Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/GgRFSGj7PNyujVuzdo1yen-kT7A.roa
File: GgRFSGj7PNyujVuzdo1yen-kT7A.roa (raw, json)
Hash identifier: l5QJA2+nr0QqmkgWZJfrrlz21Om51mG5j5fdpkzLTeM=
Subject key identifier: 1A:04:45:48:68:FB:3C:DC:AE:8D:5B:B3:76:8D:72:7A:7F:A4:4F:B0
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/GgRFSGj7PNyujVuzdo1yen-kT7A.roa
Signing time: Thu 15 Sep 2022 02:44:55 +0000
ROA not before: Thu 15 Sep 2022 02:44:55 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 106.1.236.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8096 (0x1fa0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:44:55 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=1A04454868FB3CDCAE8D5BB3768D727A7FA44FB0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:bb:80:47:d1:6a:71:a7:05:cf:1b:e9:d8:d5:
fa:b0:6c:67:79:80:46:dd:9d:cf:fd:76:be:88:dc:
f8:36:2d:95:08:bc:28:26:82:9f:8b:1d:55:81:cc:
29:8d:c3:91:c3:62:f6:8f:08:94:d6:72:b5:f7:c1:
ea:88:06:55:99:f8:bb:4e:6f:f6:53:20:34:ac:0e:
e2:ea:c0:e9:c6:04:38:ec:43:3c:ef:e2:68:5e:80:
85:c3:3e:2a:16:3b:38:cc:9c:3c:62:c8:13:53:2d:
a6:88:74:13:17:e8:9f:d3:5d:0e:02:8c:4f:c3:1a:
fa:70:d9:1f:d5:e4:49:7c:2c:7e:8c:2c:83:d3:4e:
73:4c:af:e9:94:98:62:39:c3:10:60:2d:8a:90:bb:
a6:c1:71:34:80:ab:88:ef:fb:d1:7e:20:66:ea:b4:
83:e7:b9:20:5c:b7:7d:77:d6:f9:25:26:0c:1d:a1:
37:86:c4:76:fa:9d:ea:14:b4:6f:8d:66:5d:90:41:
cf:34:d5:6e:c3:dc:79:0d:d0:f2:c9:37:7b:0a:e2:
44:35:07:f0:43:bb:84:a0:62:6b:8b:cb:a1:60:3f:
82:31:76:c2:83:93:ce:e0:ea:7f:5a:46:10:5e:23:
e5:4b:40:d5:16:ca:f5:4e:b2:c7:d9:65:25:73:ac:
f8:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:04:45:48:68:FB:3C:DC:AE:8D:5B:B3:76:8D:72:7A:7F:A4:4F:B0
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/GgRFSGj7PNyujVuzdo1yen-kT7A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.236.0/23
Signature Algorithm: sha256WithRSAEncryption
3b:da:3e:71:54:4c:da:be:b7:e7:88:62:d1:71:14:1a:7a:7b:
5d:da:ee:de:84:3d:50:5f:fe:4d:4b:21:33:43:c8:5a:86:24:
8e:c9:72:db:34:9a:b0:bd:35:47:10:4d:fe:fe:2d:97:af:48:
f3:7e:4a:cb:15:f6:a0:30:c3:d0:83:d2:b9:7e:da:4e:b8:c2:
75:95:6a:3c:52:35:d1:6e:25:54:db:bd:37:6e:80:32:f4:9f:
49:3e:d3:de:ec:f3:5d:e9:7d:02:53:fb:09:4b:c7:03:44:41:
e8:2c:90:db:71:f3:7c:bd:f7:92:ac:49:0b:f4:36:2c:66:f2:
bc:b1:ca:3d:08:55:78:73:4f:8c:a3:f3:25:fb:cf:80:c2:b2:
af:82:fb:28:fd:13:3c:d9:b3:d1:33:f4:82:ed:5c:9d:53:a7:
c2:c2:43:aa:ef:f4:1e:8d:1a:b5:af:3a:07:04:d1:b6:b8:90:
e7:b6:a5:43:56:10:0b:7b:7a:08:96:63:46:12:a6:2d:8a:18:
09:f2:4b:9d:6b:67:99:3e:77:6c:53:05:ea:19:2d:2f:fe:b4:
86:8d:47:dd:31:d0:55:37:bd:6a:e6:cf:57:6a:8e:21:72:b4:
cb:0f:49:84:52:39:a7:c7:f1:c3:ef:e9:40:6b:d9:bd:7d:9d:
ca:81:56:db
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICH6AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMjA5MTUw
MjQ0NTVaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDFBMDQ0NTQ4NjhGQjND
RENBRThENUJCMzc2OEQ3MjdBN0ZBNDRGQjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCwu4BH0WpxpwXPG+nY1fqwbGd5gEbdnc/9dr6I3Pg2LZUIvCgm
gp+LHVWBzCmNw5HDYvaPCJTWcrX3weqIBlWZ+LtOb/ZTIDSsDuLqwOnGBDjsQzzv
4mhegIXDPioWOzjMnDxiyBNTLaaIdBMX6J/TXQ4CjE/DGvpw2R/V5El8LH6MLIPT
TnNMr+mUmGI5wxBgLYqQu6bBcTSAq4jv+9F+IGbqtIPnuSBct3131vklJgwdoTeG
xHb6neoUtG+NZl2QQc801W7D3HkN0PLJN3sK4kQ1B/BDu4SgYmuLy6FgP4IxdsKD
k87g6n9aRhBeI+VLQNUWyvVOssfZZSVzrPjRAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUGgRFSGj7PNyujVuzdo1yen+kT7AwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0dnUkZTR2o3UE55dWpWdXpk
bzF5ZW4ta1Q3QS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFq
AewwDQYJKoZIhvcNAQELBQADggEBADvaPnFUTNq+t+eIYtFxFBp6e13a7t6EPVBf
/k1LITNDyFqGJI7Jcts0mrC9NUcQTf7+LZevSPN+SssV9qAww9CD0rl+2k64wnWV
ajxSNdFuJVTbvTdugDL0n0k+097s813pfQJT+wlLxwNEQegskNtx83y995KsSQv0
Nixm8ryxyj0IVXhzT4yj8yX7z4DCsq+C+yj9EzzZs9Ez9ILtXJ1Tp8LCQ6rv9B6N
GrWvOgcE0ba4kOe2pUNWEAt7egiWY0YSpi2KGAnyS51rZ5k+d2xTBeoZLS/+tIaN
R90x0FU3vWrmz1dqjiFytMsPSYRSOafH8cPv6UBr2b19ncqBVts=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:50 2024 by rpki-client on console-fra.rpki-client.org