Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/JcjcYkUvelPx3p96swcBymJqc24.roa
File: JcjcYkUvelPx3p96swcBymJqc24.roa (raw, json)
Hash identifier: gqm9n5hVsvXTGXugUW8cZngpzcYwVFn7aY+PQ8pb4oM=
Subject key identifier: 25:C8:DC:62:45:2F:7A:53:F1:DE:9F:7A:B3:07:01:CA:62:6A:73:6E
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1CFD
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/JcjcYkUvelPx3p96swcBymJqc24.roa
Signing time: Wed 29 Sep 2021 02:48:28 +0000
ROA not before: Wed 29 Sep 2021 02:48:28 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 118.233.64.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7421 (0x1cfd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:48:28 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=25C8DC62452F7A53F1DE9F7AB30701CA626A736E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:9e:fb:93:5f:9a:35:f7:49:ae:c1:f7:df:d8:
52:c6:eb:7d:c3:36:30:1a:1d:7d:51:13:1a:38:38:
f0:e2:9d:b0:a2:e1:71:3b:b5:7a:55:f1:78:1d:29:
21:5f:51:0d:8b:ee:43:12:77:e9:9a:e7:f6:02:17:
0a:20:87:48:cd:45:cd:f3:4a:5e:36:5f:da:7b:8f:
a4:36:af:fd:c4:f4:e1:78:fb:98:55:a9:30:af:7e:
81:42:45:96:de:a8:7b:4b:75:60:86:3e:f5:e3:03:
84:ca:18:df:18:82:92:5e:ad:94:49:94:40:e1:b0:
cc:f3:b2:54:71:74:74:94:69:12:00:e7:fd:a8:fe:
24:62:79:e6:d7:5c:90:42:fa:fc:57:f2:b3:d0:34:
53:cc:90:17:a9:66:10:10:09:f8:f4:73:f4:f1:a7:
a4:ee:9b:92:f0:f1:c5:c3:00:c2:b7:f5:af:62:13:
74:ad:25:97:93:49:38:0d:ca:34:c0:32:35:1d:55:
cc:5f:c6:3d:95:75:45:1e:86:cb:18:c8:04:e3:21:
83:52:4c:44:a3:d9:fe:8c:eb:4c:92:06:0e:0f:1b:
7b:89:8b:23:47:b4:fb:fe:d0:a3:4f:da:2f:71:41:
88:0a:5d:bd:02:a1:d9:54:45:bd:47:93:16:06:91:
38:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:C8:DC:62:45:2F:7A:53:F1:DE:9F:7A:B3:07:01:CA:62:6A:73:6E
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/JcjcYkUvelPx3p96swcBymJqc24.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.64.0/22
Signature Algorithm: sha256WithRSAEncryption
65:2f:92:7f:f8:1c:49:8d:23:6d:0c:0d:c8:4e:d0:7c:04:5c:
ce:04:35:04:fe:bb:d8:c1:9d:09:0a:1b:64:f5:05:5b:65:f2:
1b:e5:6f:ca:4c:75:76:89:1d:32:e9:41:fe:3d:b3:ac:b5:6f:
af:bd:16:5b:eb:ba:69:4a:7e:99:63:c6:18:0b:78:7c:c3:84:
14:2b:d3:ca:a0:7b:36:54:1a:11:89:22:2d:cd:78:84:05:42:
83:3a:05:cb:03:db:bd:7d:ee:f1:3c:03:c7:ad:25:be:dd:d4:
5f:2c:8a:25:6c:5d:86:ae:54:69:68:b9:67:3a:6a:87:f6:fd:
a4:25:e8:75:43:4e:0c:1c:1d:2f:fb:59:2f:8a:7c:9f:d6:32:
45:b2:bf:ac:77:ba:22:99:92:d5:04:fa:d0:51:91:3b:e9:07:
4a:04:14:45:5d:a7:64:d8:e0:c6:33:aa:de:50:8a:35:d0:7f:
81:c3:39:15:93:c0:24:49:f5:d5:cf:f6:a6:b4:92:ef:98:6c:
6c:f1:37:93:56:55:e2:70:66:50:e6:d9:c4:81:b6:94:85:79:
54:1c:d8:6c:c2:91:5b:01:9f:49:4f:aa:25:de:b1:5c:8b:fd:
bd:15:3f:ae:16:64:c8:55:5f:7c:e0:2c:de:e2:e6:28:b9:3e:
9f:c2:5a:72
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICHP0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMTA5Mjkw
MjQ4MjhaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDI1QzhEQzYyNDUyRjdB
NTNGMURFOUY3QUIzMDcwMUNBNjI2QTczNkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCcnvuTX5o190muwfff2FLG633DNjAaHX1RExo4OPDinbCi4XE7
tXpV8XgdKSFfUQ2L7kMSd+ma5/YCFwogh0jNRc3zSl42X9p7j6Q2r/3E9OF4+5hV
qTCvfoFCRZbeqHtLdWCGPvXjA4TKGN8YgpJerZRJlEDhsMzzslRxdHSUaRIA5/2o
/iRieebXXJBC+vxX8rPQNFPMkBepZhAQCfj0c/Txp6Tum5Lw8cXDAMK39a9iE3St
JZeTSTgNyjTAMjUdVcxfxj2VdUUehssYyATjIYNSTESj2f6M60ySBg4PG3uJiyNH
tPv+0KNP2i9xQYgKXb0CodlURb1HkxYGkTi1AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUJcjcYkUvelPx3p96swcBymJqc24wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0pjamNZa1V2ZWxQeDNwOTZz
d2NCeW1KcWMyNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2
6UAwDQYJKoZIhvcNAQELBQADggEBAGUvkn/4HEmNI20MDchO0HwEXM4ENQT+u9jB
nQkKG2T1BVtl8hvlb8pMdXaJHTLpQf49s6y1b6+9FlvrumlKfpljxhgLeHzDhBQr
08qgezZUGhGJIi3NeIQFQoM6BcsD27197vE8A8etJb7d1F8siiVsXYauVGlouWc6
aof2/aQl6HVDTgwcHS/7WS+KfJ/WMkWyv6x3uiKZktUE+tBRkTvpB0oEFEVdp2TY
4MYzqt5QijXQf4HDORWTwCRJ9dXP9qa0ku+YbGzxN5NWVeJwZlDm2cSBtpSFeVQc
2GzCkVsBn0lPqiXesVyL/b0VP64WZMhVX3zgLN7i5ii5Pp/CWnI=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:28 2024 by rpki-client on console-ams.rpki-client.org