Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/MXl_Gdvxta8B39nMtGgzdCqui5c.roa
File: MXl_Gdvxta8B39nMtGgzdCqui5c.roa (raw, json)
Hash identifier: OEGOC5QWJ03EfjA1cNBrW8xZRo5yujRgfUBd1JBIvFs=
Subject key identifier: 31:79:7F:19:DB:F1:B5:AF:01:DF:D9:CC:B4:68:33:74:2A:AE:8B:97
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1751
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/MXl_Gdvxta8B39nMtGgzdCqui5c.roa
Signing time: Sun 07 Feb 2021 12:18:19 +0000
ROA not before: Sun 07 Feb 2021 12:18:19 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 106.1.32.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5969 (0x1751)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:18:19 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=31797F19DBF1B5AF01DFD9CCB46833742AAE8B97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:d5:9b:c2:63:cc:f2:bc:b3:6b:26:7b:3c:cf:
04:89:d8:a4:27:5d:ad:ca:7d:e9:7d:14:58:bd:55:
5d:94:d6:f8:e3:a5:0d:4d:3a:72:22:eb:a7:7f:47:
bc:1c:83:de:a6:24:bc:b3:e8:6c:91:5c:b3:76:58:
21:90:77:3d:ef:92:6e:67:f5:87:c5:20:b7:e4:d8:
3d:ab:a2:df:ae:a1:7c:21:3f:a9:77:ae:6c:20:28:
0b:8a:75:49:92:d1:41:9c:78:95:ee:d6:1f:73:4e:
54:30:eb:ae:65:f6:69:6e:b5:90:91:a2:47:24:88:
25:53:02:b3:c4:5b:d1:6e:90:ba:ae:dd:e6:0f:40:
3d:e4:30:11:f2:5e:e6:a7:a2:d9:38:67:3b:92:de:
f4:2c:92:78:49:b4:b8:c9:60:a5:8a:2e:b6:75:f0:
dc:07:cc:80:03:6d:bb:24:79:66:72:4e:6c:fb:26:
f7:aa:6b:0f:45:30:fb:bb:95:46:80:43:df:4f:64:
d4:d6:c6:b6:95:ba:95:b1:17:2f:92:ca:39:01:f5:
a0:3a:37:c2:01:e7:78:26:83:ac:3f:0d:92:bd:ca:
2a:93:b1:32:61:c6:15:40:10:7f:fa:ce:dd:1c:9d:
89:b2:d6:ed:3d:76:83:a9:93:6b:bb:2b:fa:c7:8c:
35:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:79:7F:19:DB:F1:B5:AF:01:DF:D9:CC:B4:68:33:74:2A:AE:8B:97
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/MXl_Gdvxta8B39nMtGgzdCqui5c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.32.0/22
Signature Algorithm: sha256WithRSAEncryption
4e:c8:4b:b5:e4:de:43:6a:04:4d:bf:d2:c7:00:ea:9b:b3:30:
84:5c:c5:7f:37:1a:42:eb:2c:b2:1c:4e:4c:01:cb:6a:29:c7:
d1:1e:39:d7:0c:d4:ac:b6:bc:78:9b:2c:95:f8:f4:93:9e:a1:
6e:67:c4:f7:75:a0:a8:93:4a:cd:62:71:aa:1b:65:69:3f:79:
d5:56:64:7f:5f:09:da:07:20:cd:4e:eb:e0:1e:a4:c2:8e:bb:
3e:12:ba:05:74:b0:4e:37:c8:ae:bf:c0:eb:fa:f0:a6:fd:ef:
90:32:87:3a:aa:34:9a:7a:d9:9d:bd:06:82:e5:99:b6:cc:70:
19:a6:02:1a:f8:6e:85:04:b6:08:78:c3:5a:b1:fc:0c:1b:5a:
15:6e:56:c7:51:06:59:90:1a:8b:30:18:a0:df:85:b5:23:ad:
47:40:a8:dd:d0:10:06:d1:6f:53:69:f5:d1:16:86:0a:1a:d6:
54:3e:d3:4d:fd:f3:6d:fb:f9:38:5d:50:20:04:91:91:fb:76:
2d:f9:41:d9:f3:45:9f:df:df:65:24:75:1b:ef:72:3f:a1:0a:
dd:1e:41:d0:e1:62:ef:a5:db:f9:80:37:d4:a0:48:ac:9e:bf:
01:3e:d0:68:d3:87:3f:64:39:7a:3f:b0:64:a2:64:6e:d1:66:
5c:d9:35:01
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICF1EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMTAyMDcx
MjE4MTlaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDMxNzk3RjE5REJGMUI1
QUYwMURGRDlDQ0I0NjgzMzc0MkFBRThCOTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC/1ZvCY8zyvLNrJns8zwSJ2KQnXa3Kfel9FFi9VV2U1vjjpQ1N
OnIi66d/R7wcg96mJLyz6GyRXLN2WCGQdz3vkm5n9YfFILfk2D2rot+uoXwhP6l3
rmwgKAuKdUmS0UGceJXu1h9zTlQw665l9mlutZCRokckiCVTArPEW9FukLqu3eYP
QD3kMBHyXuanotk4ZzuS3vQsknhJtLjJYKWKLrZ18NwHzIADbbskeWZyTmz7Jveq
aw9FMPu7lUaAQ99PZNTWxraVupWxFy+SyjkB9aA6N8IB53gmg6w/DZK9yiqTsTJh
xhVAEH/6zt0cnYmy1u09doOpk2u7K/rHjDWpAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUMXl/Gdvxta8B39nMtGgzdCqui5cwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL01YbF9HZHZ4dGE4QjM5bk10
R2d6ZENxdWk1Yy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJq
ASAwDQYJKoZIhvcNAQELBQADggEBAE7IS7Xk3kNqBE2/0scA6puzMIRcxX83GkLr
LLIcTkwBy2opx9EeOdcM1Ky2vHibLJX49JOeoW5nxPd1oKiTSs1icaobZWk/edVW
ZH9fCdoHIM1O6+AepMKOuz4SugV0sE43yK6/wOv68Kb975AyhzqqNJp62Z29BoLl
mbbMcBmmAhr4boUEtgh4w1qx/AwbWhVuVsdRBlmQGoswGKDfhbUjrUdAqN3QEAbR
b1Np9dEWhgoa1lQ+00398237+ThdUCAEkZH7di35QdnzRZ/f32UkdRvvcj+hCt0e
QdDhYu+l2/mAN9SgSKyevwE+0GjThz9kOXo/sGSiZG7RZlzZNQE=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:29 2024 by rpki-client on console-ams.rpki-client.org