Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PCNaeawHZwSO6v3HONpaOS1n44E.roa
File: PCNaeawHZwSO6v3HONpaOS1n44E.roa (raw, json)
Hash identifier: Ny02kbxeLARxJVY/4Djhvv0kFXeea+SYva+W0XvKon8=
Subject key identifier: 3C:23:5A:79:AC:07:67:04:8E:EA:FD:C7:38:DA:5A:39:2D:67:E3:81
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 227D
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PCNaeawHZwSO6v3HONpaOS1n44E.roa
Signing time: Fri 25 Nov 2022 04:41:14 +0000
ROA not before: Fri 25 Nov 2022 04:41:14 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 180.177.220.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8829 (0x227d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:41:14 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3C235A79AC0767048EEAFDC738DA5A392D67E381
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:b0:2d:2e:c3:02:3b:76:eb:d9:02:bc:cb:cd:
9a:86:da:48:49:d1:f4:7c:93:8e:94:28:57:7d:30:
c7:f2:cd:f6:96:ce:a1:f7:f2:18:0b:58:5f:c4:d3:
57:a5:90:a9:33:96:37:4e:58:37:a5:ed:3b:9a:ee:
c7:21:45:74:32:e7:87:2c:13:51:43:a4:46:ba:9e:
60:70:3c:10:f2:c9:ad:1c:1e:3d:9a:93:a5:fe:8f:
22:ab:0f:94:72:5e:ab:05:43:42:10:71:eb:0f:4b:
02:7d:70:3e:98:bf:b1:54:d5:fa:c4:c4:e5:8e:d4:
df:f4:f3:2b:67:b7:65:fb:e2:7a:80:19:dd:1f:ee:
d6:f6:a5:d0:f6:de:d4:ac:86:ba:58:4c:5b:32:c3:
fa:1a:09:76:df:de:12:21:54:81:1f:b1:48:62:1a:
26:10:12:8b:e5:11:51:ce:ce:73:ef:77:46:13:8b:
f6:84:71:14:46:df:aa:15:7f:14:29:e4:a8:0b:4f:
2b:c1:1e:1b:85:39:71:37:82:3c:1a:a2:83:46:6d:
72:34:8f:68:6b:88:d8:fa:63:ee:ae:64:52:33:8c:
52:e3:fe:2e:77:ee:cd:02:56:a2:83:04:a0:21:ee:
02:73:5d:fb:b9:c6:69:81:6e:15:49:50:aa:df:71:
06:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:23:5A:79:AC:07:67:04:8E:EA:FD:C7:38:DA:5A:39:2D:67:E3:81
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PCNaeawHZwSO6v3HONpaOS1n44E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.177.220.0/23
Signature Algorithm: sha256WithRSAEncryption
a5:e0:80:4d:59:19:b3:6d:7b:91:1c:bf:ba:82:90:69:0f:5b:
bf:14:a0:c9:7d:24:2d:7c:ee:d0:a5:2e:ea:f2:41:dc:5c:8f:
e2:09:3b:03:b2:35:99:0c:38:80:f6:b6:67:d0:4c:5c:07:10:
30:fc:fb:c5:48:9e:e0:69:c6:6a:a0:93:70:2a:84:0b:a7:a5:
53:ae:eb:93:96:99:89:29:a3:32:d0:6c:57:00:06:23:6b:d7:
7f:4b:35:22:6a:ac:31:69:70:26:18:48:0a:c3:fb:a6:1f:93:
bf:65:a9:fa:e3:03:5b:aa:20:04:81:66:f0:67:b1:83:57:f3:
bb:35:0f:18:dc:97:cb:54:d0:8d:99:81:52:b7:73:66:1b:32:
6d:0b:ae:b2:8c:28:29:4c:08:ea:4d:40:03:32:d3:da:4a:6e:
aa:ab:78:ac:b3:46:ae:b2:f5:d1:ec:1e:94:99:a0:c4:fa:1a:
66:70:b4:d7:8d:93:07:41:c8:15:dc:eb:a6:da:18:2a:83:7c:
8d:ba:4e:37:a7:56:36:88:58:db:12:2d:a1:3c:73:dc:66:1e:
8c:a0:b5:a1:c1:2f:f6:34:fc:d7:10:bc:c4:5a:2e:a4:de:6b:
b6:a9:d2:99:ee:71:16:2a:33:76:4a:6c:e9:61:46:59:e2:8d:
db:83:93:f0
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICIn0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMjExMjUw
NDQxMTRaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDNDMjM1QTc5QUMwNzY3
MDQ4RUVBRkRDNzM4REE1QTM5MkQ2N0UzODEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDtsC0uwwI7duvZArzLzZqG2khJ0fR8k46UKFd9MMfyzfaWzqH3
8hgLWF/E01elkKkzljdOWDel7Tua7schRXQy54csE1FDpEa6nmBwPBDyya0cHj2a
k6X+jyKrD5RyXqsFQ0IQcesPSwJ9cD6Yv7FU1frExOWO1N/08ytnt2X74nqAGd0f
7tb2pdD23tSshrpYTFsyw/oaCXbf3hIhVIEfsUhiGiYQEovlEVHOznPvd0YTi/aE
cRRG36oVfxQp5KgLTyvBHhuFOXE3gjwaooNGbXI0j2hriNj6Y+6uZFIzjFLj/i53
7s0CVqKDBKAh7gJzXfu5xmmBbhVJUKrfcQbLAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUPCNaeawHZwSO6v3HONpaOS1n44EwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1BDTmFlYXdIWndTTzZ2M0hP
TnBhT1MxbjQ0RS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAG0
sdwwDQYJKoZIhvcNAQELBQADggEBAKXggE1ZGbNte5Ecv7qCkGkPW78UoMl9JC18
7tClLuryQdxcj+IJOwOyNZkMOID2tmfQTFwHEDD8+8VInuBpxmqgk3AqhAunpVOu
65OWmYkpozLQbFcABiNr139LNSJqrDFpcCYYSArD+6Yfk79lqfrjA1uqIASBZvBn
sYNX87s1Dxjcl8tU0I2ZgVK3c2YbMm0LrrKMKClMCOpNQAMy09pKbqqreKyzRq6y
9dHsHpSZoMT6GmZwtNeNkwdByBXc66baGCqDfI26TjenVjaIWNsSLaE8c9xmHoyg
taHBL/Y0/NcQvMRaLqTea7ap0pnucRYqM3ZKbOlhRlnijduDk/A=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:30 2024 by rpki-client on console-ams.rpki-client.org