Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ORoms4IcKwmP0KNXM6HF4IVpglQ.roa
File: ORoms4IcKwmP0KNXM6HF4IVpglQ.roa (raw, json)
Hash identifier: Wk5PapsTC6mYNenI0QsZLq2l+vHkMOMXVOUcc4g1oMQ=
Subject key identifier: 39:1A:26:B3:82:1C:2B:09:8F:D0:A3:57:33:A1:C5:E0:85:69:82:54
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1CE9
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ORoms4IcKwmP0KNXM6HF4IVpglQ.roa
Signing time: Wed 29 Sep 2021 02:48:22 +0000
ROA not before: Wed 29 Sep 2021 02:48:22 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 180.177.176.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7401 (0x1ce9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:48:22 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=391A26B3821C2B098FD0A35733A1C5E085698254
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:e4:0c:d9:1d:19:6c:19:f3:59:8f:68:b3:76:
60:6f:ac:90:4f:3e:30:98:b6:f0:5f:d0:59:51:31:
d0:0e:dd:1d:01:9b:56:2e:65:91:9f:f7:60:ca:c0:
1b:e6:1d:06:4d:3a:81:43:a5:c7:28:8c:62:ae:e9:
2c:3e:68:4e:56:ec:55:48:1c:44:09:07:a9:28:74:
79:32:98:ab:58:76:ca:b1:82:f3:e3:1d:ac:64:c4:
54:34:44:3a:2a:5d:14:16:4d:63:25:a6:fb:91:8e:
6a:a9:6a:be:d7:76:a8:1e:54:a7:06:45:ae:4d:cb:
6d:c8:93:02:6d:fc:23:ee:35:94:9d:52:0b:8f:7b:
c2:a9:4b:de:66:d3:7c:d7:7b:67:b1:e0:e3:8f:9f:
e3:8d:a1:69:04:88:76:4d:ea:fc:97:c0:24:5e:96:
78:4a:58:9f:5b:ca:44:b4:15:ce:c9:21:f1:e0:6a:
0e:e5:c7:6d:f8:1e:88:a2:32:2f:01:b3:9c:58:91:
2c:30:50:57:53:7f:c8:c5:6c:6c:61:3a:a2:57:7f:
49:d2:0e:ed:d0:3e:a5:9b:aa:a7:7d:81:1b:56:0b:
4a:2c:b6:80:8a:c3:1a:df:e6:f1:12:8d:fd:c1:23:
4e:90:25:1a:79:0b:4b:ef:22:4a:23:94:77:47:38:
2c:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:1A:26:B3:82:1C:2B:09:8F:D0:A3:57:33:A1:C5:E0:85:69:82:54
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ORoms4IcKwmP0KNXM6HF4IVpglQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.177.176.0/21
Signature Algorithm: sha256WithRSAEncryption
20:4f:4a:b4:1c:35:61:a2:df:5a:87:12:c8:b8:43:42:f5:fa:
18:cf:62:b2:22:ed:c6:8f:30:40:10:28:28:69:fd:ff:97:db:
32:19:6a:63:5f:bd:0b:0c:75:f9:45:97:54:4e:e2:7d:cb:0c:
6a:9e:5c:63:fa:fa:44:25:ad:1e:be:05:4e:7b:3f:70:43:8c:
92:e9:9d:6e:11:13:59:92:d1:cf:84:e5:53:99:af:73:99:f8:
6d:14:c4:b7:8e:3b:c7:73:1c:cf:db:e7:b2:4d:40:72:62:c2:
af:fe:17:b0:1d:93:c8:01:6d:75:7a:a0:34:af:9f:67:f9:e5:
7e:bf:cd:73:7e:6c:91:e0:46:00:f3:04:6a:88:a3:8e:3b:5a:
dc:45:6a:f8:93:53:e6:d6:c9:2d:28:4f:3e:f3:d6:04:26:6a:
76:98:50:6d:01:16:f3:08:13:47:db:bd:d4:bc:e1:47:12:5b:
46:22:d4:ab:d2:aa:c3:cb:3c:dd:52:a0:07:9a:0d:e3:0b:f0:
93:b3:d2:94:64:77:03:b6:d4:ab:8c:15:53:b2:40:4f:86:e2:
c9:dc:e8:7c:a6:8b:8f:28:0f:37:06:91:a1:46:24:b1:ba:ab:
21:56:03:b0:73:e1:76:26:f3:fc:38:fd:a0:9c:27:f0:5f:fb:
14:aa:e2:f9
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICHOkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMTA5Mjkw
MjQ4MjJaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDM5MUEyNkIzODIxQzJC
MDk4RkQwQTM1NzMzQTFDNUUwODU2OTgyNTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDL5AzZHRlsGfNZj2izdmBvrJBPPjCYtvBf0FlRMdAO3R0Bm1Yu
ZZGf92DKwBvmHQZNOoFDpccojGKu6Sw+aE5W7FVIHEQJB6kodHkymKtYdsqxgvPj
HaxkxFQ0RDoqXRQWTWMlpvuRjmqpar7XdqgeVKcGRa5Ny23IkwJt/CPuNZSdUguP
e8KpS95m03zXe2ex4OOPn+ONoWkEiHZN6vyXwCRelnhKWJ9bykS0Fc7JIfHgag7l
x234HoiiMi8Bs5xYkSwwUFdTf8jFbGxhOqJXf0nSDu3QPqWbqqd9gRtWC0ostoCK
wxrf5vESjf3BI06QJRp5C0vvIkojlHdHOCy/AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUORoms4IcKwmP0KNXM6HF4IVpglQwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL09Sb21zNEljS3dtUDBLTlhN
NkhGNElWcGdsUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0
sbAwDQYJKoZIhvcNAQELBQADggEBACBPSrQcNWGi31qHEsi4Q0L1+hjPYrIi7caP
MEAQKChp/f+X2zIZamNfvQsMdflFl1RO4n3LDGqeXGP6+kQlrR6+BU57P3BDjJLp
nW4RE1mS0c+E5VOZr3OZ+G0UxLeOO8dzHM/b57JNQHJiwq/+F7Adk8gBbXV6oDSv
n2f55X6/zXN+bJHgRgDzBGqIo447WtxFaviTU+bWyS0oTz7z1gQmanaYUG0BFvMI
E0fbvdS84UcSW0Yi1KvSqsPLPN1SoAeaDeML8JOz0pRkdwO21KuMFVOyQE+G4snc
6Hymi48oDzcGkaFGJLG6qyFWA7Bz4XYm8/w4/aCcJ/Bf+xSq4vk=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:52 2024 by rpki-client on console-fra.rpki-client.org