Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Da-BD5wtVOzsn5bv8iX9BOI7Z0E.roa
File: Da-BD5wtVOzsn5bv8iX9BOI7Z0E.roa (raw, json)
Hash identifier: znhZN49l0yylNHWw4aI6Q2ATqDLII5aDC7pyeDLJPp4=
Subject key identifier: 0D:AF:81:0F:9C:2D:54:EC:EC:9F:96:EF:F2:25:FD:04:E2:3B:67:41
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 14EF
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Da-BD5wtVOzsn5bv8iX9BOI7Z0E.roa
Signing time: Sun 07 Feb 2021 12:00:43 +0000
ROA not before: Sun 07 Feb 2021 12:00:43 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 118.233.156.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5359 (0x14ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:00:43 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0DAF810F9C2D54ECEC9F96EFF225FD04E23B6741
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:56:67:63:ed:31:73:67:6e:dc:10:7d:6a:06:
59:48:73:27:d3:0e:4a:61:96:16:5b:65:40:d5:7a:
34:45:f4:c2:93:ef:76:37:93:12:ee:1a:a9:bd:92:
b6:8d:d4:82:ab:2f:f4:bd:0b:b9:db:b9:7e:ae:7e:
13:e2:2a:6e:57:21:07:87:bc:12:f7:51:a5:dd:f1:
1f:be:d0:f0:53:e9:08:3b:36:a2:3d:d6:90:ef:db:
70:e2:19:64:8e:b5:2a:e0:5a:dd:05:cf:e8:f2:c5:
67:42:35:63:da:37:3c:0e:18:56:c3:7b:08:e0:d9:
46:46:0c:85:ff:8f:85:8b:4c:ce:cc:f2:5c:7e:ed:
5b:50:3d:3f:89:b0:c5:20:67:27:88:ea:e4:6d:50:
26:88:5f:8b:a1:48:99:3c:91:d0:2c:e7:b7:41:7c:
3a:9b:c8:37:27:05:e0:ca:22:49:5a:73:cf:2f:f6:
fa:1b:a2:ef:2a:12:5d:06:27:29:e6:50:3d:21:d3:
95:7e:df:b5:ae:a8:9b:1a:53:3c:1b:40:d9:8f:f8:
b3:ac:78:3f:4a:2c:5c:26:28:ac:f7:25:db:a4:2f:
86:1d:e4:27:2d:e8:60:2a:50:f0:79:ca:66:ad:9b:
d9:2a:7a:4e:0d:3e:22:78:68:8b:75:6b:ef:1e:b3:
be:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:AF:81:0F:9C:2D:54:EC:EC:9F:96:EF:F2:25:FD:04:E2:3B:67:41
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Da-BD5wtVOzsn5bv8iX9BOI7Z0E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.156.0/22
Signature Algorithm: sha256WithRSAEncryption
12:36:86:a2:7b:f6:df:b0:c5:c5:8d:ac:8e:84:fd:6a:5d:e6:
c6:97:31:cd:65:f2:d9:10:8a:03:7d:ff:9f:85:d1:6b:58:19:
c3:01:51:65:2e:7e:16:76:e8:e1:19:02:b3:b7:58:80:27:d3:
89:2b:a0:3d:b3:90:e5:47:74:16:67:a5:9e:e1:42:a9:8a:2f:
d5:97:ce:1a:30:d8:bf:99:7f:c3:8f:f4:23:68:04:29:8b:c3:
2d:eb:0b:c4:7b:fd:7f:09:82:67:df:75:e2:0d:22:26:78:47:
91:e1:d9:79:cc:e7:86:ad:f7:8c:b8:cd:76:7d:d6:3c:38:1f:
12:ae:68:93:eb:ba:fc:ae:3e:48:32:7e:d3:93:21:b9:37:94:
d8:93:a6:4e:02:c7:49:e7:ba:33:af:fe:0f:84:ee:4d:60:cf:
36:f6:2e:e4:0a:f5:3f:76:f5:bd:c6:c0:e2:1e:45:21:a4:d6:
36:09:04:b7:86:27:5a:05:f1:d2:07:46:8a:4c:aa:9f:5d:f0:
69:c9:04:37:1d:bf:f0:c4:8c:39:eb:52:f2:2f:b8:7c:e5:a4:
23:dd:de:33:a0:cc:0b:86:54:2d:ab:b4:77:89:bf:b1:b6:38:
1c:ec:77:a3:1f:fb:f4:74:67:ea:9a:63:90:52:45:fb:4e:25:
a1:28:d8:a5
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICFO8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMTAyMDcx
MjAwNDNaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDBEQUY4MTBGOUMyRDU0
RUNFQzlGOTZFRkYyMjVGRDA0RTIzQjY3NDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCiVmdj7TFzZ27cEH1qBllIcyfTDkphlhZbZUDVejRF9MKT73Y3
kxLuGqm9kraN1IKrL/S9C7nbuX6ufhPiKm5XIQeHvBL3UaXd8R++0PBT6Qg7NqI9
1pDv23DiGWSOtSrgWt0Fz+jyxWdCNWPaNzwOGFbDewjg2UZGDIX/j4WLTM7M8lx+
7VtQPT+JsMUgZyeI6uRtUCaIX4uhSJk8kdAs57dBfDqbyDcnBeDKIklac88v9vob
ou8qEl0GJynmUD0h05V+37WuqJsaUzwbQNmP+LOseD9KLFwmKKz3JdukL4Yd5Cct
6GAqUPB5ymatm9kqek4NPiJ4aIt1a+8es74VAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUDa+BD5wtVOzsn5bv8iX9BOI7Z0EwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0RhLUJENXd0Vk96c241YnY4
aVg5Qk9JN1owRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2
6ZwwDQYJKoZIhvcNAQELBQADggEBABI2hqJ79t+wxcWNrI6E/Wpd5saXMc1l8tkQ
igN9/5+F0WtYGcMBUWUufhZ26OEZArO3WIAn04kroD2zkOVHdBZnpZ7hQqmKL9WX
zhow2L+Zf8OP9CNoBCmLwy3rC8R7/X8JgmffdeINIiZ4R5Hh2XnM54at94y4zXZ9
1jw4HxKuaJPruvyuPkgyftOTIbk3lNiTpk4Cx0nnujOv/g+E7k1gzzb2LuQK9T92
9b3GwOIeRSGk1jYJBLeGJ1oF8dIHRopMqp9d8GnJBDcdv/DEjDnrUvIvuHzlpCPd
3jOgzAuGVC2rtHeJv7G2OBzsd6Mf+/R0Z+qaY5BSRftOJaEo2KU=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:49 2024 by rpki-client on console-fra.rpki-client.org