Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/4dNIGA0z2eopdzhjVdtultKyQGg.roa
File: 4dNIGA0z2eopdzhjVdtultKyQGg.roa (raw, json)
Hash identifier: Cr5xiUVoNCo/Smk/JEH0A2KQdMKzHTFPBL/W5SwNTUE=
Subject key identifier: E1:D3:48:18:0D:33:D9:EA:29:77:38:63:55:DB:6E:96:D2:B2:40:68
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1F90
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/4dNIGA0z2eopdzhjVdtultKyQGg.roa
Signing time: Thu 08 Sep 2022 10:08:32 +0000
ROA not before: Thu 08 Sep 2022 10:08:32 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 106.1.0.0/21 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8080 (0x1f90)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 8 10:08:32 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E1D348180D33D9EA2977386355DB6E96D2B24068
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:5c:6e:a8:4b:0c:04:12:de:70:83:10:fa:37:
21:12:1b:25:7c:6b:d2:3f:a0:ca:4e:e5:64:28:d4:
16:0e:0a:60:47:a9:7f:49:42:0d:f8:df:ee:63:c5:
b3:3d:00:5f:33:56:fb:f7:0f:9d:ac:f8:2f:77:a2:
69:ec:91:e5:b1:5b:08:49:36:04:e2:78:88:7c:3c:
60:c2:f7:0c:6d:20:10:cf:ae:4c:f7:4a:13:21:3e:
d1:23:06:7f:4e:43:88:b9:28:55:33:f4:56:6c:de:
7c:d7:53:3f:21:75:4b:1d:7e:1b:a5:e1:34:98:ad:
8d:ce:a5:0f:ef:db:44:41:31:f4:47:b6:fe:af:0c:
a7:e4:c9:2f:09:12:cc:dc:ef:b0:35:5f:5f:7a:90:
8c:4b:38:07:c5:ef:e1:83:3c:b8:31:3d:3f:ae:57:
67:a0:c7:77:10:dd:5d:94:ec:ac:97:bb:00:81:5d:
77:58:2d:cf:12:71:69:95:4e:12:e4:10:a8:cc:18:
fe:3f:ea:90:7d:68:be:ff:d0:06:45:25:f6:1e:88:
21:ce:38:a0:b7:d6:6c:b4:af:d0:7f:c6:d8:e5:ec:
62:81:0a:08:2f:f2:5b:cf:fb:d6:f6:82:ea:71:d7:
ac:cf:68:73:a4:3b:7f:ae:65:cc:64:dd:54:99:9e:
af:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:D3:48:18:0D:33:D9:EA:29:77:38:63:55:DB:6E:96:D2:B2:40:68
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/4dNIGA0z2eopdzhjVdtultKyQGg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.0.0/21
Signature Algorithm: sha256WithRSAEncryption
b4:9c:e1:a3:82:59:0f:b6:ea:9f:14:91:c7:a5:39:91:8b:e9:
78:49:da:d6:9c:de:7e:ff:9f:a6:10:14:58:fb:d2:1e:54:54:
75:45:1b:57:da:d5:5f:6e:71:a0:81:8a:ee:f1:67:62:cc:55:
f0:38:47:f4:06:cc:cf:20:ea:09:8a:90:30:20:d7:d2:43:bc:
91:27:29:22:17:eb:7e:5e:93:90:66:d8:c2:bf:02:9c:cb:17:
61:d3:70:9b:09:e6:b1:21:88:b8:b8:11:c4:bb:48:34:49:be:
70:06:bb:48:a1:9f:9c:75:64:fc:0a:0a:2a:22:c0:97:e5:1e:
c8:93:38:c7:94:9b:c6:43:7c:ce:0d:17:69:12:75:05:e9:1a:
37:cf:bb:ca:72:9c:08:9f:94:87:bc:ca:b2:ac:6f:98:da:25:
00:b0:08:31:8c:ab:f3:a4:ba:d8:ce:8f:5c:5f:8a:64:b1:ec:
2f:9b:47:cf:4d:ae:02:e6:98:8b:09:3a:c4:4a:8b:55:dd:44:
8b:0d:f9:a2:11:da:cf:b2:c5:c3:53:e8:ac:c2:f4:0a:db:0b:
9e:4c:5a:cf:37:42:a9:fe:09:0c:8a:b1:a1:08:f5:73:8b:2f:
74:7d:97:44:c4:27:87:70:2f:37:96:1b:15:2e:98:d3:9a:96:
52:26:91:28
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICH5AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMjA5MDgx
MDA4MzJaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEUxRDM0ODE4MEQzM0Q5
RUEyOTc3Mzg2MzU1REI2RTk2RDJCMjQwNjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDEXG6oSwwEEt5wgxD6NyESGyV8a9I/oMpO5WQo1BYOCmBHqX9J
Qg343+5jxbM9AF8zVvv3D52s+C93omnskeWxWwhJNgTieIh8PGDC9wxtIBDPrkz3
ShMhPtEjBn9OQ4i5KFUz9FZs3nzXUz8hdUsdfhul4TSYrY3OpQ/v20RBMfRHtv6v
DKfkyS8JEszc77A1X196kIxLOAfF7+GDPLgxPT+uV2egx3cQ3V2U7KyXuwCBXXdY
Lc8ScWmVThLkEKjMGP4/6pB9aL7/0AZFJfYeiCHOOKC31my0r9B/xtjl7GKBCggv
8lvP+9b2gupx16zPaHOkO3+uZcxk3VSZnq/RAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQU4dNIGA0z2eopdzhjVdtultKyQGgwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzRkTklHQTB6MmVvcGR6aGpW
ZHR1bHRLeVFHZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBANq
AQAwDQYJKoZIhvcNAQELBQADggEBALSc4aOCWQ+26p8UkcelOZGL6XhJ2tac3n7/
n6YQFFj70h5UVHVFG1fa1V9ucaCBiu7xZ2LMVfA4R/QGzM8g6gmKkDAg19JDvJEn
KSIX635ek5Bm2MK/ApzLF2HTcJsJ5rEhiLi4EcS7SDRJvnAGu0ihn5x1ZPwKCioi
wJflHsiTOMeUm8ZDfM4NF2kSdQXpGjfPu8pynAiflIe8yrKsb5jaJQCwCDGMq/Ok
utjOj1xfimSx7C+bR89NrgLmmIsJOsRKi1XdRIsN+aIR2s+yxcNT6KzC9ArbC55M
Ws83Qqn+CQyKsaEI9XOLL3R9l0TEJ4dwLzeWGxUumNOallImkSg=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:47 2024 by rpki-client on console-fra.rpki-client.org