Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/BKfM8L0YYGretJVOXJYIIxR6Dbg.roa
File: BKfM8L0YYGretJVOXJYIIxR6Dbg.roa (raw, json)
Hash identifier: VRXeWjwcxUNL27s7ejM857Ub42ae+2F3U4WLp4hjYzg=
Subject key identifier: 04:A7:CC:F0:BD:18:60:6A:DE:B4:95:4E:5C:96:08:23:14:7A:0D:B8
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1B5F
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/BKfM8L0YYGretJVOXJYIIxR6Dbg.roa
Signing time: Wed 29 Sep 2021 02:46:31 +0000
ROA not before: Wed 29 Sep 2021 02:46:31 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 123.194.240.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7007 (0x1b5f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:46:31 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=04A7CCF0BD18606ADEB4954E5C960823147A0DB8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:eb:30:29:db:e0:45:84:55:02:e4:50:ca:21:
14:36:99:21:88:75:bd:51:ea:10:83:e1:4e:fe:bd:
a3:5f:e3:f3:49:30:e0:a8:6f:d9:fe:c2:8b:c4:0b:
13:15:ad:eb:5a:5c:c0:a9:04:53:b3:09:ab:de:1b:
88:51:54:73:09:40:17:11:46:bf:cc:09:74:bb:fe:
13:36:81:b6:e3:a1:00:44:69:9e:6c:7a:0b:27:8c:
33:3c:7a:fa:dd:7e:a0:57:4b:81:c2:58:e5:c1:d1:
08:1a:a7:f7:f8:3e:32:fc:02:ce:31:bc:92:d3:54:
08:a3:98:66:eb:fd:b3:7b:2d:02:6b:57:46:50:01:
d4:24:d6:f2:17:79:8f:be:3d:a6:67:44:0d:39:64:
cf:7e:2e:1b:96:1f:3a:d0:e2:b9:ae:19:e4:c5:d4:
c0:96:21:7a:eb:56:81:80:b3:97:48:d3:ad:f5:04:
96:ab:8d:86:fc:30:ac:72:9c:c4:1e:1e:64:2e:64:
fb:0f:b5:d6:cb:42:46:cc:a6:77:18:56:df:e9:06:
21:2e:62:90:ed:15:35:97:4d:c1:d8:22:e9:14:0f:
a7:8b:24:ae:2d:84:9d:84:b6:ba:38:ea:50:bc:63:
f4:3e:88:a6:d9:70:83:df:56:5e:4c:ef:04:9b:94:
e3:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:A7:CC:F0:BD:18:60:6A:DE:B4:95:4E:5C:96:08:23:14:7A:0D:B8
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/BKfM8L0YYGretJVOXJYIIxR6Dbg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.240.0/21
Signature Algorithm: sha256WithRSAEncryption
b4:31:4e:3e:0e:ab:07:73:20:18:fa:43:de:ad:37:40:76:a4:
86:35:4f:c5:2b:75:5f:0c:59:58:ad:ee:05:3a:3c:a4:15:75:
33:f5:cf:79:dc:97:99:eb:52:4b:4d:79:ca:90:ad:51:6a:69:
69:45:34:f8:65:e2:95:8f:66:fb:d0:a6:a2:61:83:58:1f:07:
62:4d:5d:3f:28:b0:de:a2:6a:88:32:9c:b3:f2:0a:91:e0:f5:
76:22:99:c4:d4:60:02:27:ea:e1:65:46:07:71:b1:b2:b9:79:
6e:19:4d:75:a8:f1:cd:76:da:06:c5:bc:22:0a:86:e2:71:85:
fc:7e:21:7d:19:75:d7:5e:a2:a3:02:8b:56:be:3c:91:69:df:
ab:7c:74:89:ea:be:67:c8:9d:89:84:02:af:13:1f:83:ca:ed:
ec:b6:6b:9e:19:e3:09:99:c8:77:3e:c1:ce:b6:46:e0:22:4e:
f5:89:67:17:c7:9f:10:1c:ec:49:db:ec:19:a6:5e:c3:c3:02:
da:20:b6:81:eb:eb:d5:a8:ec:03:42:f8:88:ab:fd:c7:d0:ae:
47:82:53:6d:7c:23:c7:51:56:9a:9d:13:fc:aa:c1:cc:53:9d:
fd:3c:9b:60:14:11:c7:d4:6b:0f:0b:72:9d:94:ec:85:7a:00:
31:dc:b3:1b
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICG18wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMTA5Mjkw
MjQ2MzFaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDA0QTdDQ0YwQkQxODYw
NkFERUI0OTU0RTVDOTYwODIzMTQ3QTBEQjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC96zAp2+BFhFUC5FDKIRQ2mSGIdb1R6hCD4U7+vaNf4/NJMOCo
b9n+wovECxMVretaXMCpBFOzCaveG4hRVHMJQBcRRr/MCXS7/hM2gbbjoQBEaZ5s
egsnjDM8evrdfqBXS4HCWOXB0Qgap/f4PjL8As4xvJLTVAijmGbr/bN7LQJrV0ZQ
AdQk1vIXeY++PaZnRA05ZM9+LhuWHzrQ4rmuGeTF1MCWIXrrVoGAs5dI0631BJar
jYb8MKxynMQeHmQuZPsPtdbLQkbMpncYVt/pBiEuYpDtFTWXTcHYIukUD6eLJK4t
hJ2Etro46lC8Y/Q+iKbZcIPfVl5M7wSblOOdAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUBKfM8L0YYGretJVOXJYIIxR6DbgwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0JLZk04TDBZWUdyZXRKVk9Y
SllJSXhSNkRiZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7
wvAwDQYJKoZIhvcNAQELBQADggEBALQxTj4OqwdzIBj6Q96tN0B2pIY1T8UrdV8M
WVit7gU6PKQVdTP1z3ncl5nrUktNecqQrVFqaWlFNPhl4pWPZvvQpqJhg1gfB2JN
XT8osN6iaogynLPyCpHg9XYimcTUYAIn6uFlRgdxsbK5eW4ZTXWo8c122gbFvCIK
huJxhfx+IX0ZdddeoqMCi1a+PJFp36t8dInqvmfInYmEAq8TH4PK7ey2a54Z4wmZ
yHc+wc62RuAiTvWJZxfHnxAc7Enb7BmmXsPDAtogtoHr69Wo7ANC+Iir/cfQrkeC
U218I8dRVpqdE/yqwcxTnf08m2AUEcfUaw8Lcp2U7IV6ADHcsxs=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:48 2024 by rpki-client on console-fra.rpki-client.org