Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/LU1i0IiTBja7L3Z9q9L8L3IP9_s.roa
File: LU1i0IiTBja7L3Z9q9L8L3IP9_s.roa (raw, json)
Hash identifier: QRu+QRs+8+Pi7F+mVfxkvdNZxE0NHbVemjF/mUijrk8=
Subject key identifier: 2D:4D:62:D0:88:93:06:36:BB:2F:76:7D:AB:D2:FC:2F:72:0F:F7:FB
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/LU1i0IiTBja7L3Z9q9L8L3IP9_s.roa
Signing time: Thu 15 Sep 2022 02:52:38 +0000
ROA not before: Thu 15 Sep 2022 02:52:38 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.193.0.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8098 (0x1fa2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:52:38 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=2D4D62D088930636BB2F767DABD2FC2F720FF7FB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:5b:9e:cd:73:cf:c0:6b:e7:6a:a0:a1:34:5a:
f9:8f:36:5b:4f:ac:60:60:b6:7f:4a:87:ca:1f:d3:
3a:b9:3a:73:4c:1e:0c:2f:a8:2a:f8:73:c1:00:6e:
c6:a0:bd:33:1f:33:2f:80:4c:ad:bd:35:1c:cf:86:
df:3e:8c:b1:dc:59:ac:30:c0:44:b4:05:24:32:54:
8d:65:79:84:a5:36:e2:35:8f:32:5d:3d:65:b8:a1:
47:aa:96:cc:db:e9:dc:9e:f7:95:22:ac:28:79:ba:
7f:1c:49:ae:e5:a8:22:48:a8:63:da:25:69:02:9e:
fe:df:6f:ab:3b:aa:49:ab:8b:2c:f4:18:d1:74:da:
0b:94:ad:6d:99:58:db:99:f8:0e:b4:bf:05:87:86:
38:76:0d:af:4d:0a:9d:63:9d:07:2e:85:2e:38:40:
1c:4f:29:30:31:06:98:18:4c:66:43:51:21:3f:f9:
97:03:67:8f:c3:94:54:de:da:f4:e5:6d:12:65:38:
99:3d:09:d3:f7:09:b1:12:24:15:6c:54:80:85:0e:
de:36:d2:87:98:c8:88:c8:e8:1b:b4:15:46:b4:10:
49:54:74:36:bd:e3:31:57:fc:40:94:25:c1:fc:1a:
be:3b:70:ba:7d:8a:47:b5:78:ce:7f:e5:87:08:79:
ac:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:4D:62:D0:88:93:06:36:BB:2F:76:7D:AB:D2:FC:2F:72:0F:F7:FB
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/LU1i0IiTBja7L3Z9q9L8L3IP9_s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.0.0/21
Signature Algorithm: sha256WithRSAEncryption
07:4f:cd:87:07:f7:d1:b3:b0:7d:e2:f5:27:c2:d0:66:df:af:
dd:cd:bf:f1:3c:97:5e:64:5d:b6:46:74:14:13:b6:29:ff:4f:
1c:5c:81:fc:98:12:cf:6f:e8:8c:0e:9d:dc:f1:54:97:b3:eb:
13:cc:73:64:8e:06:fc:b8:db:82:80:cb:e7:30:0a:35:94:8c:
22:36:c2:34:39:98:17:a0:55:a7:fc:29:f3:23:69:d6:ce:8b:
a6:6f:26:55:fd:7e:f6:df:c1:f7:88:0f:4f:72:ee:69:c9:bf:
fe:2f:20:29:ad:5b:a0:a1:13:e1:86:a9:8f:16:19:53:ef:df:
67:30:5e:a5:73:0e:ed:49:4c:2f:91:64:36:ac:89:b7:ff:31:
3d:75:b8:da:d5:d6:a0:c5:17:5e:45:cf:b8:9a:61:b7:1c:ad:
49:b0:9b:d2:f1:43:22:36:25:fb:44:20:aa:04:19:51:88:fb:
8f:87:66:13:ab:d7:48:b2:76:07:85:79:ae:8c:7e:6e:e6:58:
a8:b2:61:b1:e6:d7:f7:f6:4c:27:1b:83:e3:cb:9c:06:11:0f:
49:cd:2d:b3:a0:63:9e:98:34:55:7b:47:f2:65:74:5d:2c:50:
d5:50:81:55:0b:03:b5:44:67:18:67:cd:62:c2:16:bf:27:1a:
f9:1d:1c:5f
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICH6IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMjA5MTUw
MjUyMzhaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDJENEQ2MkQwODg5MzA2
MzZCQjJGNzY3REFCRDJGQzJGNzIwRkY3RkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCWW57Nc8/Aa+dqoKE0WvmPNltPrGBgtn9Kh8of0zq5OnNMHgwv
qCr4c8EAbsagvTMfMy+ATK29NRzPht8+jLHcWawwwES0BSQyVI1leYSlNuI1jzJd
PWW4oUeqlszb6dye95UirCh5un8cSa7lqCJIqGPaJWkCnv7fb6s7qkmriyz0GNF0
2guUrW2ZWNuZ+A60vwWHhjh2Da9NCp1jnQcuhS44QBxPKTAxBpgYTGZDUSE/+ZcD
Z4/DlFTe2vTlbRJlOJk9CdP3CbESJBVsVICFDt420oeYyIjI6Bu0FUa0EElUdDa9
4zFX/ECUJcH8Gr47cLp9ike1eM5/5YcIeawTAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQULU1i0IiTBja7L3Z9q9L8L3IP9/swHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0xVMWkwSWlUQmphN0wzWjlx
OUw4TDNJUDlfcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7
wQAwDQYJKoZIhvcNAQELBQADggEBAAdPzYcH99GzsH3i9SfC0Gbfr93Nv/E8l15k
XbZGdBQTtin/TxxcgfyYEs9v6IwOndzxVJez6xPMc2SOBvy424KAy+cwCjWUjCI2
wjQ5mBegVaf8KfMjadbOi6ZvJlX9fvbfwfeID09y7mnJv/4vICmtW6ChE+GGqY8W
GVPv32cwXqVzDu1JTC+RZDasibf/MT11uNrV1qDFF15Fz7iaYbccrUmwm9LxQyI2
JftEIKoEGVGI+4+HZhOr10iydgeFea6Mfm7mWKiyYbHm1/f2TCcbg+PLnAYRD0nN
LbOgY56YNFV7R/JldF0sUNVQgVULA7VEZxhnzWLCFr8nGvkdHF8=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:03:12 2025 by rpki-client