Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Dm8POfX79yvVlMwxaKek3m2D2G8.roa
File: Dm8POfX79yvVlMwxaKek3m2D2G8.roa (raw, json)
Hash identifier: ZA8vyzmZUlkbP1rXKJEwiIx0XcyUICPTu0WkuCXjgOk=
Subject key identifier: 0E:6F:0F:39:F5:FB:F7:2B:D5:94:CC:31:68:A7:A4:DE:6D:83:D8:6F
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Dm8POfX79yvVlMwxaKek3m2D2G8.roa
Signing time: Thu 15 Sep 2022 02:45:31 +0000
ROA not before: Thu 15 Sep 2022 02:45:31 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.193.88.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8096 (0x1fa0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:45:31 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=0E6F0F39F5FBF72BD594CC3168A7A4DE6D83D86F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:5d:52:aa:05:57:2f:01:0d:e6:ea:1d:d1:6f:
83:3c:5f:b4:ae:da:ee:ce:12:61:8f:fc:69:76:a2:
89:00:c9:1d:60:77:11:46:eb:f9:8f:6b:97:ef:e4:
dc:bd:7a:1d:a0:24:8d:6b:bc:25:7b:db:0e:8d:9f:
35:5b:5c:9b:9b:ee:4d:f3:1d:b5:a6:da:d7:36:db:
59:0c:51:ab:52:bc:29:2b:7e:ae:e5:6c:9f:ed:78:
95:54:79:aa:01:fa:c7:15:a7:70:fe:1b:bf:50:b3:
b8:39:ee:50:6b:f8:1e:5a:c7:e8:63:c5:8a:49:46:
8a:45:08:99:23:14:4d:5f:67:4b:50:76:19:58:8f:
71:bd:74:1a:bf:b9:29:a1:e0:ad:a8:2e:16:65:ab:
99:fc:a8:5c:90:99:be:58:c2:7c:f5:95:97:d9:9a:
86:fe:ec:01:ab:cf:a4:39:32:94:e8:e1:30:b9:09:
cf:62:f2:79:e3:9d:a5:4c:57:fd:75:bd:00:e7:07:
43:df:30:e8:27:f4:58:ae:bf:05:5d:08:31:e5:96:
59:b5:58:80:f2:c8:e2:e9:52:b6:68:61:42:cd:dd:
01:df:6b:fa:27:16:58:53:a4:ac:98:84:38:7b:ef:
00:e4:30:0e:0b:93:60:f2:b4:39:47:6a:72:f4:65:
52:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:6F:0F:39:F5:FB:F7:2B:D5:94:CC:31:68:A7:A4:DE:6D:83:D8:6F
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Dm8POfX79yvVlMwxaKek3m2D2G8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.88.0/22
Signature Algorithm: sha256WithRSAEncryption
15:c1:a2:1c:f9:35:84:05:24:e8:0f:47:36:eb:fd:85:15:0b:
07:ac:b3:90:9a:d8:97:1f:45:2e:cc:5b:46:7b:4d:88:71:ff:
ca:b0:f5:09:bf:8d:fd:b4:75:57:70:8e:e0:6d:49:95:04:af:
f3:bc:92:1c:a1:3d:cb:dc:36:75:6c:08:82:9c:17:0d:b5:04:
32:40:6a:cf:d1:4b:20:0b:9c:32:da:e2:8b:e0:29:10:63:fd:
f3:8f:2c:a4:6e:dd:b2:66:26:23:b6:00:55:fb:15:ce:ae:e9:
77:6d:56:2c:c7:63:2e:fc:91:04:0c:c3:ca:a5:65:a3:44:c4:
44:dd:2f:11:3c:a1:1f:64:30:04:37:b5:36:a4:bc:93:d5:81:
97:fe:69:e8:6f:93:45:18:0b:62:6a:7b:5a:87:54:64:5f:b3:
64:b0:39:3b:5f:2e:c6:73:69:d2:fe:1f:e0:4b:0b:f2:ad:d0:
6b:c9:d9:37:c9:00:1f:c8:5e:5f:a4:a0:d5:d0:45:2c:4f:32:
e5:9d:cf:52:80:84:a6:3f:3c:db:72:48:ae:3e:31:83:3e:d8:
3c:e0:ca:ab:61:c7:07:6f:aa:18:d6:ad:59:03:a9:c0:72:99:
bd:e9:48:5d:59:b8:f7:75:95:d3:e7:8f:ae:0c:91:8c:f1:64:
f1:d4:4b:21
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICH6AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMjA5MTUw
MjQ1MzFaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDBFNkYwRjM5RjVGQkY3
MkJENTk0Q0MzMTY4QTdBNERFNkQ4M0Q4NkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDCXVKqBVcvAQ3m6h3Rb4M8X7Su2u7OEmGP/Gl2ookAyR1gdxFG
6/mPa5fv5Ny9eh2gJI1rvCV72w6NnzVbXJub7k3zHbWm2tc221kMUatSvCkrfq7l
bJ/teJVUeaoB+scVp3D+G79Qs7g57lBr+B5ax+hjxYpJRopFCJkjFE1fZ0tQdhlY
j3G9dBq/uSmh4K2oLhZlq5n8qFyQmb5Ywnz1lZfZmob+7AGrz6Q5MpTo4TC5Cc9i
8nnjnaVMV/11vQDnB0PfMOgn9FiuvwVdCDHlllm1WIDyyOLpUrZoYULN3QHfa/on
FlhTpKyYhDh77wDkMA4Lk2DytDlHanL0ZVL5AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUDm8POfX79yvVlMwxaKek3m2D2G8wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0RtOFBPZlg3OXl2VmxNd3hh
S2VrM20yRDJHOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7
wVgwDQYJKoZIhvcNAQELBQADggEBABXBohz5NYQFJOgPRzbr/YUVCwess5Ca2Jcf
RS7MW0Z7TYhx/8qw9Qm/jf20dVdwjuBtSZUEr/O8khyhPcvcNnVsCIKcFw21BDJA
as/RSyALnDLa4ovgKRBj/fOPLKRu3bJmJiO2AFX7Fc6u6XdtVizHYy78kQQMw8ql
ZaNExETdLxE8oR9kMAQ3tTakvJPVgZf+aehvk0UYC2Jqe1qHVGRfs2SwOTtfLsZz
adL+H+BLC/Kt0GvJ2TfJAB/IXl+koNXQRSxPMuWdz1KAhKY/PNtySK4+MYM+2Dzg
yqthxwdvqhjWrVkDqcBymb3pSF1ZuPd1ldPnj64MkYzxZPHUSyE=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:49 2024 by rpki-client on console-fra.rpki-client.org