Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/A2U1JEjX_UMYaUETYNbkuVADl64.roa
File: A2U1JEjX_UMYaUETYNbkuVADl64.roa (raw, json)
Hash identifier: dkFmW7QsT++oGZgxbPVj5KcNO/8zOVr63q05cv8Gk6A=
Subject key identifier: 03:65:35:24:48:D7:FD:43:18:69:41:13:60:D6:E4:B9:50:03:97:AE
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2B10
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/A2U1JEjX_UMYaUETYNbkuVADl64.roa
Signing time: Fri 01 Sep 2023 10:09:48 +0000
ROA not before: Fri 01 Sep 2023 10:09:48 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 123.194.16.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11024 (0x2b10)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:09:48 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=0365352448D7FD431869411360D6E4B9500397AE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:f3:a2:f1:b2:7d:4d:55:ea:93:b8:08:e7:38:
8c:26:2d:61:8c:cd:44:ba:6e:cb:29:3a:d4:ba:f0:
61:0f:4a:06:ab:cd:20:3e:30:65:d6:44:17:24:e1:
05:c4:ea:2e:11:10:5a:2f:23:de:4f:9d:3b:4c:44:
75:11:5c:36:62:9d:6e:02:4b:d4:68:a6:d0:5f:43:
4c:fc:61:ba:f1:12:85:75:a7:12:57:b9:6d:c6:0d:
c7:24:d2:bd:18:2a:f3:13:3e:b5:f8:16:92:38:90:
fd:09:b5:9d:43:29:ed:61:d1:7f:b4:50:4a:2c:d4:
f2:be:0a:08:3b:b3:97:0d:4f:8b:1d:05:1a:7c:91:
ab:69:67:97:5b:2f:ed:bc:d4:72:2f:82:87:44:aa:
23:28:fb:1f:52:bf:7c:ad:2e:38:52:2f:92:d7:2f:
80:2e:c8:cf:bb:9c:ad:69:98:e5:db:72:1e:fd:73:
f1:e5:7f:d1:0f:b1:32:64:65:20:e3:e9:7d:e4:28:
fd:41:62:d2:9d:0c:36:6a:b1:1d:31:98:da:f1:8e:
9a:63:8c:24:2b:53:0b:23:29:93:c2:17:7c:1b:2f:
a8:24:2e:dd:23:9a:ea:0d:88:be:00:cd:01:2c:06:
71:c7:70:ec:10:9c:7a:d6:3f:44:d8:08:86:d8:ab:
a5:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:65:35:24:48:D7:FD:43:18:69:41:13:60:D6:E4:B9:50:03:97:AE
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/A2U1JEjX_UMYaUETYNbkuVADl64.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.16.0/22
Signature Algorithm: sha256WithRSAEncryption
ba:88:c1:d9:bc:af:9e:8c:95:66:8f:60:6e:de:24:a9:44:c7:
b3:0e:78:4c:e4:03:82:f8:5c:e1:73:2c:ef:c0:8f:a2:34:d3:
f0:ab:3d:95:7d:13:52:a9:dd:0c:71:f3:fc:87:7c:42:eb:b9:
e1:0f:50:7b:ac:40:78:16:eb:26:fe:93:fe:18:6a:e0:a0:40:
56:65:55:7d:d2:be:88:f6:81:ae:bc:d9:4f:80:b8:53:26:a9:
60:e0:53:c0:fd:8d:45:74:a6:f8:3d:d5:49:df:9e:2e:74:bd:
41:29:5f:0b:ba:1b:e9:49:90:23:06:51:d9:cd:9b:80:b2:b7:
ef:ab:90:7b:4b:ce:f9:5d:11:dd:e5:6f:93:10:05:dc:a4:6d:
f5:2f:bd:9a:cc:e7:23:13:e5:01:97:ea:d6:8f:0c:54:83:71:
7f:36:65:2c:ec:36:98:8a:40:52:5d:81:52:38:57:eb:e9:4d:
55:1c:e6:27:31:10:a8:54:94:eb:cc:e8:ff:7e:44:e5:13:0e:
f7:1d:e6:c2:d9:9d:0e:1f:17:38:10:1d:0d:e1:42:e3:7a:f2:
66:48:7d:f2:b7:86:32:8c:06:01:32:b7:21:1a:42:4e:da:e1:
ad:a5:0b:19:53:a1:26:b8:b7:13:54:f0:77:9e:6a:35:04:45:
f1:c7:9e:e0
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICKxAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx
MDA5NDhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDAzNjUzNTI0NDhEN0ZE
NDMxODY5NDExMzYwRDZFNEI5NTAwMzk3QUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDH86Lxsn1NVeqTuAjnOIwmLWGMzUS6bsspOtS68GEPSgarzSA+
MGXWRBck4QXE6i4REFovI95PnTtMRHURXDZinW4CS9RoptBfQ0z8YbrxEoV1pxJX
uW3GDcck0r0YKvMTPrX4FpI4kP0JtZ1DKe1h0X+0UEos1PK+Cgg7s5cNT4sdBRp8
katpZ5dbL+281HIvgodEqiMo+x9Sv3ytLjhSL5LXL4AuyM+7nK1pmOXbch79c/Hl
f9EPsTJkZSDj6X3kKP1BYtKdDDZqsR0xmNrxjppjjCQrUwsjKZPCF3wbL6gkLt0j
muoNiL4AzQEsBnHHcOwQnHrWP0TYCIbYq6V7AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUA2U1JEjX/UMYaUETYNbkuVADl64wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0EyVTFKRWpYX1VNWWFVRVRZ
TmJrdVZBRGw2NC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7
whAwDQYJKoZIhvcNAQELBQADggEBALqIwdm8r56MlWaPYG7eJKlEx7MOeEzkA4L4
XOFzLO/Aj6I00/CrPZV9E1Kp3Qxx8/yHfELrueEPUHusQHgW6yb+k/4YauCgQFZl
VX3Svoj2ga682U+AuFMmqWDgU8D9jUV0pvg91Unfni50vUEpXwu6G+lJkCMGUdnN
m4Cyt++rkHtLzvldEd3lb5MQBdykbfUvvZrM5yMT5QGX6taPDFSDcX82ZSzsNpiK
QFJdgVI4V+vpTVUc5icxEKhUlOvM6P9+ROUTDvcd5sLZnQ4fFzgQHQ3hQuN68mZI
ffK3hjKMBgEytyEaQk7a4a2lCxlToSa4txNU8HeeajUERfHHnuA=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:28:59 2025 by rpki-client