Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/MgmAUrWWdngJ-Lp0VMrClRmx5cY.roa
File: MgmAUrWWdngJ-Lp0VMrClRmx5cY.roa (raw, json)
Hash identifier: oDXuKSft3tVWfjpfBf9ArNiH7w7G1kc/w3Mf8tghwDs=
Subject key identifier: 32:09:80:52:B5:96:76:78:09:F8:BA:74:54:CA:C2:95:19:B1:E5:C6
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1EF1
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/MgmAUrWWdngJ-Lp0VMrClRmx5cY.roa
Signing time: Mon 20 Jun 2022 07:56:24 +0000
ROA not before: Mon 20 Jun 2022 07:56:24 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 123.193.160.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7921 (0x1ef1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Jun 20 07:56:24 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=32098052B596767809F8BA7454CAC29519B1E5C6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:e0:cc:5c:a8:89:7c:05:96:d7:94:0b:d2:f9:
a3:d0:26:83:ec:9f:a4:a8:ae:56:44:6d:29:30:ec:
1b:d0:d3:3d:87:73:0b:08:61:5c:65:38:3c:e3:40:
3a:cd:b9:97:ad:ea:88:35:47:57:ec:9f:c4:b6:34:
70:16:70:e5:19:b5:09:5b:3f:84:b9:59:be:4b:5a:
91:ff:2c:38:71:be:ad:38:ae:87:ff:99:63:0f:f2:
b3:65:cf:29:9b:04:02:53:da:67:cc:5a:43:77:db:
a7:ab:28:e9:91:47:38:2d:41:b0:6f:b9:3f:f4:89:
78:59:13:25:c6:15:eb:2b:4d:8b:06:b3:63:da:3a:
57:5c:a1:fd:75:ff:a8:45:d4:7a:68:8e:8c:f1:72:
f1:d5:91:6e:d5:a6:c3:7e:b4:82:c0:4e:48:fb:4c:
b6:09:1c:5e:84:07:08:1a:ed:b2:91:3e:3b:da:d4:
b3:4c:27:32:76:89:36:d6:75:47:37:1a:cf:08:59:
fa:13:c5:31:1c:3d:1a:b3:2e:2e:5a:d0:7d:01:2a:
38:2d:10:68:6a:f0:17:f4:7c:35:3f:85:ab:fc:41:
71:ee:9c:f1:64:91:79:55:e9:f5:10:dd:5d:6e:0b:
5c:dc:0f:43:f0:70:49:9c:48:15:83:98:f9:18:b6:
92:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:09:80:52:B5:96:76:78:09:F8:BA:74:54:CA:C2:95:19:B1:E5:C6
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/MgmAUrWWdngJ-Lp0VMrClRmx5cY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.160.0/22
Signature Algorithm: sha256WithRSAEncryption
9b:be:54:d2:a6:4b:56:11:be:e5:68:59:35:b3:d6:b0:49:3c:
71:cb:26:fd:76:83:6d:1a:6f:7a:f6:c7:81:b5:18:74:22:9a:
c1:0c:2a:3e:a0:07:a3:cd:12:c2:05:38:1b:0c:ff:55:57:0e:
b9:d0:e3:4f:3a:5f:c5:8c:a6:32:86:65:e3:62:fa:7d:bf:5d:
3c:fd:a2:bd:67:12:12:f9:a5:55:7a:34:62:52:43:8a:3c:21:
39:a9:07:a0:19:2e:f0:6a:3f:da:ec:04:69:26:38:55:8b:b6:
a0:3e:2a:e3:0b:6a:61:ce:0a:55:6f:96:8e:45:eb:61:4d:e3:
7b:0f:4a:be:30:a8:fe:1c:da:ff:33:46:80:08:98:86:1e:5d:
d5:ff:39:66:e8:9d:05:78:1d:cd:f4:6f:37:27:b4:58:a4:57:
c3:03:a0:f2:9a:39:62:a2:7b:b1:4c:10:90:3e:90:fe:38:13:
a9:c4:ca:5c:e1:56:ea:b4:be:e8:49:9e:f2:68:f7:8e:8b:f7:
bd:26:20:ea:d5:d9:7c:c1:b8:5c:20:0a:20:40:7a:f6:98:72:
b1:2c:f1:52:e8:59:87:8b:61:3c:d8:8e:66:60:7e:8d:5d:1f:
50:db:e9:de:7e:51:4a:fd:0a:f2:65:68:e1:c7:16:3e:e9:2d:
89:f5:20:68
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICHvEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMjA2MjAw
NzU2MjRaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDMyMDk4MDUyQjU5Njc2
NzgwOUY4QkE3NDU0Q0FDMjk1MTlCMUU1QzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDE4MxcqIl8BZbXlAvS+aPQJoPsn6SorlZEbSkw7BvQ0z2HcwsI
YVxlODzjQDrNuZet6og1R1fsn8S2NHAWcOUZtQlbP4S5Wb5LWpH/LDhxvq04rof/
mWMP8rNlzymbBAJT2mfMWkN326erKOmRRzgtQbBvuT/0iXhZEyXGFesrTYsGs2Pa
Oldcof11/6hF1HpojozxcvHVkW7VpsN+tILATkj7TLYJHF6EBwga7bKRPjva1LNM
JzJ2iTbWdUc3Gs8IWfoTxTEcPRqzLi5a0H0BKjgtEGhq8Bf0fDU/hav8QXHunPFk
kXlV6fUQ3V1uC1zcD0PwcEmcSBWDmPkYtpJvAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUMgmAUrWWdngJ+Lp0VMrClRmx5cYwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL01nbUFVcldXZG5nSi1McDBW
TXJDbFJteDVjWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7
waAwDQYJKoZIhvcNAQELBQADggEBAJu+VNKmS1YRvuVoWTWz1rBJPHHLJv12g20a
b3r2x4G1GHQimsEMKj6gB6PNEsIFOBsM/1VXDrnQ4086X8WMpjKGZeNi+n2/XTz9
or1nEhL5pVV6NGJSQ4o8ITmpB6AZLvBqP9rsBGkmOFWLtqA+KuMLamHOClVvlo5F
62FN43sPSr4wqP4c2v8zRoAImIYeXdX/OWbonQV4Hc30bzcntFikV8MDoPKaOWKi
e7FMEJA+kP44E6nEylzhVuq0vuhJnvJo946L970mIOrV2XzBuFwgCiBAevaYcrEs
8VLoWYeLYTzYjmZgfo1dH1Db6d5+UUr9CvJlaOHHFj7pLYn1IGg=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:29 2024 by rpki-client on console-ams.rpki-client.org