Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/D3kwPZ0BWX6kOgHj_nQ6c7MsW3U.roa
File: D3kwPZ0BWX6kOgHj_nQ6c7MsW3U.roa (raw, json)
Hash identifier: 3NUai8RALUPwdH6MYlBGKJdDi7L7StaX4HUdDyV2sDY=
Subject key identifier: 0F:79:30:3D:9D:01:59:7E:A4:3A:01:E3:FE:74:3A:73:B3:2C:5B:75
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1655
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/D3kwPZ0BWX6kOgHj_nQ6c7MsW3U.roa
Signing time: Sun 07 Feb 2021 12:09:46 +0000
ROA not before: Sun 07 Feb 2021 12:09:46 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 123.194.205.0/28 maxlen: 28
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5717 (0x1655)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:09:46 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0F79303D9D01597EA43A01E3FE743A73B32C5B75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:61:ef:a1:af:72:67:ef:1a:dc:65:4d:d7:e5:
e2:e2:e3:29:c8:ef:61:7b:12:41:07:60:01:a9:ef:
40:09:ef:43:b6:ec:da:ee:a4:89:d0:40:1a:2f:52:
d1:df:56:e6:50:a0:b1:98:f0:d5:79:0b:97:a0:35:
b9:54:6f:51:00:16:b7:04:77:ce:be:68:0f:75:9c:
12:9a:54:f8:d3:18:70:bd:7f:d1:29:df:23:00:cb:
cf:55:07:ff:ea:ce:a5:76:dc:35:ea:f7:00:09:33:
6b:12:bb:22:df:6f:f7:bd:e1:e2:ab:7b:32:13:63:
cf:ff:ed:f6:78:28:e9:42:50:f5:81:85:e2:dc:82:
42:02:c9:e5:aa:07:b0:2d:4d:9c:f0:4e:6e:fb:f9:
77:3c:6b:bc:ed:94:63:eb:94:6d:0d:6d:85:3d:05:
21:76:56:98:7a:56:09:b5:70:b5:a1:ff:1e:e6:67:
13:20:00:ce:52:77:c4:97:60:aa:f6:c4:ea:17:20:
1d:86:1d:b1:03:49:bd:7a:3a:45:08:a4:74:a6:f6:
81:8a:ba:9f:33:11:02:d3:8a:dc:5c:83:82:07:a0:
a7:14:87:96:0b:78:e2:31:f3:46:ad:49:53:f1:9e:
db:0e:e2:82:26:30:7b:f0:f8:5b:69:11:28:ae:a6:
1d:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:79:30:3D:9D:01:59:7E:A4:3A:01:E3:FE:74:3A:73:B3:2C:5B:75
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/D3kwPZ0BWX6kOgHj_nQ6c7MsW3U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.205.0/28
Signature Algorithm: sha256WithRSAEncryption
95:8e:d0:b5:5f:88:a8:93:fc:e0:88:2a:13:8f:77:4a:88:a1:
69:d4:f3:bd:a7:a6:bf:0c:ae:36:a5:87:60:bd:4f:6e:3d:76:
b0:6d:9d:bc:1f:9c:0d:de:52:0c:ff:c4:ce:80:e0:82:79:ed:
18:53:f5:2e:9c:e3:d3:b2:97:a7:f1:1d:f4:89:2c:39:d8:e9:
57:61:a0:32:4b:7d:b3:8f:f6:fe:a9:00:1b:24:04:86:5b:f2:
87:26:7f:93:bc:74:03:47:3e:e7:9c:89:cc:df:b7:0b:5b:43:
c5:52:9e:db:b9:16:18:b0:ba:7b:5e:e3:40:a6:29:c9:a8:3e:
6a:ea:87:46:a6:a7:97:bd:c8:51:3a:00:6a:2d:e9:b9:09:57:
5f:f8:81:58:10:94:63:b7:62:ec:c9:72:c2:e6:60:c1:66:6b:
93:01:1f:e2:95:d6:63:4f:35:a4:11:1b:c0:2d:2b:68:d3:71:
8a:c9:2c:6f:41:1d:fd:03:9e:99:02:88:63:18:a3:63:e2:94:
7f:80:99:21:5b:bc:2c:5e:bd:4d:37:4c:35:64:ed:ba:c0:fc:
a9:69:b4:16:e1:c4:11:ff:64:2a:9b:8c:ca:a7:7b:c9:df:45:
f2:4c:de:c0:e6:ac:f4:b6:49:f9:3b:f6:72:05:06:f4:cf:54:
5f:1f:59:a3
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgICFlUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMTAyMDcx
MjA5NDZaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDBGNzkzMDNEOUQwMTU5
N0VBNDNBMDFFM0ZFNzQzQTczQjMyQzVCNzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDXYe+hr3Jn7xrcZU3X5eLi4ynI72F7EkEHYAGp70AJ70O27Nru
pInQQBovUtHfVuZQoLGY8NV5C5egNblUb1EAFrcEd86+aA91nBKaVPjTGHC9f9Ep
3yMAy89VB//qzqV23DXq9wAJM2sSuyLfb/e94eKrezITY8//7fZ4KOlCUPWBheLc
gkICyeWqB7AtTZzwTm77+Xc8a7ztlGPrlG0NbYU9BSF2Vph6Vgm1cLWh/x7mZxMg
AM5Sd8SXYKr2xOoXIB2GHbEDSb16OkUIpHSm9oGKup8zEQLTitxcg4IHoKcUh5YL
eOIx80atSVPxntsO4oImMHvw+FtpESiuph2xAgMBAAGjggHvMIIB6zAdBgNVHQ4E
FgQUD3kwPZ0BWX6kOgHj/nQ6c7MsW3UwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0Qza3dQWjBCV1g2a09nSGpf
blE2YzdNc1czVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgABMAcDBQR7
ws0AMA0GCSqGSIb3DQEBCwUAA4IBAQCVjtC1X4iok/zgiCoTj3dKiKFp1PO9p6a/
DK42pYdgvU9uPXawbZ28H5wN3lIM/8TOgOCCee0YU/UunOPTspen8R30iSw52OlX
YaAyS32zj/b+qQAbJASGW/KHJn+TvHQDRz7nnInM37cLW0PFUp7buRYYsLp7XuNA
pinJqD5q6odGpqeXvchROgBqLem5CVdf+IFYEJRjt2LsyXLC5mDBZmuTAR/ildZj
TzWkERvALSto03GKySxvQR39A56ZAohjGKNj4pR/gJkhW7wsXr1NN0w1ZO26wPyp
abQW4cQR/2Qqm4zKp3vJ30XyTN7A5qz0tkn5O/ZyBQb0z1RfH1mj
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:49 2024 by rpki-client on console-fra.rpki-client.org