Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/AQd1uNdJenMr6NylPqk8lmT5wuA.roa
File: AQd1uNdJenMr6NylPqk8lmT5wuA.roa (raw, json)
Hash identifier: wa4OHML4ULOrvOOgnR4d5i8F20faW0Vofy1zCsSAxo4=
Subject key identifier: 01:07:75:B8:D7:49:7A:73:2B:E8:DC:A5:3E:A9:3C:96:64:F9:C2:E0
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 16D1
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/AQd1uNdJenMr6NylPqk8lmT5wuA.roa
Signing time: Sun 07 Feb 2021 12:14:34 +0000
ROA not before: Sun 07 Feb 2021 12:14:34 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 106.1.188.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5841 (0x16d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:14:34 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=010775B8D7497A732BE8DCA53EA93C9664F9C2E0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d9:0a:65:3e:ec:bc:65:b1:f7:ed:d5:9a:43:
cb:cd:1d:bd:e4:81:ce:9e:1f:70:2a:24:a8:29:54:
60:39:07:a1:d6:b2:89:8a:f7:94:10:7b:57:3d:37:
3f:53:b1:67:93:80:0e:bf:d4:7b:f7:37:3b:98:c0:
1d:59:ed:27:d3:25:fc:01:cf:2a:8e:ea:af:e6:b7:
94:4b:3e:d3:04:88:6d:88:7d:2f:a5:4c:f8:4f:f7:
21:80:25:21:2e:71:23:c6:6f:4e:4e:a8:49:70:38:
dc:08:05:e1:25:2b:8e:ee:9a:d6:7b:b5:63:f9:43:
d1:01:c7:26:4a:ef:d8:ed:8f:43:86:a0:4a:6c:b3:
cc:f3:25:03:b3:3b:f2:7f:52:ce:40:51:21:0a:3f:
8a:e7:ff:b8:29:01:e2:5f:09:3f:6f:d9:ea:2d:72:
d3:5b:26:bc:2d:03:3a:79:ac:46:47:e8:68:06:fe:
83:b1:4b:66:29:57:ca:e6:38:2a:ac:15:8a:32:9b:
b2:f1:b9:9c:fd:2e:c5:3c:14:63:3e:58:0a:cd:b1:
a3:a2:3e:5f:bf:10:b0:46:df:01:78:63:2e:f3:9b:
00:1c:c5:b8:c2:82:5e:18:c3:74:45:a0:61:95:96:
93:c3:1e:a7:51:d1:b0:9f:c8:68:dd:c4:9a:f8:38:
0d:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:07:75:B8:D7:49:7A:73:2B:E8:DC:A5:3E:A9:3C:96:64:F9:C2:E0
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/AQd1uNdJenMr6NylPqk8lmT5wuA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.188.0/22
Signature Algorithm: sha256WithRSAEncryption
20:eb:c8:bc:fd:28:89:90:b6:81:96:83:34:f3:49:01:49:4f:
6f:a6:1c:a8:c8:1c:c8:60:dd:66:10:21:39:0d:ee:f8:8e:ae:
9b:ae:ac:f7:0a:af:04:3b:ec:5f:98:6e:68:5a:9a:88:05:b6:
36:9b:c9:a1:8f:7a:4b:0d:04:94:83:7e:f0:62:91:a0:2a:05:
7f:35:08:61:d1:b9:02:d3:69:b6:fd:bc:01:c8:e5:ef:a8:5c:
92:a3:d9:fc:9c:a3:1a:e5:af:3c:ae:11:e2:a3:72:84:93:b2:
e5:30:a0:ec:fd:cb:41:86:e3:25:b6:94:41:7b:d2:5d:64:76:
b0:cd:b4:2b:b6:e2:57:2e:9a:3d:78:38:d6:93:b0:39:03:06:
e4:69:ca:85:dd:67:68:7a:47:76:85:f3:1a:90:f8:89:0b:6c:
14:84:08:9b:6c:97:fd:39:25:a5:73:07:14:88:ac:92:b2:2c:
de:48:bd:70:fa:f0:f5:f4:6d:7b:09:18:56:12:c8:c7:60:df:
22:07:ee:1b:7b:c4:57:64:d3:68:c3:b7:6e:fa:e4:98:63:86:
3b:0c:84:01:48:60:87:4c:1c:de:f5:f6:5c:6b:57:6c:43:2f:
b5:fd:03:be:0b:21:00:ba:73:7c:ad:b3:93:39:3a:3e:cd:d3:
3e:dd:bd:34
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICFtEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMTAyMDcx
MjE0MzRaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDAxMDc3NUI4RDc0OTdB
NzMyQkU4RENBNTNFQTkzQzk2NjRGOUMyRTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC02QplPuy8ZbH37dWaQ8vNHb3kgc6eH3AqJKgpVGA5B6HWsomK
95QQe1c9Nz9TsWeTgA6/1Hv3NzuYwB1Z7SfTJfwBzyqO6q/mt5RLPtMEiG2IfS+l
TPhP9yGAJSEucSPGb05OqElwONwIBeElK47umtZ7tWP5Q9EBxyZK79jtj0OGoEps
s8zzJQOzO/J/Us5AUSEKP4rn/7gpAeJfCT9v2eotctNbJrwtAzp5rEZH6GgG/oOx
S2YpV8rmOCqsFYoym7LxuZz9LsU8FGM+WArNsaOiPl+/ELBG3wF4Yy7zmwAcxbjC
gl4Yw3RFoGGVlpPDHqdR0bCfyGjdxJr4OA1DAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUAQd1uNdJenMr6NylPqk8lmT5wuAwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0FRZDF1TmRKZW5NcjZOeWxQ
cWs4bG1UNXd1QS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJq
AbwwDQYJKoZIhvcNAQELBQADggEBACDryLz9KImQtoGWgzTzSQFJT2+mHKjIHMhg
3WYQITkN7viOrpuurPcKrwQ77F+YbmhamogFtjabyaGPeksNBJSDfvBikaAqBX81
CGHRuQLTabb9vAHI5e+oXJKj2fycoxrlrzyuEeKjcoSTsuUwoOz9y0GG4yW2lEF7
0l1kdrDNtCu24lcumj14ONaTsDkDBuRpyoXdZ2h6R3aF8xqQ+IkLbBSECJtsl/05
JaVzBxSIrJKyLN5IvXD68PX0bXsJGFYSyMdg3yIH7ht7xFdk02jDt2765JhjhjsM
hAFIYIdMHN719lxrV2xDL7X9A74LIQC6c3yts5M5Oj7N0z7dvTQ=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:25 2024 by rpki-client on console-ams.rpki-client.org