Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/E2sUI5RVaCQPEiHuqHI_M5usZ58.roa
File: E2sUI5RVaCQPEiHuqHI_M5usZ58.roa (raw, json)
Hash identifier: /oB7ez55Zg1sRgfQc6lgpy6I/LcJ+bfoGKh93QbiAyY=
Subject key identifier: 13:6B:14:23:94:55:68:24:0F:12:21:EE:A8:72:3F:33:9B:AC:67:9F
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 220C
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/E2sUI5RVaCQPEiHuqHI_M5usZ58.roa
Signing time: Fri 25 Nov 2022 04:40:42 +0000
ROA not before: Fri 25 Nov 2022 04:40:42 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.194.120.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8716 (0x220c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:40:42 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=136B1423945568240F1221EEA8723F339BAC679F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:36:36:c0:f2:3b:26:c6:99:70:06:71:6c:a0:
84:b3:22:41:fb:50:aa:3f:ff:7e:52:07:fa:00:0b:
37:4e:38:91:13:a3:00:48:d5:3c:c0:cb:42:1b:71:
ea:1f:f6:f1:f3:d0:3a:cf:38:19:1f:be:f5:21:1e:
ff:5f:fa:4d:e4:7c:f9:61:0b:94:a1:94:d9:62:42:
70:75:e1:1d:f0:d8:5b:eb:5b:6d:c5:36:01:63:4e:
4f:b0:e2:a2:48:41:06:4f:88:03:40:53:7f:cb:29:
1e:20:4d:b1:1f:31:1d:13:af:ce:a8:dd:7f:82:ae:
61:e3:62:47:8e:8d:27:72:67:82:07:8c:09:2c:82:
81:bf:cf:7d:a1:e4:cd:12:6d:9a:52:e4:03:95:aa:
af:24:18:26:f7:1b:19:46:29:e1:14:99:d2:de:f1:
f8:76:a8:72:a9:54:5f:0f:96:f5:24:5a:11:8f:ac:
0b:75:d8:2c:77:31:23:40:9d:87:b8:eb:c0:c0:2d:
a9:ac:eb:c4:22:40:17:71:a4:b3:b3:62:b0:ea:8a:
5d:eb:a9:c2:50:0f:aa:bb:2f:64:db:39:1c:87:dc:
f1:7b:33:dc:6a:f0:42:82:0c:c2:d6:75:16:72:a6:
a8:9c:75:e2:70:4c:07:e7:da:51:b0:4e:15:8c:b1:
c8:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:6B:14:23:94:55:68:24:0F:12:21:EE:A8:72:3F:33:9B:AC:67:9F
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/E2sUI5RVaCQPEiHuqHI_M5usZ58.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.120.0/21
Signature Algorithm: sha256WithRSAEncryption
04:d2:28:0d:6b:a5:5d:fa:43:c8:73:04:f7:1f:eb:5e:e1:2c:
da:39:19:35:01:65:ca:dd:0a:d3:fb:7c:ad:eb:fd:50:20:6c:
47:43:fb:9a:93:68:4e:12:6c:de:2d:c8:d6:b0:b1:52:d0:82:
2c:b4:5f:f8:3f:b8:2f:19:bf:18:de:b7:80:45:86:eb:68:0b:
dd:fd:94:b0:09:19:66:e1:56:c1:22:6c:ad:08:58:17:71:33:
0b:a1:7d:d8:44:92:7f:35:b9:6d:4e:e4:c7:e7:f4:59:f3:1c:
24:5c:7b:22:41:ac:20:ce:2a:4d:68:53:bf:f5:de:2b:d1:b3:
0e:9a:4f:8f:83:60:4c:d6:99:e8:e1:c5:cc:5d:d0:b0:6e:aa:
41:61:91:85:ee:73:df:00:88:22:e7:ff:6c:9a:e2:e7:dd:ab:
c8:b3:94:77:ad:b1:06:12:82:98:c2:62:57:e1:d6:39:da:e1:
91:cb:9d:75:ee:82:8f:87:5f:dc:84:0d:57:ee:8b:14:4a:bf:
c8:27:08:5b:fd:5b:c7:39:80:dc:5f:f4:20:42:45:dc:6d:2f:
21:67:9b:f2:4e:a6:4c:a9:c6:91:5b:bd:75:6d:2a:e1:80:4a:
48:e9:47:ec:fe:00:fb:0e:fb:2d:2b:53:45:7c:9f:38:3c:83:
9a:3b:ba:6b
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICIgwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMjExMjUw
NDQwNDJaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDEzNkIxNDIzOTQ1NTY4
MjQwRjEyMjFFRUE4NzIzRjMzOUJBQzY3OUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC5NjbA8jsmxplwBnFsoISzIkH7UKo//35SB/oACzdOOJETowBI
1TzAy0Ibceof9vHz0DrPOBkfvvUhHv9f+k3kfPlhC5ShlNliQnB14R3w2FvrW23F
NgFjTk+w4qJIQQZPiANAU3/LKR4gTbEfMR0Tr86o3X+CrmHjYkeOjSdyZ4IHjAks
goG/z32h5M0SbZpS5AOVqq8kGCb3GxlGKeEUmdLe8fh2qHKpVF8PlvUkWhGPrAt1
2Cx3MSNAnYe468DALams68QiQBdxpLOzYrDqil3rqcJQD6q7L2TbORyH3PF7M9xq
8EKCDMLWdRZypqicdeJwTAfn2lGwThWMscjVAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUE2sUI5RVaCQPEiHuqHI/M5usZ58wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0Uyc1VJNVJWYUNRUEVpSHVx
SElfTTV1c1o1OC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7
wngwDQYJKoZIhvcNAQELBQADggEBAATSKA1rpV36Q8hzBPcf617hLNo5GTUBZcrd
CtP7fK3r/VAgbEdD+5qTaE4SbN4tyNawsVLQgiy0X/g/uC8Zvxjet4BFhutoC939
lLAJGWbhVsEibK0IWBdxMwuhfdhEkn81uW1O5Mfn9FnzHCRceyJBrCDOKk1oU7/1
3ivRsw6aT4+DYEzWmejhxcxd0LBuqkFhkYXuc98AiCLn/2ya4ufdq8izlHetsQYS
gpjCYlfh1jna4ZHLnXXugo+HX9yEDVfuixRKv8gnCFv9W8c5gNxf9CBCRdxtLyFn
m/JOpkypxpFbvXVtKuGASkjpR+z+APsO+y0rU0V8nzg8g5o7ums=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:49 2024 by rpki-client on console-fra.rpki-client.org