Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/EG3jHOpTLk6M_XmciU9Hz7JTtY4.roa
File: EG3jHOpTLk6M_XmciU9Hz7JTtY4.roa (raw, json)
Hash identifier: O6JmMcQzXTYFg2vo39qd9Fi3vIThOBhza0cE502CWss=
Subject key identifier: 10:6D:E3:1C:EA:53:2E:4E:8C:FD:79:9C:89:4F:47:CF:B2:53:B5:8E
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/EG3jHOpTLk6M_XmciU9Hz7JTtY4.roa
Signing time: Thu 15 Sep 2022 02:44:58 +0000
ROA not before: Thu 15 Sep 2022 02:44:58 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.192.32.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8096 (0x1fa0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:44:58 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=106DE31CEA532E4E8CFD799C894F47CFB253B58E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:ef:f8:d7:9d:61:61:d7:c5:51:c9:7a:bd:57:
3c:7f:d0:03:17:ee:01:92:f6:2f:c7:75:32:f0:8c:
c6:47:1a:4c:99:11:b5:7c:4d:58:b5:fe:e9:de:02:
34:c3:3d:db:fc:06:df:27:3e:26:f0:63:1a:6f:5e:
65:80:30:ef:6e:4b:d0:ae:11:06:43:c0:65:21:08:
44:75:03:20:e1:0f:9a:92:2b:64:70:8c:05:15:20:
62:e7:1f:9d:ea:1e:e7:81:a5:aa:7c:86:f4:07:db:
bb:a9:dc:87:64:6e:92:cc:a3:c1:64:4b:8f:1f:e6:
fc:df:db:6d:9c:89:1f:6f:03:3f:cb:85:12:cb:1c:
ba:ff:cd:da:eb:fb:10:bf:68:af:22:83:54:46:ab:
1c:4a:57:5c:36:a4:de:66:b4:c8:f8:dd:e6:50:b0:
bf:e5:21:98:cf:bb:f5:e8:7b:e9:7e:8c:1f:4a:c3:
a9:f2:45:01:4e:19:e2:4a:a8:db:d0:68:fe:59:47:
c3:ee:f4:44:bd:2b:f8:74:e6:b9:91:d6:81:a1:29:
63:5a:4f:fc:65:38:29:71:64:da:dc:d7:c9:b6:8d:
dd:c0:eb:d6:e1:ac:77:49:db:03:98:c7:04:8b:d2:
6c:bd:25:d2:a1:e2:97:b3:27:56:87:bd:99:b3:68:
c3:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:6D:E3:1C:EA:53:2E:4E:8C:FD:79:9C:89:4F:47:CF:B2:53:B5:8E
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/EG3jHOpTLk6M_XmciU9Hz7JTtY4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.192.32.0/20
Signature Algorithm: sha256WithRSAEncryption
6d:6c:62:e5:65:d6:a3:57:44:00:1b:00:41:b6:d7:cf:ff:58:
3d:84:58:70:69:cf:b5:4e:c0:5d:27:9d:1d:8c:b3:34:8a:7c:
d8:d7:6b:e0:f6:e5:27:99:b5:1a:ae:bc:8b:62:d3:88:88:5b:
17:21:14:81:a0:a8:82:58:17:ba:78:5f:0d:ca:c0:e9:22:5c:
ae:f6:03:28:d5:7a:18:66:03:0b:d4:3c:9f:24:d3:32:75:c4:
a4:d3:f7:d8:57:50:84:4b:a5:c4:61:c4:87:23:a3:97:96:b0:
48:ff:1e:36:b0:48:4d:8c:9a:0c:b9:d8:c1:16:5f:75:9e:84:
d5:e8:5d:8d:6e:52:75:8a:74:e3:47:b8:84:45:3d:43:53:2d:
a1:87:c6:52:01:6c:60:23:7b:41:c9:e3:4d:cd:f7:03:13:bc:
fb:c9:2d:7f:33:84:82:67:c6:c3:40:81:90:e5:93:32:c8:bf:
02:2a:94:28:01:1d:85:2b:89:6b:a4:77:7f:b8:50:77:56:e0:
c6:93:cb:de:84:82:9d:b2:66:6f:b8:a4:c4:a6:85:9b:60:93:
ea:6f:6e:eb:ea:12:cb:00:d8:37:ef:31:93:02:23:7a:70:ee:
9d:8d:ae:84:3d:40:ea:f6:71:a2:93:1f:3b:53:81:51:18:0b:
87:78:a3:06
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICH6AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMjA5MTUw
MjQ0NThaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDEwNkRFMzFDRUE1MzJF
NEU4Q0ZENzk5Qzg5NEY0N0NGQjI1M0I1OEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDk7/jXnWFh18VRyXq9Vzx/0AMX7gGS9i/HdTLwjMZHGkyZEbV8
TVi1/uneAjTDPdv8Bt8nPibwYxpvXmWAMO9uS9CuEQZDwGUhCER1AyDhD5qSK2Rw
jAUVIGLnH53qHueBpap8hvQH27up3IdkbpLMo8FkS48f5vzf222ciR9vAz/LhRLL
HLr/zdrr+xC/aK8ig1RGqxxKV1w2pN5mtMj43eZQsL/lIZjPu/Xoe+l+jB9Kw6ny
RQFOGeJKqNvQaP5ZR8Pu9ES9K/h05rmR1oGhKWNaT/xlOClxZNrc18m2jd3A69bh
rHdJ2wOYxwSL0my9JdKh4pezJ1aHvZmzaMNdAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUEG3jHOpTLk6M/XmciU9Hz7JTtY4wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0VHM2pIT3BUTGs2TV9YbWNp
VTlIejdKVHRZNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAR7
wCAwDQYJKoZIhvcNAQELBQADggEBAG1sYuVl1qNXRAAbAEG218//WD2EWHBpz7VO
wF0nnR2MszSKfNjXa+D25SeZtRquvIti04iIWxchFIGgqIJYF7p4Xw3KwOkiXK72
AyjVehhmAwvUPJ8k0zJ1xKTT99hXUIRLpcRhxIcjo5eWsEj/HjawSE2Mmgy52MEW
X3WehNXoXY1uUnWKdONHuIRFPUNTLaGHxlIBbGAje0HJ403N9wMTvPvJLX8zhIJn
xsNAgZDlkzLIvwIqlCgBHYUriWukd3+4UHdW4MaTy96Egp2yZm+4pMSmhZtgk+pv
buvqEssA2DfvMZMCI3pw7p2NroQ9QOr2caKTHztTgVEYC4d4owY=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:49 2024 by rpki-client on console-fra.rpki-client.org