Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3ZjOOz0XzawThLnEMMXSt-vFF6o.roa
File: 3ZjOOz0XzawThLnEMMXSt-vFF6o.roa (raw, json)
Hash identifier: bmOoRo0N/hOJ+Wd4Dlq5Un3jS1BGzfikfTI94EcbkmE=
Subject key identifier: DD:98:CE:3B:3D:17:CD:AC:13:84:B9:C4:30:C5:D2:B7:EB:C5:17:AA
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 0D68
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3ZjOOz0XzawThLnEMMXSt-vFF6o.roa
Signing time: Tue 29 Sep 2020 09:54:31 +0000
ROA not before: Tue 29 Sep 2020 09:54:31 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 118.233.120.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3432 (0xd68)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 09:54:31 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=DD98CE3B3D17CDAC1384B9C430C5D2B7EBC517AA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:6f:8b:26:48:1d:fb:a7:cb:9c:d1:17:41:c0:
ff:8d:4c:30:68:db:02:fc:6e:12:e2:a1:38:d9:72:
c2:24:fb:47:74:89:7c:61:bf:4b:7b:c7:dc:a0:14:
3c:2b:3f:f2:d2:c2:f7:cb:9d:c1:12:a0:1a:c2:c5:
31:69:ea:6d:8a:e2:18:2f:a8:fa:21:28:af:f0:bb:
23:51:c2:2b:46:01:62:8e:5b:d4:ce:ee:24:52:bf:
0d:d0:55:0f:6c:ea:c9:b9:ee:13:38:48:e9:99:7b:
70:24:fe:55:f2:f9:b0:28:e6:b9:8d:66:ae:37:55:
81:d1:bf:4e:92:13:11:4b:46:e3:8c:78:38:ef:77:
07:77:ed:fe:30:16:f0:83:1f:b8:59:33:49:76:1e:
70:bf:43:23:c5:a3:1c:5c:b0:ac:2d:8d:18:e2:e4:
c2:46:d3:d3:b1:fb:83:de:ce:8e:54:fa:d4:51:04:
66:8d:32:86:12:e6:48:47:b5:d4:0c:b2:66:de:9c:
24:28:55:01:6f:c7:73:46:be:7e:ff:61:fe:51:5a:
68:2c:c6:26:f2:cf:8d:5d:a9:20:53:f2:be:04:ed:
ac:d5:0a:24:96:50:6a:84:9a:81:fd:46:c4:36:a7:
26:6d:56:c9:22:0b:8a:4a:3b:5f:f7:51:9a:d1:d9:
54:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:98:CE:3B:3D:17:CD:AC:13:84:B9:C4:30:C5:D2:B7:EB:C5:17:AA
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3ZjOOz0XzawThLnEMMXSt-vFF6o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.120.0/23
Signature Algorithm: sha256WithRSAEncryption
aa:36:eb:06:08:a7:3d:1b:0a:0b:6b:29:29:ec:98:52:a2:f6:
eb:2f:e4:68:88:6d:ba:12:c2:19:84:ba:cf:e6:2b:77:8a:60:
cc:76:e7:65:59:15:2c:76:9a:c1:1c:8d:e4:d8:bd:f1:57:32:
5a:ac:4c:60:ce:c3:12:a8:a7:0b:59:35:35:93:ea:83:58:72:
a3:3d:48:0e:3d:0c:61:fe:56:b9:9e:79:31:bb:f1:90:72:56:
98:ba:3d:bd:9f:66:8c:f8:99:e0:19:48:44:83:99:e2:63:a3:
ad:b9:07:f6:38:8a:8f:d6:e8:e5:a2:c0:57:5e:46:48:ee:0b:
80:cf:28:7e:0e:fe:d2:54:99:34:b3:49:66:b9:c1:3c:87:15:
3c:ce:34:c2:e6:11:0c:c6:6a:7a:f1:29:dc:63:6b:96:a1:5a:
2e:5c:8e:eb:4d:df:f5:ff:f9:1f:d7:10:5a:12:c8:65:55:cc:
8a:24:76:56:76:81:41:9f:d8:b2:4e:19:38:2f:32:e1:18:41:
6e:55:d5:c8:1b:35:e2:ae:49:70:54:63:56:0a:55:38:d0:a6:
71:e5:fc:69:7a:94:70:b2:58:02:94:b2:3f:66:cf:47:92:fa:
65:c7:2b:96:1b:63:3d:3f:4e:65:f0:95:93:12:f5:88:f6:3a:
1c:b3:3b:c5
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICDWgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMDA5Mjkw
OTU0MzFaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEREOThDRTNCM0QxN0NE
QUMxMzg0QjlDNDMwQzVEMkI3RUJDNTE3QUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDIb4smSB37p8uc0RdBwP+NTDBo2wL8bhLioTjZcsIk+0d0iXxh
v0t7x9ygFDwrP/LSwvfLncESoBrCxTFp6m2K4hgvqPohKK/wuyNRwitGAWKOW9TO
7iRSvw3QVQ9s6sm57hM4SOmZe3Ak/lXy+bAo5rmNZq43VYHRv06SExFLRuOMeDjv
dwd37f4wFvCDH7hZM0l2HnC/QyPFoxxcsKwtjRji5MJG09Ox+4Pezo5U+tRRBGaN
MoYS5khHtdQMsmbenCQoVQFvx3NGvn7/Yf5RWmgsxibyz41dqSBT8r4E7azVCiSW
UGqEmoH9RsQ2pyZtVskiC4pKO1/3UZrR2VRHAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQU3ZjOOz0XzawThLnEMMXSt+vFF6owHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzNaak9PejBYemF3VGhMbkVN
TVhTdC12RkY2by5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAF2
6XgwDQYJKoZIhvcNAQELBQADggEBAKo26wYIpz0bCgtrKSnsmFKi9usv5GiIbboS
whmEus/mK3eKYMx252VZFSx2msEcjeTYvfFXMlqsTGDOwxKopwtZNTWT6oNYcqM9
SA49DGH+VrmeeTG78ZByVpi6Pb2fZoz4meAZSESDmeJjo625B/Y4io/W6OWiwFde
RkjuC4DPKH4O/tJUmTSzSWa5wTyHFTzONMLmEQzGanrxKdxja5ahWi5cjutN3/X/
+R/XEFoSyGVVzIokdlZ2gUGf2LJOGTgvMuEYQW5V1cgbNeKuSXBUY1YKVTjQpnHl
/Gl6lHCyWAKUsj9mz0eS+mXHK5YbYz0/TmXwlZMS9Yj2OhyzO8U=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:28:49 2025 by rpki-client