Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/72KU2ocMaGzdGLOrNJb8EweuzZA.roa
File: 72KU2ocMaGzdGLOrNJb8EweuzZA.roa (raw, json)
Hash identifier: zFIdsNdpXleK3n0NnrtfH1cjZUYbd1MQm+eJQoNyT2k=
Subject key identifier: EF:62:94:DA:87:0C:68:6C:DD:18:B3:AB:34:96:FC:13:07:AE:CD:90
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 10AA
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/72KU2ocMaGzdGLOrNJb8EweuzZA.roa
Signing time: Wed 25 Nov 2020 03:45:59 +0000
ROA not before: Wed 25 Nov 2020 03:45:59 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 118.232.244.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4266 (0x10aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 03:45:59 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=EF6294DA870C686CDD18B3AB3496FC1307AECD90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:7a:c8:0a:0f:f4:e8:81:59:4b:d1:b9:c2:46:
8d:46:11:34:8e:be:c5:6b:bd:4f:c5:37:02:17:c6:
5b:a7:55:1e:b3:bc:c4:10:49:94:c7:69:b0:80:33:
3e:ee:17:54:11:21:fc:2b:3f:1d:68:a0:06:72:c1:
73:e0:42:0c:01:41:72:90:dc:cf:dc:fc:99:40:27:
f1:f6:dd:0e:08:65:51:e8:20:70:fd:29:78:2e:9d:
78:f9:0f:91:96:88:3e:bc:02:d3:aa:b1:2b:01:00:
f2:b7:13:bc:ae:50:4b:05:1c:6e:a0:65:7b:61:41:
a3:e4:10:17:52:b7:14:4e:45:35:9d:ca:5f:18:98:
51:11:34:39:57:eb:76:ad:f6:94:67:a6:16:07:02:
4e:34:32:00:1a:5a:86:22:5a:01:73:de:8a:6d:9c:
ce:62:46:b5:da:d3:3b:6f:44:a1:52:6e:b7:41:ed:
c8:a6:14:65:3a:90:e8:99:d0:77:88:41:7c:e4:3d:
87:94:35:2f:e0:50:6e:b8:c5:fc:40:c3:36:46:b1:
5c:b8:e4:ae:38:17:c9:f0:85:2a:b4:69:e1:93:73:
4b:b8:6c:70:eb:1c:b4:a2:e0:5f:b7:d4:b1:63:50:
1e:7d:22:e2:d8:87:06:64:ba:3d:69:b5:26:3a:d9:
66:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:62:94:DA:87:0C:68:6C:DD:18:B3:AB:34:96:FC:13:07:AE:CD:90
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/72KU2ocMaGzdGLOrNJb8EweuzZA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.244.0/22
Signature Algorithm: sha256WithRSAEncryption
05:ed:a5:d6:e3:c7:13:81:bc:84:f7:37:14:93:34:d2:4e:e1:
6e:78:7c:0c:4d:6f:79:74:a6:91:96:cc:3d:75:71:34:52:d7:
b2:ef:7b:75:d0:8d:12:d7:8b:a1:ee:59:44:c9:bd:41:b2:13:
21:d3:a8:bc:ce:92:ce:ef:e5:81:1c:41:9e:d2:37:6e:34:f5:
60:69:10:93:76:d2:f4:73:8c:ca:f0:38:ca:3c:b0:d7:99:6c:
4a:ad:8d:6f:b2:08:b5:04:62:fc:9f:66:c7:71:e8:7b:a9:e5:
de:0a:0e:47:f1:a1:5c:40:ec:c4:cd:b4:b7:46:29:29:5d:db:
47:06:92:2b:e0:71:4c:c0:cc:f3:23:ea:c5:ac:df:ff:17:27:
09:fe:c2:69:53:89:56:e1:86:e8:d2:32:bf:6a:56:0d:3e:5b:
7a:da:fe:db:9d:a6:b4:db:31:29:32:58:ff:ba:6b:63:8e:d0:
c1:c2:16:57:16:07:8e:07:78:23:81:7c:13:3a:fe:43:d7:3e:
6b:5d:98:38:c6:63:4b:da:48:ea:98:f9:c0:d5:7d:e5:f8:99:
8d:ab:17:1d:11:e0:ce:4b:2b:9e:15:e2:79:45:45:89:35:1e:
29:8a:d5:1b:0b:a6:9e:1b:4b:fc:e9:58:80:12:cc:25:68:f3:
96:a8:67:ba
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICEKowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMDExMjUw
MzQ1NTlaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEVGNjI5NERBODcwQzY4
NkNERDE4QjNBQjM0OTZGQzEzMDdBRUNEOTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC9esgKD/TogVlL0bnCRo1GETSOvsVrvU/FNwIXxlunVR6zvMQQ
SZTHabCAMz7uF1QRIfwrPx1ooAZywXPgQgwBQXKQ3M/c/JlAJ/H23Q4IZVHoIHD9
KXgunXj5D5GWiD68AtOqsSsBAPK3E7yuUEsFHG6gZXthQaPkEBdStxRORTWdyl8Y
mFERNDlX63at9pRnphYHAk40MgAaWoYiWgFz3optnM5iRrXa0ztvRKFSbrdB7cim
FGU6kOiZ0HeIQXzkPYeUNS/gUG64xfxAwzZGsVy45K44F8nwhSq0aeGTc0u4bHDr
HLSi4F+31LFjUB59IuLYhwZkuj1ptSY62WZxAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQU72KU2ocMaGzdGLOrNJb8EweuzZAwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzcyS1Uyb2NNYUd6ZEdMT3JO
SmI4RXdldXpaQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2
6PQwDQYJKoZIhvcNAQELBQADggEBAAXtpdbjxxOBvIT3NxSTNNJO4W54fAxNb3l0
ppGWzD11cTRS17Lve3XQjRLXi6HuWUTJvUGyEyHTqLzOks7v5YEcQZ7SN2409WBp
EJN20vRzjMrwOMo8sNeZbEqtjW+yCLUEYvyfZsdx6Hup5d4KDkfxoVxA7MTNtLdG
KSld20cGkivgcUzAzPMj6sWs3/8XJwn+wmlTiVbhhujSMr9qVg0+W3ra/tudprTb
MSkyWP+6a2OO0MHCFlcWB44HeCOBfBM6/kPXPmtdmDjGY0vaSOqY+cDVfeX4mY2r
Fx0R4M5LK54V4nlFRYk1HimK1RsLpp4bS/zpWIASzCVo85aoZ7o=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:48 2024 by rpki-client on console-fra.rpki-client.org