Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3JWjb_gVE7CdnnF00wE8UyQBePI.roa
File: 3JWjb_gVE7CdnnF00wE8UyQBePI.roa (raw, json)
Hash identifier: /DgFm82wzdsJGmzUyXSOMMAE3++PMBKbWs3Clyz9jLs=
Subject key identifier: DC:95:A3:6F:F8:15:13:B0:9D:9E:71:74:D3:01:3C:53:24:01:78:F2
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1ED5
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3JWjb_gVE7CdnnF00wE8UyQBePI.roa
Signing time: Thu 26 May 2022 03:30:37 +0000
ROA not before: Thu 26 May 2022 03:30:37 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 123.194.88.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7893 (0x1ed5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: May 26 03:30:37 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=DC95A36FF81513B09D9E7174D3013C53240178F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:57:3e:44:74:8e:a2:ca:c7:92:c4:4f:85:ac:
f7:6c:1c:13:4c:d8:50:be:11:e1:5b:6a:b1:db:70:
14:7e:e5:f5:8c:78:61:0b:a7:52:df:40:69:65:c7:
a9:f7:fb:d1:cd:dc:51:8c:ea:59:81:d8:b3:9d:fc:
42:01:c9:fb:c8:c8:79:24:34:61:36:8a:dd:75:df:
6a:f6:ef:24:f5:66:c1:67:8c:0c:f9:42:42:35:a9:
6e:6f:c3:9b:45:5a:6e:dc:7d:13:dd:14:5c:0e:b2:
62:fe:fa:f6:b5:5d:9c:7d:83:18:ee:21:0a:91:38:
bb:17:81:63:4f:b3:4c:49:bd:b6:99:e3:15:25:5a:
29:ce:ec:a5:ff:61:f8:19:7b:2f:7c:52:28:02:02:
55:ec:80:79:74:65:27:a2:26:81:80:5d:97:65:e1:
5c:e8:fa:2d:91:7c:f4:f0:db:03:64:cf:66:f3:d5:
40:8c:8c:9a:9b:97:ec:f8:52:cf:5b:43:21:0c:e2:
5c:69:29:a0:db:84:7a:10:c0:e8:e7:5e:ee:bc:1d:
36:8d:0d:f2:9a:df:40:82:b3:90:12:31:77:40:76:
01:10:10:c5:2a:4c:c0:ae:07:29:37:df:a4:ec:cc:
00:36:ce:dd:f8:b7:44:3c:1b:d6:e2:b8:ed:45:64:
ec:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:95:A3:6F:F8:15:13:B0:9D:9E:71:74:D3:01:3C:53:24:01:78:F2
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3JWjb_gVE7CdnnF00wE8UyQBePI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.88.0/21
Signature Algorithm: sha256WithRSAEncryption
91:88:66:8c:45:a1:16:70:cf:e3:77:8e:2f:54:14:85:c6:92:
c2:c5:6a:01:43:01:3f:9a:fe:f8:59:f6:1b:82:a0:78:07:0d:
e5:b7:9e:a1:23:b4:f0:17:07:b7:f1:03:68:ae:d5:57:52:6c:
79:5e:fe:77:32:9a:fa:f3:26:51:80:3b:7a:39:d9:4e:85:fe:
81:fa:19:90:26:70:4f:d7:8c:c1:e4:74:aa:2c:4a:83:24:31:
aa:19:57:8c:80:be:db:44:c5:51:5d:86:53:40:55:d2:70:7d:
31:f7:85:12:ce:67:db:fe:41:62:6a:ed:9e:7e:a3:f4:94:0b:
68:d4:73:d5:3f:3c:62:78:64:21:0e:33:08:0b:3c:a3:d5:4f:
22:06:07:fe:8d:91:71:44:8a:73:fd:c5:ea:f7:19:65:a6:03:
3f:1c:21:80:24:83:39:2c:c4:ec:be:5c:8b:af:17:0d:e2:dd:
56:ed:77:2f:eb:ea:56:a3:8c:6e:52:20:cc:bc:f9:ae:ae:25:
3d:44:a5:d6:10:16:35:18:ab:1f:d0:5a:1b:f7:dc:06:f2:2a:
3c:ae:56:6e:3c:91:65:b8:10:1c:e8:31:2e:98:30:19:0b:46:
a3:3a:0f:2d:64:6e:7d:af:57:4c:09:2c:45:d6:be:25:35:b2:
83:29:34:72
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICHtUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMjA1MjYw
MzMwMzdaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKERDOTVBMzZGRjgxNTEz
QjA5RDlFNzE3NEQzMDEzQzUzMjQwMTc4RjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC/Vz5EdI6iyseSxE+FrPdsHBNM2FC+EeFbarHbcBR+5fWMeGEL
p1LfQGllx6n3+9HN3FGM6lmB2LOd/EIByfvIyHkkNGE2it1132r27yT1ZsFnjAz5
QkI1qW5vw5tFWm7cfRPdFFwOsmL++va1XZx9gxjuIQqROLsXgWNPs0xJvbaZ4xUl
WinO7KX/YfgZey98UigCAlXsgHl0ZSeiJoGAXZdl4Vzo+i2RfPTw2wNkz2bz1UCM
jJqbl+z4Us9bQyEM4lxpKaDbhHoQwOjnXu68HTaNDfKa30CCs5ASMXdAdgEQEMUq
TMCuByk336TszAA2zt34t0Q8G9biuO1FZOztAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQU3JWjb/gVE7CdnnF00wE8UyQBePIwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzNKV2piX2dWRTdDZG5uRjAw
d0U4VXlRQmVQSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7
wlgwDQYJKoZIhvcNAQELBQADggEBAJGIZoxFoRZwz+N3ji9UFIXGksLFagFDAT+a
/vhZ9huCoHgHDeW3nqEjtPAXB7fxA2iu1VdSbHle/ncymvrzJlGAO3o52U6F/oH6
GZAmcE/XjMHkdKosSoMkMaoZV4yAvttExVFdhlNAVdJwfTH3hRLOZ9v+QWJq7Z5+
o/SUC2jUc9U/PGJ4ZCEOMwgLPKPVTyIGB/6NkXFEinP9xer3GWWmAz8cIYAkgzks
xOy+XIuvFw3i3Vbtdy/r6lajjG5SIMy8+a6uJT1EpdYQFjUYqx/QWhv33AbyKjyu
Vm48kWW4EBzoMS6YMBkLRqM6Dy1kbn2vV0wJLEXWviU1soMpNHI=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:20 2023 by rpki-client on console-fra.rpki-client.org