Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Kx950xuyUVYT7Pwt-8hu0mXRYhg.roa
File: Kx950xuyUVYT7Pwt-8hu0mXRYhg.roa (raw, json)
Hash identifier: xJmSmii1026RRjSTvsMhv/ruLw1bn9ZZT+ufp/K8XNY=
Subject key identifier: 2B:1F:79:D3:1B:B2:51:56:13:EC:FC:2D:FB:C8:6E:D2:65:D1:62:18
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1673
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Kx950xuyUVYT7Pwt-8hu0mXRYhg.roa
Signing time: Sun 07 Feb 2021 12:10:32 +0000
ROA not before: Sun 07 Feb 2021 12:10:32 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 123.195.176.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5747 (0x1673)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:10:32 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2B1F79D31BB2515613ECFC2DFBC86ED265D16218
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:9a:81:b2:2b:d4:47:e4:48:11:5f:42:0d:82:
d1:48:24:c1:36:86:51:f6:1c:46:ce:e1:ea:8e:b8:
a7:58:6c:7e:0b:ad:2f:33:5c:72:b0:f4:bb:d3:fa:
c0:89:df:73:83:3e:b0:e6:ea:af:12:e6:f7:73:09:
f3:21:fe:1f:85:44:f9:32:8e:25:09:ee:83:d3:d8:
99:c2:45:ef:ea:ac:57:78:8e:28:e9:b1:4b:b8:88:
d7:41:36:bd:e8:8b:05:f3:9b:e6:bf:a4:4c:0c:8b:
d6:45:ed:d8:84:cf:98:d8:e9:71:fe:b6:33:38:c1:
bd:6a:cf:fb:3c:6f:02:63:40:f6:52:6b:65:a8:bc:
b3:2c:48:30:6b:ec:16:5a:4c:61:45:df:95:5c:48:
f3:99:dc:05:b1:8b:c3:e4:2e:81:e1:2b:ba:be:33:
1d:b8:2a:99:6d:7a:e7:e2:55:a9:57:dc:bd:c6:d4:
36:6c:68:9d:68:4f:46:f5:a3:ba:ad:e0:15:50:85:
09:2b:57:02:87:7e:31:c6:87:40:9d:ef:6e:41:33:
cb:e4:38:f6:d8:ae:c6:2c:2f:4d:67:17:d2:a3:ba:
d4:5c:53:9e:12:32:9c:90:59:d8:6b:78:12:61:a8:
f4:52:b7:ec:5d:6a:75:15:c2:f6:16:b4:b0:4e:57:
a1:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:1F:79:D3:1B:B2:51:56:13:EC:FC:2D:FB:C8:6E:D2:65:D1:62:18
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Kx950xuyUVYT7Pwt-8hu0mXRYhg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.176.0/21
Signature Algorithm: sha256WithRSAEncryption
b9:5c:ff:2d:09:f7:2d:3e:e0:43:d2:ba:61:70:89:72:1a:d7:
f0:f8:49:ba:d3:d7:5d:14:91:f8:59:de:9c:d8:72:f4:a8:29:
00:61:fa:74:99:21:22:d6:b0:96:0a:af:a9:cd:24:bc:90:8a:
3d:03:54:cb:3b:89:3c:48:58:b0:cb:18:dd:ef:ef:99:92:f0:
b9:10:ea:ab:80:0d:2a:9a:cd:f4:fc:15:05:91:86:29:c2:a6:
03:2f:f9:ac:e6:6f:82:19:0b:85:3d:2d:b6:af:4f:91:66:3a:
a7:2d:d7:e6:07:c8:b6:fc:ab:f5:36:9c:5c:03:a9:02:fb:4e:
6b:1c:6c:35:51:10:61:1d:c9:d2:a0:8f:8f:b0:aa:3f:b8:b8:
59:20:f0:e5:d1:4e:37:34:0b:7f:50:20:14:6b:a5:85:48:a4:
de:1b:25:3b:6f:b7:9e:9e:57:ff:f4:d7:ba:7f:2c:52:b5:c5:
48:8b:29:80:82:1a:e3:59:0d:c5:eb:e0:dc:ba:22:95:83:63:
f3:9f:39:e3:44:aa:4c:db:12:25:cf:2b:68:17:20:85:f0:7a:
09:73:67:48:d4:db:db:0f:73:9f:79:ec:9c:14:5d:0a:b1:9b:
c4:83:18:22:79:ea:d9:93:4e:18:0a:fb:72:5d:98:7e:39:44:
43:d6:4f:07
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICFnMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMTAyMDcx
MjEwMzJaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDJCMUY3OUQzMUJCMjUx
NTYxM0VDRkMyREZCQzg2RUQyNjVEMTYyMTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC5moGyK9RH5EgRX0INgtFIJME2hlH2HEbO4eqOuKdYbH4LrS8z
XHKw9LvT+sCJ33ODPrDm6q8S5vdzCfMh/h+FRPkyjiUJ7oPT2JnCRe/qrFd4jijp
sUu4iNdBNr3oiwXzm+a/pEwMi9ZF7diEz5jY6XH+tjM4wb1qz/s8bwJjQPZSa2Wo
vLMsSDBr7BZaTGFF35VcSPOZ3AWxi8PkLoHhK7q+Mx24KplteufiValX3L3G1DZs
aJ1oT0b1o7qt4BVQhQkrVwKHfjHGh0Cd725BM8vkOPbYrsYsL01nF9KjutRcU54S
MpyQWdhreBJhqPRSt+xdanUVwvYWtLBOV6EVAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUKx950xuyUVYT7Pwt+8hu0mXRYhgwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0t4OTUweHV5VVZZVDdQd3Qt
OGh1MG1YUlloZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7
w7AwDQYJKoZIhvcNAQELBQADggEBALlc/y0J9y0+4EPSumFwiXIa1/D4SbrT110U
kfhZ3pzYcvSoKQBh+nSZISLWsJYKr6nNJLyQij0DVMs7iTxIWLDLGN3v75mS8LkQ
6quADSqazfT8FQWRhinCpgMv+azmb4IZC4U9LbavT5FmOqct1+YHyLb8q/U2nFwD
qQL7TmscbDVREGEdydKgj4+wqj+4uFkg8OXRTjc0C39QIBRrpYVIpN4bJTtvt56e
V//017p/LFK1xUiLKYCCGuNZDcXr4Ny6IpWDY/OfOeNEqkzbEiXPK2gXIIXweglz
Z0jU29sPc5957JwUXQqxm8SDGCJ56tmTThgK+3JdmH45REPWTwc=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:28 2024 by rpki-client on console-ams.rpki-client.org