Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/BRSIQ-NGYgcT1-UtzgEiDTLCOmo.roa
File: BRSIQ-NGYgcT1-UtzgEiDTLCOmo.roa (raw, json)
Hash identifier: fj74AXAjKNEEskXDlcSZ8OMdOsapXUtg36e15GAEUc0=
Subject key identifier: 05:14:88:43:E3:46:62:07:13:D7:E5:2D:CE:01:22:0D:32:C2:3A:6A
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1C79
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/BRSIQ-NGYgcT1-UtzgEiDTLCOmo.roa
Signing time: Wed 29 Sep 2021 02:47:48 +0000
ROA not before: Wed 29 Sep 2021 02:47:48 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 118.232.100.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7289 (0x1c79)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:47:48 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=05148843E346620713D7E52DCE01220D32C23A6A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:3a:a2:82:9e:33:78:75:47:52:b1:6e:c4:78:
b0:45:dc:53:6d:23:a2:c0:72:9d:1e:cf:87:e8:0f:
8b:9c:8c:82:2b:ef:db:17:45:01:ae:56:69:02:ab:
9c:96:2c:bb:ab:57:79:bf:79:a5:ea:8c:ef:d0:41:
d2:ff:43:82:59:d9:62:37:77:45:b6:7a:02:ae:bd:
6a:37:ee:88:0e:8f:67:07:f0:9e:36:b0:24:b0:fe:
ae:05:28:57:d1:dc:10:d4:b5:f1:cf:6a:52:6c:de:
6b:3d:76:6f:11:94:92:6b:4b:00:fd:4a:53:bb:c7:
50:0a:11:51:4f:d2:73:7a:5b:c7:67:88:27:3f:06:
2d:73:1f:ba:96:be:1a:b8:c1:0e:60:9d:a7:3d:fa:
67:cc:ea:7f:11:8f:a4:26:51:72:b9:6f:d3:f6:72:
99:30:c1:1c:8c:7e:07:17:b1:95:78:2c:a7:a0:3b:
76:33:c0:46:0b:7b:48:c0:05:28:80:35:f2:81:25:
bd:79:f7:0c:2d:55:06:19:8b:6d:53:fa:9d:de:65:
6a:61:3f:34:d3:10:4e:a7:41:d5:59:80:46:5c:d6:
67:6b:56:c6:4e:f5:22:04:9a:68:7e:3e:ad:15:38:
b4:6a:2a:b1:d9:9e:50:47:6e:f4:2c:cc:f7:9e:d0:
78:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:14:88:43:E3:46:62:07:13:D7:E5:2D:CE:01:22:0D:32:C2:3A:6A
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/BRSIQ-NGYgcT1-UtzgEiDTLCOmo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.100.0/22
Signature Algorithm: sha256WithRSAEncryption
65:b3:9e:81:7d:67:8a:92:e2:99:66:cb:9c:90:05:dc:ec:30:
b5:80:61:6d:60:6d:95:45:eb:c8:f9:a1:af:68:a4:15:33:d6:
bc:c6:a2:de:26:14:32:0c:a1:8d:35:53:8a:d3:59:20:c2:57:
4d:4d:00:ab:47:b8:57:9f:c4:16:33:6d:2d:0c:33:2e:68:49:
5b:e9:a7:7d:31:6d:a7:35:a2:6a:a3:2e:b7:8f:d6:8c:15:ed:
21:79:0f:89:8c:ab:73:ae:83:9f:56:d0:59:99:bc:f1:44:14:
c0:dc:e6:09:dc:55:58:89:a7:8c:52:aa:8e:bb:96:5b:97:62:
70:7c:77:c0:ff:2c:0c:93:02:fa:e6:6d:f4:00:82:ba:28:37:
cb:36:ed:93:92:c5:45:8a:ab:7c:68:f9:3b:cb:ec:b8:2b:1a:
ff:64:a4:e3:15:5c:4e:4f:c5:6f:d6:99:74:52:05:d9:07:d0:
94:27:a4:49:54:94:2e:41:d0:49:20:d8:fd:ec:a7:e4:fa:cf:
10:4a:51:d0:bf:19:81:07:c4:2f:6d:b6:dd:f1:c9:c2:35:4f:
f7:8a:f2:3d:d6:7f:18:9b:c7:b3:5b:07:51:9e:c2:43:5d:ce:
d7:21:71:c4:e0:6d:1b:c1:b5:8e:f2:05:e1:80:42:6a:2f:f4:
e3:4f:79:96
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICHHkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMTA5Mjkw
MjQ3NDhaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDA1MTQ4ODQzRTM0NjYy
MDcxM0Q3RTUyRENFMDEyMjBEMzJDMjNBNkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDoOqKCnjN4dUdSsW7EeLBF3FNtI6LAcp0ez4foD4ucjIIr79sX
RQGuVmkCq5yWLLurV3m/eaXqjO/QQdL/Q4JZ2WI3d0W2egKuvWo37ogOj2cH8J42
sCSw/q4FKFfR3BDUtfHPalJs3ms9dm8RlJJrSwD9SlO7x1AKEVFP0nN6W8dniCc/
Bi1zH7qWvhq4wQ5gnac9+mfM6n8Rj6QmUXK5b9P2cpkwwRyMfgcXsZV4LKegO3Yz
wEYLe0jABSiANfKBJb159wwtVQYZi21T+p3eZWphPzTTEE6nQdVZgEZc1mdrVsZO
9SIEmmh+Pq0VOLRqKrHZnlBHbvQszPee0HhTAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUBRSIQ+NGYgcT1+UtzgEiDTLCOmowHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0JSU0lRLU5HWWdjVDEtVXR6
Z0VpRFRMQ09tby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2
6GQwDQYJKoZIhvcNAQELBQADggEBAGWznoF9Z4qS4plmy5yQBdzsMLWAYW1gbZVF
68j5oa9opBUz1rzGot4mFDIMoY01U4rTWSDCV01NAKtHuFefxBYzbS0MMy5oSVvp
p30xbac1omqjLreP1owV7SF5D4mMq3Oug59W0FmZvPFEFMDc5gncVViJp4xSqo67
lluXYnB8d8D/LAyTAvrmbfQAgrooN8s27ZOSxUWKq3xo+TvL7LgrGv9kpOMVXE5P
xW/WmXRSBdkH0JQnpElUlC5B0Ekg2P3sp+T6zxBKUdC/GYEHxC9ttt3xycI1T/eK
8j3Wfxibx7NbB1GewkNdztchccTgbRvBtY7yBeGAQmov9ONPeZY=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:49 2024 by rpki-client on console-fra.rpki-client.org