:88:9a:83:53:c3:ad:20:ea:c6:3b:1f:9c:0d:b5:0a:
71:1a:ba:54:59:da:73:4f:fc:5d:55:1d:3d:f4:b0:e7:bf:c0:
1d:96:2e:2a:48:c4:75:13:6f:f4:8a:ba:b3:dc:b6:58:82:e5:
e4:b1:97:04:7e:af:bc:0f:50:3b:8e:f5:30:01:68:cf:fd:73:
c3:04:35:2d:94:81:d0:37:f3:55:ff:e5:82:3c:51:32:98:78:
6c:00:d8:de:99:d7:5f:ab:40:34:f9:17:da:88:aa:1f:a7:61:
24:4c:51:f7:7e:91:0f:cf:f8:d7:82:c1:2c:f2:58:a1:55:1a:
ab:49:c4:3b
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICIYIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMjExMjUw
NDQwMDBaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKERDNDNCMkU3MzcyQzVF
MjVGQTc1QzVBOTRCRDQ4RTQ3QjM4RDY0RDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDn7jLlEhGhfxT0uzrRQQPJcUkZRQYVMfB5T41Utgzn344gs6VE
9sF+67mDseUaDEb+eqOQPARn9mpXV8B2qJcAul+KZvF2nvCOY4vW+r3/MtS6jVI9
gBVsMCP/GhQr2EB/dZ945fj/GySUjAHCwr3zPvHKVxweK7aMqOSUy+fbAATui6i4
UIMkyNadqYZSNiUtE5cJvB/K7DoylFlsgweqqICXnlvLQE6Gk16XPtBezxINC8Wi
eZgoe7QalNL6raSe5uSWsx3Iyhpe2ZdBd1UIS1PbVr/BI8bccwmaDuUf+8jxFDLJ
5aQ8g4964eX2KLc/700vRCXT2+B8K42koFQxAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQU3EOy5zcsXiX6dcWpS9SOR7ONZNQwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzNFT3k1emNzWGlYNmRjV3BT
OVNPUjdPTlpOUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7
wBAwDQYJKoZIhvcNAQELBQADggEBAHiH2OnmJ5lLe1A9HdcVBqlEp2/mR7N1nQqG
AqKpF4WmF75fVKAB7R22Msr3Ko2azUWtrjV77sDky2g4PMVwcseOJBKRGMFfOEkY
JLnV85PfEq34DxYq1jLRyIRXYW0PWQ93UD589kgAdajjm1xJu//Hcpo5VCTZGazH
9vXM7omvzYiag1PDrSDqxjsfnA21CnEaulRZ2nNP/F1VHT30sOe/wB2WLipIxHUT
b/SKurPctliC5eSxlwR+r7wPUDuO9TABaM/9c8MENS2UgdA381X/5YI8UTKYeGwA
2N6Z11+rQDT5F9qIqh+nYSRMUfd+kQ/P+NeCwSzyWKFVGqtJxDs=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:47 2024 by rpki-client on console-fra.rpki-client.org