Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NnJyw7wYP8llflTbZXeoiIXj5xU.roa
File: NnJyw7wYP8llflTbZXeoiIXj5xU.roa (raw, json)
Hash identifier: UXA0qtamzIxPCDR1rYCEz3pRyw0+dwb4N3FGQm9xzwc=
Subject key identifier: 36:72:72:C3:BC:18:3F:C9:65:7E:54:DB:65:77:A8:88:85:E3:E7:15
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 15B3
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NnJyw7wYP8llflTbZXeoiIXj5xU.roa
Signing time: Sun 07 Feb 2021 12:06:02 +0000
ROA not before: Sun 07 Feb 2021 12:06:02 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 123.194.208.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5555 (0x15b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:06:02 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=367272C3BC183FC9657E54DB6577A88885E3E715
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:4b:d2:0d:91:0c:55:bd:a5:53:c8:0b:2d:85:
04:82:58:a5:a4:0f:be:7a:9d:9d:f6:2a:8b:db:83:
08:93:3c:49:31:12:b2:0d:ca:42:de:0c:4c:08:cd:
09:f1:a7:35:63:1c:6e:04:e4:c7:25:c8:37:6a:a0:
77:98:39:88:e6:27:93:d8:f0:55:bd:50:01:2f:23:
9d:fd:8c:b5:9b:aa:9a:70:54:b2:5d:5c:d9:0e:2d:
c2:bc:70:4e:98:91:28:8c:8f:14:96:a5:61:ab:6a:
4c:af:7c:b1:59:b7:bb:78:2e:d5:af:2c:3b:21:45:
0c:e7:ac:1a:69:a4:4b:e3:51:ab:77:bd:b0:0f:8b:
af:1f:a1:77:2e:d7:f5:d3:26:c1:75:0f:df:71:8e:
19:43:d6:38:f8:4a:f1:44:99:d0:2d:38:54:67:19:
90:d5:a9:93:65:ab:8f:53:85:b1:c1:13:16:ec:80:
95:5c:e0:6a:9b:b6:01:d0:9e:05:bf:84:72:ee:ed:
a6:50:2d:1c:48:fd:ad:05:f8:30:7c:b9:9a:bf:fd:
e3:f0:76:6f:8d:fa:23:e2:62:66:b9:6b:ed:6c:d4:
41:fb:56:0b:24:47:71:9a:bd:e4:67:36:85:b5:d4:
f2:50:da:97:6e:91:4a:da:1d:55:2d:93:f1:0d:13:
d3:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:72:72:C3:BC:18:3F:C9:65:7E:54:DB:65:77:A8:88:85:E3:E7:15
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NnJyw7wYP8llflTbZXeoiIXj5xU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.208.0/22
Signature Algorithm: sha256WithRSAEncryption
41:06:4e:1e:aa:f9:05:82:04:cb:f8:cc:ff:61:9a:f6:c3:f1:
1a:93:fd:83:c8:b8:24:46:76:9e:8e:e9:c0:d2:59:81:a0:b5:
3a:72:ea:c5:6b:f9:40:40:fa:bd:fe:62:89:68:79:28:df:02:
53:a6:1a:77:79:b5:12:24:31:e7:56:79:b5:a0:b1:9d:94:96:
42:48:bf:fc:8d:19:24:a8:a8:95:d5:90:a5:d4:fb:6e:64:6e:
15:4f:ec:5e:18:ab:81:c7:6c:67:de:ec:2a:e3:c2:ab:b9:9f:
5d:73:d3:bc:0d:52:2c:a1:e0:a1:0d:93:b4:4e:64:fd:ad:65:
bb:b7:01:a8:1c:c4:db:a6:60:bc:73:05:7c:45:fb:69:02:c2:
33:4a:b2:f7:1d:d5:ae:5e:40:bb:3b:1c:b9:04:b9:65:c7:e8:
bc:64:8e:6e:ba:45:ab:9c:8e:31:7e:22:74:6f:59:ec:09:20:
39:33:2c:ca:5f:a5:29:2f:3a:2d:90:e1:89:5e:59:d5:91:02:
40:e2:e1:97:2b:b1:94:23:6c:80:6c:cd:d7:08:84:1b:08:83:
4c:01:bf:82:ee:b4:68:2b:dd:04:79:9b:80:8b:25:d8:4d:f6:
ad:a9:18:2c:c3:79:5a:8c:66:bf:29:c5:3c:ca:1d:e4:e3:00:
97:d8:04:5a
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICFbMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMTAyMDcx
MjA2MDJaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDM2NzI3MkMzQkMxODNG
Qzk2NTdFNTREQjY1NzdBODg4ODVFM0U3MTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC7S9INkQxVvaVTyAsthQSCWKWkD756nZ32KovbgwiTPEkxErIN
ykLeDEwIzQnxpzVjHG4E5MclyDdqoHeYOYjmJ5PY8FW9UAEvI539jLWbqppwVLJd
XNkOLcK8cE6YkSiMjxSWpWGrakyvfLFZt7t4LtWvLDshRQznrBpppEvjUat3vbAP
i68foXcu1/XTJsF1D99xjhlD1jj4SvFEmdAtOFRnGZDVqZNlq49ThbHBExbsgJVc
4GqbtgHQngW/hHLu7aZQLRxI/a0F+DB8uZq//ePwdm+N+iPiYma5a+1s1EH7Vgsk
R3GaveRnNoW11PJQ2pdukUraHVUtk/ENE9NPAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUNnJyw7wYP8llflTbZXeoiIXj5xUwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL05uSnl3N3dZUDhsbGZsVGJa
WGVvaUlYajV4VS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7
wtAwDQYJKoZIhvcNAQELBQADggEBAEEGTh6q+QWCBMv4zP9hmvbD8RqT/YPIuCRG
dp6O6cDSWYGgtTpy6sVr+UBA+r3+YoloeSjfAlOmGnd5tRIkMedWebWgsZ2UlkJI
v/yNGSSoqJXVkKXU+25kbhVP7F4Yq4HHbGfe7Crjwqu5n11z07wNUiyh4KENk7RO
ZP2tZbu3AagcxNumYLxzBXxF+2kCwjNKsvcd1a5eQLs7HLkEuWXH6Lxkjm66Rauc
jjF+InRvWewJIDkzLMpfpSkvOi2Q4YleWdWRAkDi4ZcrsZQjbIBszdcIhBsIg0wB
v4LutGgr3QR5m4CLJdhN9q2pGCzDeVqMZr8pxTzKHeTjAJfYBFo=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:17 2023 by rpki-client on console-ams.rpki-client.org