Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3hsDwS_Kx4kwK5w8HApjdy8vBcs.roa
File: 3hsDwS_Kx4kwK5w8HApjdy8vBcs.roa (raw, json)
Hash identifier: T7jXSeJz4AG3rYJ2bN34JJLtS5DGIG7cTwGeopMtgsA=
Subject key identifier: DE:1B:03:C1:2F:CA:C7:89:30:2B:9C:3C:1C:0A:63:77:2F:2F:05:CB
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 219A
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3hsDwS_Kx4kwK5w8HApjdy8vBcs.roa
Signing time: Fri 25 Nov 2022 04:40:06 +0000
ROA not before: Fri 25 Nov 2022 04:40:06 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.193.156.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8602 (0x219a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:40:06 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=DE1B03C12FCAC789302B9C3C1C0A63772F2F05CB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:ba:05:a3:e1:a8:51:ea:8e:74:cb:dd:85:61:
6e:84:8a:66:6d:82:03:5a:b2:44:8a:c1:37:f7:b7:
f3:18:4b:6d:12:69:62:77:5b:19:aa:e7:2d:14:03:
b0:14:59:9d:ff:87:f5:f3:3c:77:1a:f0:fe:bb:47:
1a:08:3a:6d:e6:b0:3c:e6:38:33:a3:c5:cc:bf:30:
0d:b5:90:f1:0a:29:64:c4:b6:0c:38:f4:a8:b6:c9:
3b:88:77:84:b6:bf:9b:3e:f5:02:21:df:47:91:5a:
95:50:cf:e3:b0:11:28:bf:89:53:e0:1c:40:63:b4:
8f:bc:b1:7d:d5:7f:6d:62:ee:0a:69:b2:af:96:a0:
7a:77:db:5d:00:90:eb:b2:52:3c:f3:2b:e2:38:a2:
11:2b:fa:a5:a9:93:91:f4:ea:45:c4:74:55:d8:84:
61:d8:53:7b:c5:57:ac:96:9e:03:35:0c:a2:0f:dd:
4f:58:7c:0f:87:dd:32:9e:6e:1e:44:a4:f1:ad:bd:
0d:7c:95:ed:0a:85:ab:1e:14:19:bd:90:e0:88:ef:
75:47:74:a7:fd:84:94:f5:d2:bd:d5:bb:b0:25:1f:
dd:cf:16:06:a5:52:48:8e:e9:4b:a1:96:8c:9f:7c:
08:fc:47:a3:7b:b3:b7:96:9b:dc:e7:cc:ba:07:43:
85:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:1B:03:C1:2F:CA:C7:89:30:2B:9C:3C:1C:0A:63:77:2F:2F:05:CB
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3hsDwS_Kx4kwK5w8HApjdy8vBcs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.156.0/22
Signature Algorithm: sha256WithRSAEncryption
82:f2:6d:f2:ff:83:db:20:ec:a0:b8:64:02:af:5c:78:dd:0a:
68:d1:ac:e3:c3:fa:d5:b9:97:59:2b:2d:87:ae:16:6f:de:5f:
d4:43:fb:0b:38:0c:89:63:7e:3b:bd:d6:a5:0e:dc:fa:69:b1:
e9:12:9b:f9:06:1d:4b:6b:5e:1a:e1:44:29:3a:db:2b:27:5f:
90:c3:6c:83:aa:f0:28:be:f1:6b:d4:ab:a1:fd:f2:46:a6:41:
c9:b3:39:95:72:23:30:76:88:61:07:cc:96:8e:f1:8f:ca:a3:
ce:1b:f8:33:17:5d:af:be:0d:f9:06:15:00:93:76:2e:61:71:
ea:19:82:a1:f9:a4:11:66:d3:74:08:33:d9:0b:15:6f:06:16:
1b:57:b4:e6:c5:bf:8a:70:8a:b2:1e:45:a0:0b:ba:f9:d5:e2:
19:9e:93:cc:df:65:ec:79:51:bf:2e:57:81:ab:c2:77:fb:f8:
63:2c:f8:39:a5:dc:05:a9:1b:c7:78:66:7f:5f:78:98:47:35:
2c:f8:92:44:f3:61:e3:93:41:5b:35:37:31:95:c9:41:7c:6e:
12:96:1a:93:e2:b2:16:18:a1:69:f9:6b:18:b0:b5:74:51:89:
8a:9b:a7:63:b9:01:3d:74:32:d2:eb:11:14:7b:81:b1:aa:b3:
10:8f:f1:f4
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICIZowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMjExMjUw
NDQwMDZaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKERFMUIwM0MxMkZDQUM3
ODkzMDJCOUMzQzFDMEE2Mzc3MkYyRjA1Q0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCeugWj4ahR6o50y92FYW6EimZtggNaskSKwTf3t/MYS20SaWJ3
Wxmq5y0UA7AUWZ3/h/XzPHca8P67RxoIOm3msDzmODOjxcy/MA21kPEKKWTEtgw4
9Ki2yTuId4S2v5s+9QIh30eRWpVQz+OwESi/iVPgHEBjtI+8sX3Vf21i7gppsq+W
oHp3210AkOuyUjzzK+I4ohEr+qWpk5H06kXEdFXYhGHYU3vFV6yWngM1DKIP3U9Y
fA+H3TKebh5EpPGtvQ18le0KhaseFBm9kOCI73VHdKf9hJT10r3Vu7AlH93PFgal
UkiO6UuhloyffAj8R6N7s7eWm9znzLoHQ4UDAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQU3hsDwS/Kx4kwK5w8HApjdy8vBcswHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzNoc0R3U19LeDRrd0s1dzhI
QXBqZHk4dkJjcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7
wZwwDQYJKoZIhvcNAQELBQADggEBAILybfL/g9sg7KC4ZAKvXHjdCmjRrOPD+tW5
l1krLYeuFm/eX9RD+ws4DIljfju91qUO3PppsekSm/kGHUtrXhrhRCk62ysnX5DD
bIOq8Ci+8WvUq6H98kamQcmzOZVyIzB2iGEHzJaO8Y/Ko84b+DMXXa++DfkGFQCT
di5hceoZgqH5pBFm03QIM9kLFW8GFhtXtObFv4pwirIeRaALuvnV4hmek8zfZex5
Ub8uV4Grwnf7+GMs+Dml3AWpG8d4Zn9feJhHNSz4kkTzYeOTQVs1NzGVyUF8bhKW
GpPishYYoWn5axiwtXRRiYqbp2O5AT10MtLrERR7gbGqsxCP8fQ=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:30:35 2025 by rpki-client