Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/BNhqGrqdSZeMmX11r4-LC6g2cWo.roa
File: BNhqGrqdSZeMmX11r4-LC6g2cWo.roa (raw, json)
Hash identifier: mwlFkX3xyCcJVynbR3iVWhSzcZH+TS1fdwShrGmh3Uc=
Subject key identifier: 04:D8:6A:1A:BA:9D:49:97:8C:99:7D:75:AF:8F:8B:0B:A8:36:71:6A
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 0EA3
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/BNhqGrqdSZeMmX11r4-LC6g2cWo.roa
Signing time: Tue 29 Sep 2020 09:55:59 +0000
ROA not before: Tue 29 Sep 2020 09:55:59 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 123.193.208.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3747 (0xea3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 09:55:59 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=04D86A1ABA9D49978C997D75AF8F8B0BA836716A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:d6:ce:b1:9f:1a:58:7d:fa:b7:95:42:94:32:
b6:6a:9c:bd:6f:96:90:52:91:39:09:ce:71:41:0d:
bf:00:c2:af:c5:9e:e6:76:9b:24:25:37:af:04:e5:
21:71:77:b2:2a:ba:8d:11:4b:01:05:20:a4:2c:92:
eb:93:99:b6:b6:ea:36:9b:d8:7b:6d:aa:ae:82:18:
0a:f7:08:6e:45:a8:7d:0a:b6:e0:44:cf:8d:19:2b:
6e:fa:8c:53:a8:6e:a7:1d:ec:a5:16:e2:d1:2e:3a:
01:ed:92:81:45:b3:32:1e:1c:71:28:8b:27:3a:3b:
24:8b:e5:0e:e9:9c:be:8b:3a:ec:72:66:93:62:3e:
7b:67:96:fe:72:0a:80:22:75:8c:a1:19:9e:ab:16:
e3:f7:27:68:d3:03:95:bb:07:42:be:5c:83:bc:8b:
78:d5:8a:28:ae:f2:fd:cf:e4:80:dd:da:4b:d9:49:
79:b4:18:f1:f4:7b:e3:da:47:58:b8:27:bf:86:94:
e5:59:7f:b1:a7:82:54:de:39:25:00:6b:88:5e:04:
9b:c2:e5:91:ef:ed:3a:e8:d1:f9:51:ac:54:9b:32:
24:84:c3:61:3d:ca:b5:61:35:32:b1:c2:c9:ad:b4:
97:6c:d4:c3:39:ed:80:42:a7:32:ea:32:78:32:18:
3b:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:D8:6A:1A:BA:9D:49:97:8C:99:7D:75:AF:8F:8B:0B:A8:36:71:6A
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/BNhqGrqdSZeMmX11r4-LC6g2cWo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.208.0/20
Signature Algorithm: sha256WithRSAEncryption
b9:bb:c7:ca:bc:57:35:50:35:58:91:df:ae:13:38:71:ce:41:
74:55:ea:c2:8f:ff:60:2c:b1:9e:8b:17:0f:58:fe:fe:be:c7:
5f:cb:d7:fa:0a:67:4b:c6:82:95:ff:47:7b:10:d2:e1:f5:a3:
e2:dd:aa:d6:32:ba:23:86:19:ba:4f:97:fa:7c:eb:8f:ec:28:
ed:6a:81:a3:8a:7e:d5:de:d5:ee:31:aa:a4:89:43:dd:39:1f:
30:bd:b5:f3:05:1b:57:55:5f:1f:da:96:e4:da:c8:98:d4:9e:
15:71:9c:b4:2e:5a:cb:89:86:fc:c3:6c:cf:1a:b3:79:f4:9c:
bb:65:74:d0:4d:ea:ab:b2:2d:5c:82:43:68:d7:97:69:c2:2b:
25:0c:94:b5:e2:3d:88:f5:0d:56:ed:e4:95:fb:2a:d2:79:86:
44:5b:67:ed:c3:76:02:a9:4b:a4:38:c1:3a:28:6a:82:2c:a6:
0d:d8:a9:12:49:36:90:a9:b3:c4:81:8c:50:bb:5f:ab:04:f3:
2c:0c:fe:bc:52:0f:19:e5:29:88:9a:82:0f:7a:50:aa:79:d6:
df:cf:d2:83:a7:7f:91:d5:77:a4:d8:e6:c4:8a:87:dc:21:7f:
b5:f5:7b:04:11:85:72:31:5f:27:61:07:34:3b:2b:a3:70:57:
38:34:9c:63
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICDqMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMDA5Mjkw
OTU1NTlaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDA0RDg2QTFBQkE5RDQ5
OTc4Qzk5N0Q3NUFGOEY4QjBCQTgzNjcxNkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDI1s6xnxpYffq3lUKUMrZqnL1vlpBSkTkJznFBDb8Awq/FnuZ2
myQlN68E5SFxd7Iquo0RSwEFIKQskuuTmba26jab2Httqq6CGAr3CG5FqH0KtuBE
z40ZK276jFOobqcd7KUW4tEuOgHtkoFFszIeHHEoiyc6OySL5Q7pnL6LOuxyZpNi
Pntnlv5yCoAidYyhGZ6rFuP3J2jTA5W7B0K+XIO8i3jViiiu8v3P5IDd2kvZSXm0
GPH0e+PaR1i4J7+GlOVZf7GnglTeOSUAa4heBJvC5ZHv7Tro0flRrFSbMiSEw2E9
yrVhNTKxwsmttJds1MM57YBCpzLqMngyGDuPAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUBNhqGrqdSZeMmX11r4+LC6g2cWowHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0JOaHFHcnFkU1plTW1YMTFy
NC1MQzZnMmNXby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAR7
wdAwDQYJKoZIhvcNAQELBQADggEBALm7x8q8VzVQNViR364TOHHOQXRV6sKP/2As
sZ6LFw9Y/v6+x1/L1/oKZ0vGgpX/R3sQ0uH1o+LdqtYyuiOGGbpPl/p864/sKO1q
gaOKftXe1e4xqqSJQ905HzC9tfMFG1dVXx/aluTayJjUnhVxnLQuWsuJhvzDbM8a
s3n0nLtldNBN6quyLVyCQ2jXl2nCKyUMlLXiPYj1DVbt5JX7KtJ5hkRbZ+3DdgKp
S6Q4wTooaoIspg3YqRJJNpCps8SBjFC7X6sE8ywM/rxSDxnlKYiagg96UKp51t/P
0oOnf5HVd6TY5sSKh9whf7X1ewQRhXIxXydhBzQ7K6NwVzg0nGM=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:25 2024 by rpki-client on console-ams.rpki-client.org