Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NTlLH3zRBokh6S06iP8dIJutnqM.roa
File: NTlLH3zRBokh6S06iP8dIJutnqM.roa (raw, json)
Hash identifier: brWEETZcIKUJNODkLSsOVHUTP5eqmKgjGmD6mjEf+Us=
Subject key identifier: 35:39:4B:1F:7C:D1:06:89:21:E9:2D:3A:88:FF:1D:20:9B:AD:9E:A3
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1BCD
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NTlLH3zRBokh6S06iP8dIJutnqM.roa
Signing time: Wed 29 Sep 2021 02:47:01 +0000
ROA not before: Wed 29 Sep 2021 02:47:01 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 118.233.144.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7117 (0x1bcd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:47:01 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=35394B1F7CD1068921E92D3A88FF1D209BAD9EA3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:eb:31:e0:67:22:4f:b6:46:6b:b1:f8:7e:36:
53:b2:4c:8f:d8:e8:f9:29:87:ec:fd:95:a5:41:79:
78:7d:5a:b5:ce:8b:22:64:46:06:5e:42:33:b4:6b:
c5:69:0c:fd:e4:1c:42:03:ff:b0:59:a9:8e:2b:ae:
82:c6:23:8b:27:5f:71:82:da:cf:82:d5:58:48:97:
16:84:a6:37:e8:83:ba:f2:22:f2:cd:9f:cf:a7:90:
a3:48:bb:15:e9:c7:08:55:d0:74:40:73:2d:e9:02:
ec:6b:cb:83:17:65:98:77:25:66:e3:4c:85:a5:bf:
2b:e6:19:49:60:37:70:7d:7d:72:7a:32:e2:dd:e2:
e6:f3:52:0f:76:fe:fb:c0:e7:98:e5:8b:ca:fe:10:
ef:7b:a1:ee:4d:1f:35:7a:1f:50:06:49:e4:51:7b:
4e:d1:90:1f:07:f7:9c:5a:13:8f:a2:67:eb:04:0d:
22:69:0a:24:5d:2d:4e:6f:df:60:a0:3d:72:a1:60:
73:98:35:cb:1d:b2:44:2c:2f:06:0a:54:b3:02:a2:
9a:42:f3:44:11:3f:60:ff:ee:77:1f:12:66:2f:75:
7d:1b:d9:10:62:a9:32:d8:db:e3:14:74:76:3d:75:
18:ea:68:e0:16:8c:b9:a5:35:50:18:5a:1d:eb:c5:
b5:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:39:4B:1F:7C:D1:06:89:21:E9:2D:3A:88:FF:1D:20:9B:AD:9E:A3
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NTlLH3zRBokh6S06iP8dIJutnqM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.144.0/22
Signature Algorithm: sha256WithRSAEncryption
a7:c7:71:79:ad:d0:27:9c:8c:6c:10:93:12:8a:ee:31:f3:33:
cc:9e:a3:a9:11:7d:f0:26:5c:3e:2e:08:0b:5f:17:1e:8e:3d:
76:42:03:2b:ac:73:e3:80:57:36:df:49:f8:9a:c5:56:66:a9:
e6:0d:d6:b3:a5:45:b6:cd:79:ce:ef:c1:9c:1c:8d:04:84:d8:
2e:c3:9f:77:ca:ac:c3:94:7b:97:3b:0c:88:23:61:29:36:c8:
40:cb:5c:85:bc:16:54:a6:07:0e:13:3b:d0:d0:ea:60:6f:71:
fe:b2:4a:2a:7f:d0:a4:fc:00:3f:b5:ca:c4:8c:c0:8f:43:84:
b6:68:66:d5:06:c6:15:61:f9:aa:f1:7f:c0:02:55:cd:43:a7:
45:da:59:1a:64:96:87:c2:5b:65:01:65:01:4e:70:a7:38:e1:
1a:6d:9b:53:29:1b:b6:17:3c:42:a1:f7:59:18:f5:81:ef:ae:
7d:f5:28:2f:3d:d2:2c:99:bd:d1:b1:9f:33:40:36:64:57:fd:
a6:f4:1d:47:e2:88:56:22:63:10:76:03:35:42:f6:ec:5b:dc:
f6:8c:77:13:04:48:fb:b9:ef:a0:3a:d7:1f:41:f3:bd:f7:16:
d3:c6:bb:b3:12:ee:f0:6a:ab:b5:50:14:d7:da:5b:54:a6:47:
ae:36:22:e6
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICG80wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMTA5Mjkw
MjQ3MDFaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDM1Mzk0QjFGN0NEMTA2
ODkyMUU5MkQzQTg4RkYxRDIwOUJBRDlFQTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDB6zHgZyJPtkZrsfh+NlOyTI/Y6Pkph+z9laVBeXh9WrXOiyJk
RgZeQjO0a8VpDP3kHEID/7BZqY4rroLGI4snX3GC2s+C1VhIlxaEpjfog7ryIvLN
n8+nkKNIuxXpxwhV0HRAcy3pAuxry4MXZZh3JWbjTIWlvyvmGUlgN3B9fXJ6MuLd
4ubzUg92/vvA55jli8r+EO97oe5NHzV6H1AGSeRRe07RkB8H95xaE4+iZ+sEDSJp
CiRdLU5v32CgPXKhYHOYNcsdskQsLwYKVLMCoppC80QRP2D/7ncfEmYvdX0b2RBi
qTLY2+MUdHY9dRjqaOAWjLmlNVAYWh3rxbWFAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUNTlLH3zRBokh6S06iP8dIJutnqMwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL05UbExIM3pSQm9raDZTMDZp
UDhkSUp1dG5xTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2
6ZAwDQYJKoZIhvcNAQELBQADggEBAKfHcXmt0CecjGwQkxKK7jHzM8yeo6kRffAm
XD4uCAtfFx6OPXZCAyusc+OAVzbfSfiaxVZmqeYN1rOlRbbNec7vwZwcjQSE2C7D
n3fKrMOUe5c7DIgjYSk2yEDLXIW8FlSmBw4TO9DQ6mBvcf6ySip/0KT8AD+1ysSM
wI9DhLZoZtUGxhVh+arxf8ACVc1Dp0XaWRpklofCW2UBZQFOcKc44Rptm1MpG7YX
PEKh91kY9YHvrn31KC890iyZvdGxnzNANmRX/ab0HUfiiFYiYxB2AzVC9uxb3PaM
dxMESPu576A61x9B8733FtPGu7MS7vBqq7VQFNfaW1SmR642IuY=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:29 2024 by rpki-client on console-ams.rpki-client.org