Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OTz0VS4-tnSTYnM9Ih8Nj0QvaPM.roa
File: OTz0VS4-tnSTYnM9Ih8Nj0QvaPM.roa (raw, json)
Hash identifier: LWOc75GCl+YLmHLEBYlg6QUDjLtcJuRGMj76tH1ABt8=
Subject key identifier: 39:3C:F4:55:2E:3E:B6:74:93:62:73:3D:22:1F:0D:8F:44:2F:68:F3
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1CA2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OTz0VS4-tnSTYnM9Ih8Nj0QvaPM.roa
Signing time: Wed 29 Sep 2021 02:48:00 +0000
ROA not before: Wed 29 Sep 2021 02:48:00 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 106.1.136.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7330 (0x1ca2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:48:00 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=393CF4552E3EB6749362733D221F0D8F442F68F3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:51:eb:50:bc:e7:7b:ba:b7:18:86:11:cb:ce:
a8:fd:cf:89:f2:93:0b:68:e4:8a:d4:8d:b9:47:c9:
64:e2:a3:bd:8a:8d:62:24:26:08:da:40:48:45:73:
3f:fc:b3:02:c2:fb:27:da:2d:6c:bc:8f:4a:ed:17:
b3:c4:b1:a8:5c:39:0e:69:f1:19:8c:45:d5:27:8c:
62:16:fa:a3:e6:f8:da:22:ff:dd:62:27:ad:c8:20:
e4:59:83:d8:67:cd:44:ac:e0:39:67:73:c1:ac:1f:
2f:af:f8:9d:02:f2:e3:ba:93:70:6e:2c:0b:cf:a1:
07:9c:14:e1:24:5c:16:03:65:ff:48:e2:f6:c2:37:
76:f4:30:c1:bb:7c:5e:92:4b:1f:ba:17:da:d4:e6:
17:2f:e1:a0:ba:ea:6f:8e:11:40:a1:d5:1f:f0:2f:
be:8b:f9:23:3b:58:8e:16:54:09:35:f0:aa:97:60:
e3:bf:a1:4d:dc:a1:32:8c:27:11:08:5f:5e:e6:f5:
95:4b:c7:58:f2:33:63:f0:9b:9f:d3:b9:fb:aa:43:
49:55:cc:88:36:fc:62:84:5d:11:bc:a5:3e:e1:9d:
b6:d0:60:30:12:7e:94:e8:85:e6:7f:0d:35:b0:f0:
8a:28:ae:24:ae:33:5f:df:01:19:86:a8:86:b0:5d:
45:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:3C:F4:55:2E:3E:B6:74:93:62:73:3D:22:1F:0D:8F:44:2F:68:F3
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OTz0VS4-tnSTYnM9Ih8Nj0QvaPM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.136.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:9a:8f:f8:cb:a4:ce:0b:5e:55:ee:74:9a:db:8f:fb:c8:2a:
3e:43:17:e3:25:32:dc:9e:d0:0b:fe:02:67:5c:6e:97:f3:5c:
fa:2d:dd:d4:64:0b:21:e3:7a:0d:c8:0f:6f:f5:dc:40:14:41:
a9:34:e7:b0:af:85:5e:2a:b5:53:1a:74:ef:48:7d:62:c9:67:
07:c8:29:47:ae:46:91:69:c4:58:14:8a:3d:6a:c8:33:25:c9:
e1:c2:63:aa:b9:ab:c4:c4:88:b6:c6:72:15:61:a1:4d:f6:13:
87:3c:f3:f4:2f:d1:6a:d6:45:2c:ff:10:e4:94:0a:26:15:d3:
cc:9e:7e:90:a8:bb:2c:e0:46:d2:47:d5:26:70:22:cb:89:1f:
c7:c3:88:92:ed:81:e2:ed:17:cf:ce:ee:f9:12:eb:b5:a5:95:
77:17:d5:f0:a7:be:48:f9:38:17:ed:da:49:a5:16:02:cc:12:
b8:e0:6c:47:ce:27:bb:87:c2:53:e4:12:a0:b5:6b:ad:8d:89:
ee:ec:76:f5:4c:33:87:45:77:61:05:8d:dd:47:fa:b9:13:18:
f0:cf:d9:af:be:87:63:dc:0f:27:ac:d3:a7:35:1d:bd:66:25:
a9:df:51:a8:9a:47:4f:e3:d1:ff:f0:aa:62:7c:d7:26:e4:b0:
38:9b:21:4f
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICHKIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMTA5Mjkw
MjQ4MDBaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDM5M0NGNDU1MkUzRUI2
NzQ5MzYyNzMzRDIyMUYwRDhGNDQyRjY4RjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDQUetQvOd7urcYhhHLzqj9z4nykwto5IrUjblHyWTio72KjWIk
JgjaQEhFcz/8swLC+yfaLWy8j0rtF7PEsahcOQ5p8RmMRdUnjGIW+qPm+Noi/91i
J63IIORZg9hnzUSs4Dlnc8GsHy+v+J0C8uO6k3BuLAvPoQecFOEkXBYDZf9I4vbC
N3b0MMG7fF6SSx+6F9rU5hcv4aC66m+OEUCh1R/wL76L+SM7WI4WVAk18KqXYOO/
oU3coTKMJxEIX17m9ZVLx1jyM2Pwm5/TufuqQ0lVzIg2/GKEXRG8pT7hnbbQYDAS
fpToheZ/DTWw8IooriSuM1/fARmGqIawXUXvAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUOTz0VS4+tnSTYnM9Ih8Nj0QvaPMwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL09UejBWUzQtdG5TVFluTTlJ
aDhOajBRdmFQTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABq
AYgwDQYJKoZIhvcNAQELBQADggEBAKOaj/jLpM4LXlXudJrbj/vIKj5DF+MlMtye
0Av+AmdcbpfzXPot3dRkCyHjeg3ID2/13EAUQak057CvhV4qtVMadO9IfWLJZwfI
KUeuRpFpxFgUij1qyDMlyeHCY6q5q8TEiLbGchVhoU32E4c88/Qv0WrWRSz/EOSU
CiYV08yefpCouyzgRtJH1SZwIsuJH8fDiJLtgeLtF8/O7vkS67WllXcX1fCnvkj5
OBft2kmlFgLMErjgbEfOJ7uHwlPkEqC1a62Nie7sdvVMM4dFd2EFjd1H+rkTGPDP
2a++h2PcDyes06c1Hb1mJanfUaiaR0/j0f/wqmJ81ybksDibIU8=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:18 2023 by rpki-client on console-ams.rpki-client.org