Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NMRqATbM_4isbFpBrDlOg8kGYv8.roa
File: NMRqATbM_4isbFpBrDlOg8kGYv8.roa (raw, json)
Hash identifier: jMq1hHo/Sc5mmY+rLnJFLcaMoHErY7nKH2zTljBxNuc=
Subject key identifier: 34:C4:6A:01:36:CC:FF:88:AC:6C:5A:41:AC:39:4E:83:C9:06:62:FF
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1E60
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NMRqATbM_4isbFpBrDlOg8kGYv8.roa
Signing time: Tue 03 May 2022 03:37:21 +0000
ROA not before: Tue 03 May 2022 03:37:21 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 118.233.164.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7776 (0x1e60)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: May 3 03:37:21 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=34C46A0136CCFF88AC6C5A41AC394E83C90662FF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:6c:24:30:39:f3:4c:96:e1:b9:d2:66:a3:dd:
4b:8e:d5:f0:b6:31:93:44:36:7b:1c:58:e6:ed:bd:
2e:8d:bc:75:6e:c0:39:e4:eb:d9:db:bc:63:12:11:
3a:da:e5:20:aa:c1:74:0c:14:88:d5:a8:7a:8e:f4:
57:59:07:68:ae:96:01:23:d3:49:39:68:ec:bd:19:
cc:ff:7f:c1:85:a5:64:01:97:57:1e:6f:12:57:0b:
02:9b:55:f3:53:2f:95:20:ff:09:b8:6c:71:56:2d:
1f:51:c9:14:5c:d1:7d:c8:65:48:37:1e:5c:2e:25:
fe:fc:b3:da:d2:24:a1:6f:18:d6:e8:cc:f8:ed:cd:
66:b4:d2:9c:af:08:43:86:19:aa:54:b8:a4:6b:35:
47:2e:0d:50:9d:68:4c:01:25:59:53:4b:60:ca:72:
25:81:fd:1c:41:df:5b:13:45:55:bc:b4:06:91:b9:
18:0e:60:58:03:af:c2:cf:ab:46:0e:4e:fa:69:47:
f4:04:62:e2:8d:d9:dd:ad:b7:bb:16:e0:02:3b:d2:
4c:80:3e:59:b1:8e:ba:01:4b:20:c1:f1:4c:e9:48:
55:bf:12:11:ad:43:9b:93:f3:0f:00:50:60:e6:42:
b2:f0:c6:8d:1e:f0:0e:a5:dd:6f:f3:22:d8:3b:62:
fa:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:C4:6A:01:36:CC:FF:88:AC:6C:5A:41:AC:39:4E:83:C9:06:62:FF
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NMRqATbM_4isbFpBrDlOg8kGYv8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.164.0/22
Signature Algorithm: sha256WithRSAEncryption
30:98:39:2d:44:d5:78:7e:21:b2:ae:7c:db:99:2b:0e:e7:cd:
db:a2:99:e6:29:07:91:2a:c5:96:73:f6:a4:ec:49:31:39:20:
b1:5f:1b:d3:92:7a:df:0e:b5:35:3b:d1:c5:c6:f6:0e:b3:1f:
13:4a:e8:98:45:13:25:30:80:84:8a:b8:d0:24:f0:c8:8a:cf:
15:0e:75:c8:95:1d:03:3a:32:83:da:b9:15:f8:36:03:ed:55:
ba:13:e1:b8:96:5a:d0:00:89:23:f5:f5:63:22:7b:b8:d3:74:
84:a9:cc:d6:57:fc:32:ed:21:bd:11:49:9e:2d:a9:cd:5e:24:
d3:aa:c5:9f:c8:c1:fc:f0:22:58:4a:bd:69:25:48:a8:71:c7:
bd:5f:20:47:37:5a:30:90:4d:54:2d:3c:23:b6:ce:84:d0:1c:
b9:aa:10:68:f3:70:94:31:b3:33:a3:d1:6c:c1:76:93:b1:58:
9a:56:63:ad:94:9e:84:f0:ff:64:54:37:5b:c6:c3:f1:40:97:
1f:08:7d:ba:14:38:30:88:a0:cf:1c:59:49:d7:59:26:93:2c:
85:d8:6f:24:b2:f8:71:6e:d6:6b:8b:68:0c:ac:be:7e:6f:f3:
58:03:b8:2c:07:d5:99:50:3c:7e:b2:19:60:5f:be:94:52:c9:
52:31:62:44
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICHmAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMjA1MDMw
MzM3MjFaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDM0QzQ2QTAxMzZDQ0ZG
ODhBQzZDNUE0MUFDMzk0RTgzQzkwNjYyRkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQClbCQwOfNMluG50maj3UuO1fC2MZNENnscWObtvS6NvHVuwDnk
69nbvGMSETra5SCqwXQMFIjVqHqO9FdZB2iulgEj00k5aOy9Gcz/f8GFpWQBl1ce
bxJXCwKbVfNTL5Ug/wm4bHFWLR9RyRRc0X3IZUg3HlwuJf78s9rSJKFvGNbozPjt
zWa00pyvCEOGGapUuKRrNUcuDVCdaEwBJVlTS2DKciWB/RxB31sTRVW8tAaRuRgO
YFgDr8LPq0YOTvppR/QEYuKN2d2tt7sW4AI70kyAPlmxjroBSyDB8UzpSFW/EhGt
Q5uT8w8AUGDmQrLwxo0e8A6l3W/zItg7YvpdAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUNMRqATbM/4isbFpBrDlOg8kGYv8wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL05NUnFBVGJNXzRpc2JGcEJy
RGxPZzhrR1l2OC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2
6aQwDQYJKoZIhvcNAQELBQADggEBADCYOS1E1Xh+IbKufNuZKw7nzduimeYpB5Eq
xZZz9qTsSTE5ILFfG9OSet8OtTU70cXG9g6zHxNK6JhFEyUwgISKuNAk8MiKzxUO
dciVHQM6MoPauRX4NgPtVboT4biWWtAAiSP19WMie7jTdISpzNZX/DLtIb0RSZ4t
qc1eJNOqxZ/IwfzwIlhKvWklSKhxx71fIEc3WjCQTVQtPCO2zoTQHLmqEGjzcJQx
szOj0WzBdpOxWJpWY62UnoTw/2RUN1vGw/FAlx8IfboUODCIoM8cWUnXWSaTLIXY
bySy+HFu1muLaAysvn5v81gDuCwH1ZlQPH6yGWBfvpRSyVIxYkQ=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:17 2023 by rpki-client on console-ams.rpki-client.org