Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KhDMUx8iOtSIALbtocF0XlUhS20.roa
File: KhDMUx8iOtSIALbtocF0XlUhS20.roa (raw, json)
Hash identifier: 7NRAwfEZsDChjgV5ovkJazSYV+glZPDob1z03UnBz1A=
Subject key identifier: 2A:10:CC:53:1F:22:3A:D4:88:00:B6:ED:A1:C1:74:5E:55:21:4B:6D
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1B9B
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KhDMUx8iOtSIALbtocF0XlUhS20.roa
Signing time: Wed 29 Sep 2021 02:46:47 +0000
ROA not before: Wed 29 Sep 2021 02:46:47 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 180.176.228.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7067 (0x1b9b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:46:47 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=2A10CC531F223AD48800B6EDA1C1745E55214B6D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:8f:3b:aa:3b:53:0e:08:8a:6b:b9:ad:17:6c:
b5:98:63:17:68:4e:40:65:4d:a4:fa:19:20:8c:d7:
f8:65:05:bc:1e:f3:a4:d6:11:e0:c7:25:82:8b:4b:
b8:30:3c:66:09:8a:94:dc:45:6b:d3:84:f9:b8:3b:
c2:f0:e7:db:e0:30:14:84:68:d0:8c:5b:89:65:97:
9f:45:df:44:1a:33:81:67:4d:66:ce:a1:29:02:22:
32:40:9e:3d:ad:0a:10:7b:8c:83:23:c8:f0:84:75:
2d:ce:77:a9:2d:0e:0b:dd:ff:45:5c:3c:f7:bc:1d:
04:99:e4:56:1f:31:eb:45:63:13:8b:92:4c:99:7f:
74:31:ab:90:13:81:17:5b:c7:e9:c9:c0:3b:5f:0d:
7e:49:56:2f:89:0f:b3:f3:9d:9c:af:2e:59:6d:55:
3b:6d:0e:30:6b:1a:16:67:14:02:51:e7:4a:d2:1c:
61:4a:5d:72:16:67:91:66:3a:68:d0:26:49:5d:63:
38:c7:c1:b2:4c:cd:37:a1:1a:06:0b:b8:f1:9e:25:
00:8a:b1:36:cf:50:e0:fa:7c:b2:56:db:0f:45:af:
1b:0e:48:ea:06:f8:32:b2:39:d9:4d:30:2f:b1:ed:
e5:06:0f:3e:0d:31:13:76:6b:1c:64:86:0a:c9:0f:
35:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:10:CC:53:1F:22:3A:D4:88:00:B6:ED:A1:C1:74:5E:55:21:4B:6D
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KhDMUx8iOtSIALbtocF0XlUhS20.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.176.228.0/22
Signature Algorithm: sha256WithRSAEncryption
9b:a9:86:75:6a:c9:1f:b5:b7:da:3a:85:a6:a0:bc:92:34:86:
4a:ab:49:0b:39:e4:5a:f8:1e:9c:12:ca:59:80:d3:34:27:fb:
ca:ac:35:a8:99:6c:34:67:82:6f:6a:44:b0:ab:2e:be:86:fc:
75:e9:0f:cc:89:cb:c6:d5:d5:cc:ea:67:2c:81:a8:31:0a:49:
93:f9:58:3e:1d:02:eb:ac:35:aa:2b:54:43:0b:29:d4:53:62:
b1:79:f7:e7:33:35:11:c6:69:7c:19:72:c1:82:3c:36:b2:2f:
85:51:59:ae:7a:50:b2:e6:6c:f8:a2:bd:73:b1:e6:50:31:8b:
1e:26:bc:35:35:76:5f:e0:6f:90:f4:b8:8d:61:32:61:82:19:
18:e3:5f:c3:31:13:20:78:99:18:9f:3f:82:49:ce:60:dc:64:
3d:c7:f8:9b:3e:51:a8:96:1a:3a:cc:41:38:f2:35:ae:1c:03:
d2:4e:59:70:6c:09:49:a7:06:a3:79:15:42:30:4e:fe:00:12:
94:fd:6c:79:2d:40:27:16:01:1e:c0:e5:37:e0:3f:f8:9a:61:
48:05:cb:ac:bb:56:ea:b0:4f:5c:84:2e:89:1e:cf:3a:b1:00:
44:74:3a:71:00:51:af:c6:2f:1b:8d:c1:c8:90:95:f6:60:d0:
7f:90:1a:50
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICG5swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMTA5Mjkw
MjQ2NDdaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDJBMTBDQzUzMUYyMjNB
RDQ4ODAwQjZFREExQzE3NDVFNTUyMTRCNkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDMjzuqO1MOCIprua0XbLWYYxdoTkBlTaT6GSCM1/hlBbwe86TW
EeDHJYKLS7gwPGYJipTcRWvThPm4O8Lw59vgMBSEaNCMW4lll59F30QaM4FnTWbO
oSkCIjJAnj2tChB7jIMjyPCEdS3Od6ktDgvd/0VcPPe8HQSZ5FYfMetFYxOLkkyZ
f3Qxq5ATgRdbx+nJwDtfDX5JVi+JD7PznZyvLlltVTttDjBrGhZnFAJR50rSHGFK
XXIWZ5FmOmjQJkldYzjHwbJMzTehGgYLuPGeJQCKsTbPUOD6fLJW2w9FrxsOSOoG
+DKyOdlNMC+x7eUGDz4NMRN2axxkhgrJDzUBAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUKhDMUx8iOtSIALbtocF0XlUhS20wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0toRE1VeDhpT3RTSUFMYnRv
Y0YwWGxVaFMyMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAK0
sOQwDQYJKoZIhvcNAQELBQADggEBAJuphnVqyR+1t9o6haagvJI0hkqrSQs55Fr4
HpwSylmA0zQn+8qsNaiZbDRngm9qRLCrLr6G/HXpD8yJy8bV1czqZyyBqDEKSZP5
WD4dAuusNaorVEMLKdRTYrF59+czNRHGaXwZcsGCPDayL4VRWa56ULLmbPiivXOx
5lAxix4mvDU1dl/gb5D0uI1hMmGCGRjjX8MxEyB4mRifP4JJzmDcZD3H+Js+UaiW
GjrMQTjyNa4cA9JOWXBsCUmnBqN5FUIwTv4AEpT9bHktQCcWAR7A5TfgP/iaYUgF
y6y7VuqwT1yELokezzqxAER0OnEAUa/GLxuNwciQlfZg0H+QGlA=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:26 2023 by rpki-client on console-fra.rpki-client.org