Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/EnFOeos8RJEDZb_OZaRlHlwEoM0.roa
File: EnFOeos8RJEDZb_OZaRlHlwEoM0.roa (raw, json)
Hash identifier: GEfQcKZFpSalEieOXjPQJVwx2wPNXstb1zm4tEi6MBk=
Subject key identifier: 12:71:4E:7A:8B:3C:44:91:03:65:BF:CE:65:A4:65:1E:5C:04:A0:CD
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1835
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/EnFOeos8RJEDZb_OZaRlHlwEoM0.roa
Signing time: Sun 07 Feb 2021 12:27:14 +0000
ROA not before: Sun 07 Feb 2021 12:27:14 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 118.232.208.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6197 (0x1835)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:27:14 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=12714E7A8B3C44910365BFCE65A4651E5C04A0CD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:82:76:e1:56:d4:97:ca:4a:75:84:48:5b:44:
2c:35:2f:88:f0:de:15:06:f7:8c:b4:67:fb:4f:80:
26:9c:05:5a:40:c3:f4:02:ab:58:b4:83:d1:ae:4b:
f3:91:fc:5d:00:77:ea:2e:41:44:03:cb:04:4b:ea:
08:86:74:dc:fb:33:af:29:4b:aa:f2:68:85:62:0a:
de:f4:c9:cf:81:55:5c:1c:2a:0b:80:74:65:6e:3c:
b6:d0:28:60:cf:74:2b:c0:6b:65:80:d1:30:5b:ae:
f1:5a:55:22:08:5d:d0:a3:c2:04:02:b8:d3:ca:8e:
43:48:b9:79:6c:1d:d1:64:f3:d0:43:e8:45:73:c2:
1a:92:1d:46:f4:58:0e:c3:c4:93:3e:6b:3c:8b:bf:
f4:ac:b3:02:b4:f9:70:f7:19:1a:a0:ca:b4:8e:d2:
cc:92:ae:28:24:5a:db:8f:6a:9e:94:22:41:19:42:
57:e7:9b:56:23:18:b2:bd:86:e3:0b:f7:b1:fd:25:
c5:64:fe:f9:e8:d4:67:6c:7e:40:b9:60:45:ad:9a:
d3:2f:b7:e4:9a:03:45:9f:cc:a7:27:fa:83:35:b1:
d5:42:26:1a:87:40:bd:f5:bc:c4:bf:46:c4:b8:e7:
03:dc:13:a0:f0:98:8b:87:b3:3f:e1:a1:38:9f:85:
54:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:71:4E:7A:8B:3C:44:91:03:65:BF:CE:65:A4:65:1E:5C:04:A0:CD
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/EnFOeos8RJEDZb_OZaRlHlwEoM0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.208.0/21
Signature Algorithm: sha256WithRSAEncryption
62:4e:77:6c:37:6b:16:bd:8b:db:dd:0f:e3:7a:44:de:28:74:
ad:7e:03:ea:dc:9c:4b:f5:d8:f3:17:51:8d:fd:56:c3:bd:02:
14:b1:78:29:ba:26:95:b1:fe:7c:a0:97:54:95:31:92:39:d3:
98:a5:b2:a5:9e:b4:be:3e:3c:16:f2:eb:57:a6:f8:a5:cb:cb:
f2:4e:36:43:89:28:35:aa:6d:b9:fb:52:b5:2a:52:a6:c0:e2:
ef:3d:b0:59:3d:93:7e:48:5f:28:bd:63:3c:ba:ee:1a:9d:4b:
47:f6:f8:6e:f5:d5:ae:c1:95:06:d7:89:91:37:63:46:ab:26:
82:6b:86:93:9b:ac:7e:08:b8:89:b9:99:7f:6b:7d:03:82:71:
d7:cb:fd:a0:60:66:92:22:00:af:50:a8:a4:04:31:e0:1d:c3:
29:7b:70:cb:b3:09:bb:18:d2:a5:5a:c4:7e:14:9b:8c:0c:7d:
d0:30:92:a8:fd:c7:be:57:76:2b:71:f1:69:46:b4:28:ad:32:
9f:98:a6:37:fd:94:81:e8:21:0e:f1:48:84:d4:ff:6e:b7:0e:
ed:35:54:e6:9e:c6:05:2d:a7:ad:b1:a2:3b:1b:5c:c4:90:0f:
8e:52:59:b2:96:81:55:b9:67:5d:83:0c:98:0b:38:d3:12:28:
b3:09:0e:07
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICGDUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMTAyMDcx
MjI3MTRaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDEyNzE0RTdBOEIzQzQ0
OTEwMzY1QkZDRTY1QTQ2NTFFNUMwNEEwQ0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDhgnbhVtSXykp1hEhbRCw1L4jw3hUG94y0Z/tPgCacBVpAw/QC
q1i0g9GuS/OR/F0Ad+ouQUQDywRL6giGdNz7M68pS6ryaIViCt70yc+BVVwcKguA
dGVuPLbQKGDPdCvAa2WA0TBbrvFaVSIIXdCjwgQCuNPKjkNIuXlsHdFk89BD6EVz
whqSHUb0WA7DxJM+azyLv/SsswK0+XD3GRqgyrSO0sySrigkWtuPap6UIkEZQlfn
m1YjGLK9huML97H9JcVk/vno1GdsfkC5YEWtmtMvt+SaA0WfzKcn+oM1sdVCJhqH
QL31vMS/RsS45wPcE6DwmIuHsz/hoTifhVSZAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUEnFOeos8RJEDZb/OZaRlHlwEoM0wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0VuRk9lb3M4UkpFRFpiX09a
YVJsSGx3RW9NMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN2
6NAwDQYJKoZIhvcNAQELBQADggEBAGJOd2w3axa9i9vdD+N6RN4odK1+A+rcnEv1
2PMXUY39VsO9AhSxeCm6JpWx/nygl1SVMZI505ilsqWetL4+PBby61em+KXLy/JO
NkOJKDWqbbn7UrUqUqbA4u89sFk9k35IXyi9Yzy67hqdS0f2+G711a7BlQbXiZE3
Y0arJoJrhpObrH4IuIm5mX9rfQOCcdfL/aBgZpIiAK9QqKQEMeAdwyl7cMuzCbsY
0qVaxH4Um4wMfdAwkqj9x75Xditx8WlGtCitMp+Ypjf9lIHoIQ7xSITU/263Du01
VOaexgUtp62xojsbXMSQD45SWbKWgVW5Z12DDJgLONMSKLMJDgc=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:28:26 2025 by rpki-client