Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/LvaEHSnK0dP3ME1-y5_djMF2a_k.roa
File: LvaEHSnK0dP3ME1-y5_djMF2a_k.roa (raw, json)
Hash identifier: HHcOydmeqVUeBuaAjECCdmjt/e6Yp6Uhijv3jk/NKwI=
Subject key identifier: 2E:F6:84:1D:29:CA:D1:D3:F7:30:4D:7E:CB:9F:DD:8C:C1:76:6B:F9
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 16EB
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/LvaEHSnK0dP3ME1-y5_djMF2a_k.roa
Signing time: Sun 07 Feb 2021 12:15:19 +0000
ROA not before: Sun 07 Feb 2021 12:15:19 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 118.232.36.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5867 (0x16eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:15:19 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2EF6841D29CAD1D3F7304D7ECB9FDD8CC1766BF9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:d5:49:ca:a7:92:82:b8:94:53:2b:e7:82:30:
46:b6:d5:99:25:5d:ec:2f:52:bc:f8:e1:30:c8:4c:
2c:e9:3a:1d:10:35:3c:1c:23:c5:09:13:93:3f:dd:
ee:81:60:74:b3:44:b7:b0:7e:fc:6f:8e:3e:57:35:
27:d0:7b:ec:33:ae:f4:59:c8:be:25:4b:36:c4:72:
ad:b8:c7:95:03:92:3c:0f:e9:b1:29:e1:cf:f9:41:
22:9a:41:66:6c:4e:21:11:66:d9:5f:90:0c:7d:b3:
6d:03:31:9c:cb:9b:d9:23:a7:e1:ce:5d:51:fe:a9:
b0:1d:87:66:e9:1d:48:0a:ac:41:4f:e8:82:89:8f:
fb:be:79:ec:44:67:88:da:6c:19:37:5e:83:96:77:
6e:bd:64:99:dd:a1:ac:f5:7c:74:e4:9c:e3:bc:8d:
bc:b9:af:4a:3a:c7:85:92:c9:bc:4a:2f:2b:1f:c5:
75:f5:dd:bc:9b:6c:05:f4:8b:72:e0:10:35:4d:ea:
b0:8a:89:38:a5:1c:c5:bf:a2:13:55:6a:64:c3:84:
8d:2c:19:da:2d:82:a6:29:1f:09:4e:e7:b1:a8:5f:
dd:20:80:a1:68:c5:37:a7:f6:26:3c:62:16:0e:ef:
43:6b:93:51:a7:55:e9:ad:3b:cf:16:6f:1e:51:88:
d1:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:F6:84:1D:29:CA:D1:D3:F7:30:4D:7E:CB:9F:DD:8C:C1:76:6B:F9
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/LvaEHSnK0dP3ME1-y5_djMF2a_k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.36.0/22
Signature Algorithm: sha256WithRSAEncryption
18:5f:ba:51:91:c5:64:84:dd:c2:78:cd:15:61:77:14:8a:a5:
03:7d:b3:a5:00:9a:39:b1:bc:1d:85:c5:6e:a8:f1:5d:b3:4a:
50:5a:b6:4d:f5:66:b5:cf:bd:98:54:53:2c:82:a1:d7:59:1c:
c4:8f:56:36:54:5a:9e:32:6c:d1:17:83:2c:82:ce:33:f3:30:
56:39:a9:68:4a:02:50:6d:01:ee:bf:4d:80:fa:9f:a8:ff:d1:
42:73:9c:7c:ad:7d:ad:c2:e6:6e:bd:3f:a4:d8:66:a3:d9:c2:
2b:aa:ad:2f:1a:82:b3:93:fe:82:c2:2b:46:b6:f8:bc:82:a0:
58:ac:d1:43:54:6e:21:ae:2e:f8:a9:b0:f0:57:5e:d8:b0:2b:
44:0f:f1:97:56:ad:2e:8f:d3:b1:3e:b6:1e:33:25:c7:79:50:
8d:7e:8c:fa:5b:2b:db:cc:82:22:3b:7f:c2:57:1f:ce:53:74:
cd:83:29:ee:4f:e0:a4:f2:21:fa:e3:b0:da:91:4f:47:a1:72:
5f:85:f6:de:3b:0d:35:00:b5:9f:52:62:a3:3c:8d:6a:bb:b9:
6e:f0:0d:09:26:ec:ef:e3:ce:33:c3:a1:93:46:34:23:f7:ba:
58:e2:dd:aa:59:38:30:b8:65:0c:7c:b8:f0:2e:6f:f4:06:9d:
80:2b:6b:6f
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICFuswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMTAyMDcx
MjE1MTlaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDJFRjY4NDFEMjlDQUQx
RDNGNzMwNEQ3RUNCOUZERDhDQzE3NjZCRjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCk1UnKp5KCuJRTK+eCMEa21ZklXewvUrz44TDITCzpOh0QNTwc
I8UJE5M/3e6BYHSzRLewfvxvjj5XNSfQe+wzrvRZyL4lSzbEcq24x5UDkjwP6bEp
4c/5QSKaQWZsTiERZtlfkAx9s20DMZzLm9kjp+HOXVH+qbAdh2bpHUgKrEFP6IKJ
j/u+eexEZ4jabBk3XoOWd269ZJndoaz1fHTknOO8jby5r0o6x4WSybxKLysfxXX1
3bybbAX0i3LgEDVN6rCKiTilHMW/ohNVamTDhI0sGdotgqYpHwlO57GoX90ggKFo
xTen9iY8YhYO70Nrk1GnVemtO88Wbx5RiNGfAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQULvaEHSnK0dP3ME1+y5/djMF2a/kwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0x2YUVIU25LMGRQM01FMS15
NV9kak1GMmFfay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2
6CQwDQYJKoZIhvcNAQELBQADggEBABhfulGRxWSE3cJ4zRVhdxSKpQN9s6UAmjmx
vB2FxW6o8V2zSlBatk31ZrXPvZhUUyyCoddZHMSPVjZUWp4ybNEXgyyCzjPzMFY5
qWhKAlBtAe6/TYD6n6j/0UJznHytfa3C5m69P6TYZqPZwiuqrS8agrOT/oLCK0a2
+LyCoFis0UNUbiGuLvipsPBXXtiwK0QP8ZdWrS6P07E+th4zJcd5UI1+jPpbK9vM
giI7f8JXH85TdM2DKe5P4KTyIfrjsNqRT0ehcl+F9t47DTUAtZ9SYqM8jWq7uW7w
DQkm7O/jzjPDoZNGNCP3ulji3apZODC4ZQx8uPAub/QGnYAra28=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:17 2023 by rpki-client on console-ams.rpki-client.org