Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/4jDETPQ43pEHGzfZ7SzlfcEnrww.roa
File: 4jDETPQ43pEHGzfZ7SzlfcEnrww.roa (raw, json)
Hash identifier: UafowLjszt3mdZXihyj45ue+iBEvxKE+KTjTb3dML6Q=
Subject key identifier: E2:30:C4:4C:F4:38:DE:91:07:1B:37:D9:ED:2C:E5:7D:C1:27:AF:0C
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 29A3
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/4jDETPQ43pEHGzfZ7SzlfcEnrww.roa
Signing time: Fri 01 Sep 2023 10:06:52 +0000
ROA not before: Fri 01 Sep 2023 10:06:52 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9924
IP address blocks: 123.193.32.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10659 (0x29a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:06:52 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=E230C44CF438DE91071B37D9ED2CE57DC127AF0C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:96:ff:53:d2:9d:fc:44:bc:6b:4d:2b:ff:35:
f5:01:8b:55:be:be:b8:dd:c8:5a:4c:51:ad:54:a0:
5f:85:0c:98:c4:3a:4b:b7:a4:d0:15:cc:64:06:aa:
da:63:30:e1:6e:42:19:7c:81:41:24:e2:e6:5a:33:
f3:c7:ee:2e:ad:81:a6:0b:10:ae:f7:dd:e3:f7:e9:
e4:f4:ff:ae:d2:f8:05:60:7e:3f:c5:61:bc:6f:ca:
2b:f3:73:5a:35:f1:47:dc:ee:51:31:aa:3d:8a:34:
27:6a:c0:42:f9:1f:82:07:1d:e1:e7:cc:bf:5b:ff:
3c:be:b4:cd:5d:70:96:a6:f7:c3:77:d3:08:35:39:
55:d6:ae:bc:cd:37:4b:72:fa:4e:ab:d2:d6:72:be:
3f:37:97:6d:a2:0a:05:fc:34:b1:76:d9:8f:72:8c:
d5:7b:f6:d2:95:1b:7a:f7:cb:c3:e3:80:33:ec:b7:
75:bf:d8:1f:48:11:5c:44:7c:72:e9:0e:53:99:f6:
cd:0a:81:2d:d7:c1:fc:1c:12:f0:2d:15:53:b5:1c:
70:12:e3:eb:c3:d9:d3:80:8e:48:45:f5:6a:29:61:
e4:73:e6:0e:19:b9:eb:25:2e:f0:95:12:fe:70:f9:
da:5c:ba:16:4b:03:95:d7:2f:8d:b0:ae:0f:4e:e4:
b4:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:30:C4:4C:F4:38:DE:91:07:1B:37:D9:ED:2C:E5:7D:C1:27:AF:0C
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/4jDETPQ43pEHGzfZ7SzlfcEnrww.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.32.0/19
Signature Algorithm: sha256WithRSAEncryption
38:66:41:17:87:c2:19:d4:7e:3c:1f:7d:67:3a:0d:9a:19:64:
44:f6:53:62:92:16:6d:47:6a:e6:58:a8:18:79:56:80:27:fc:
c0:75:5a:88:87:41:00:f9:16:fa:49:ae:6d:75:1f:8b:0c:54:
67:ba:3a:2a:48:a3:2f:35:15:77:db:d1:84:fb:e2:e1:37:2a:
c0:2b:3b:37:a8:6e:b0:db:c3:05:c6:ae:fa:e1:0b:5e:b4:81:
31:19:ab:56:9a:9a:db:43:7e:33:40:3f:74:7a:9c:1e:98:e6:
3e:63:61:17:d6:1f:48:18:c2:02:48:07:69:e8:28:15:96:e2:
78:bd:79:6e:0a:b6:f1:b4:47:de:e3:2f:16:0a:e8:ac:0d:c8:
fc:06:1f:38:ad:78:51:32:9b:cd:0c:47:07:59:b7:f2:59:69:
29:b8:b0:40:ef:59:18:bf:ea:51:7f:34:17:58:07:95:99:0b:
38:b6:56:ea:d1:c8:97:d5:ba:c4:97:96:8b:c7:18:c4:ad:42:
85:e2:72:5f:4d:01:1b:71:b2:1e:6c:64:cc:c9:de:13:a5:6d:
f4:86:e1:ba:ba:4f:69:f5:81:05:0f:54:34:27:d0:7e:cc:dd:
22:ac:aa:bf:d4:26:59:b4:5c:d1:0b:53:a8:c6:aa:52:56:bf:
be:7e:ad:89
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICKaMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx
MDA2NTJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEUyMzBDNDRDRjQzOERF
OTEwNzFCMzdEOUVEMkNFNTdEQzEyN0FGMEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDYlv9T0p38RLxrTSv/NfUBi1W+vrjdyFpMUa1UoF+FDJjEOku3
pNAVzGQGqtpjMOFuQhl8gUEk4uZaM/PH7i6tgaYLEK733eP36eT0/67S+AVgfj/F
Ybxvyivzc1o18Ufc7lExqj2KNCdqwEL5H4IHHeHnzL9b/zy+tM1dcJam98N30wg1
OVXWrrzNN0ty+k6r0tZyvj83l22iCgX8NLF22Y9yjNV79tKVG3r3y8PjgDPst3W/
2B9IEVxEfHLpDlOZ9s0KgS3XwfwcEvAtFVO1HHAS4+vD2dOAjkhF9WopYeRz5g4Z
ueslLvCVEv5w+dpcuhZLA5XXL42wrg9O5LQ9AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQU4jDETPQ43pEHGzfZ7SzlfcEnrwwwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzRqREVUUFE0M3BFSEd6Zlo3
U3psZmNFbnJ3dy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAV7
wSAwDQYJKoZIhvcNAQELBQADggEBADhmQReHwhnUfjwffWc6DZoZZET2U2KSFm1H
auZYqBh5VoAn/MB1WoiHQQD5FvpJrm11H4sMVGe6OipIoy81FXfb0YT74uE3KsAr
OzeobrDbwwXGrvrhC160gTEZq1aamttDfjNAP3R6nB6Y5j5jYRfWH0gYwgJIB2no
KBWW4ni9eW4KtvG0R97jLxYK6KwNyPwGHziteFEym80MRwdZt/JZaSm4sEDvWRi/
6lF/NBdYB5WZCzi2VurRyJfVusSXlovHGMStQoXicl9NARtxsh5sZMzJ3hOlbfSG
4bq6T2n1gQUPVDQn0H7M3SKsqr/UJlm0XNELU6jGqlJWv75+rYk=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:27:42 2025 by rpki-client