Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PF2yYbrgAHkljerYtQLAXglQSDo.roa
File: PF2yYbrgAHkljerYtQLAXglQSDo.roa (raw, json)
Hash identifier: 5qBa+L+kYqaMZdnYYIWofuf51voIjhWVVRaCO84z86k=
Subject key identifier: 3C:5D:B2:61:BA:E0:00:79:25:8D:EA:D8:B5:02:C0:5E:09:50:48:3A
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1CA4
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PF2yYbrgAHkljerYtQLAXglQSDo.roa
Signing time: Wed 29 Sep 2021 02:48:00 +0000
ROA not before: Wed 29 Sep 2021 02:48:00 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 106.1.138.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7332 (0x1ca4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:48:00 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=3C5DB261BAE00079258DEAD8B502C05E0950483A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:4b:b0:4a:85:ed:e0:4f:07:8d:58:26:71:13:
77:a2:52:95:9d:73:84:06:8f:b7:ef:e5:9a:59:69:
3b:10:82:9a:2d:52:db:95:0f:9e:9e:81:9d:d1:0a:
c5:be:3a:08:5d:27:f8:16:43:42:43:02:c2:7f:b7:
da:4b:91:ae:96:09:39:c6:23:23:1c:ee:2f:92:29:
c9:61:1a:39:7a:e9:9f:9b:37:ae:18:13:0b:22:95:
d8:ad:77:68:97:6d:27:61:3d:6b:34:05:2a:eb:03:
20:9a:27:6c:33:e5:cc:19:9e:31:58:5a:00:27:f4:
00:c0:03:4c:f7:a5:6c:d1:96:ee:8b:e6:27:5b:85:
43:e4:2e:af:94:24:13:e8:a4:f1:47:f8:84:ee:94:
f1:e5:50:f5:14:02:7b:67:c3:8f:d2:4a:02:8b:56:
3b:64:e1:b7:ee:ad:24:49:e0:c8:fc:d2:d3:ff:b1:
77:0f:f9:07:eb:97:ee:c9:1e:53:e0:23:47:dc:d2:
34:54:29:6a:c3:16:db:71:dc:dd:a9:11:7e:ff:e9:
ce:c3:74:f2:18:e9:cc:53:3c:12:5e:6b:44:2c:9f:
11:46:98:7a:c3:be:ec:d7:03:b7:ec:c1:87:36:a7:
ae:09:24:f9:bd:e8:cc:71:11:56:11:40:7f:7a:46:
10:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:5D:B2:61:BA:E0:00:79:25:8D:EA:D8:B5:02:C0:5E:09:50:48:3A
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PF2yYbrgAHkljerYtQLAXglQSDo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.138.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:3e:a7:d5:38:c4:23:45:b6:46:08:84:0e:51:a2:31:7c:c9:
bd:98:0c:6a:7d:5b:d0:c9:4e:2f:bb:37:40:37:e4:84:d6:db:
f6:f0:04:19:55:75:f8:07:2a:28:92:0f:da:2d:7f:50:9d:9b:
ff:cf:99:a2:d6:91:82:0e:a2:5d:bc:88:59:7d:6c:32:af:96:
3e:84:cc:12:66:e7:2d:b4:0d:af:b7:df:a3:3f:e5:6f:3a:15:
b9:e9:f0:10:ef:a4:5c:df:be:12:01:c5:aa:e1:4f:fc:97:5c:
8f:c4:b0:5d:be:ca:15:de:9b:47:e5:07:d1:55:d8:93:d2:52:
28:ec:1f:1b:f0:29:10:7e:44:13:14:de:a0:9a:56:32:f9:44:
ce:82:f9:fa:11:17:2a:b0:2e:b3:b5:e2:98:e3:d6:a3:92:66:
78:63:b3:ca:08:59:66:3c:77:5b:38:6d:d6:4a:fc:8e:16:8e:
45:59:f6:5b:17:a7:71:39:ba:2e:41:aa:b2:58:83:c3:2c:aa:
29:19:fc:9c:45:7f:49:3a:39:a3:9c:24:3d:14:81:1a:6e:08:
48:13:fc:6f:f0:2e:7a:a9:d5:8d:4a:01:78:28:2a:14:2f:5d:
18:a2:f6:1b:7a:fb:de:5d:0c:40:18:50:c6:75:06:43:50:ec:
a0:70:ac:1f
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICHKQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMTA5Mjkw
MjQ4MDBaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDNDNURCMjYxQkFFMDAw
NzkyNThERUFEOEI1MDJDMDVFMDk1MDQ4M0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDBS7BKhe3gTweNWCZxE3eiUpWdc4QGj7fv5ZpZaTsQgpotUtuV
D56egZ3RCsW+OghdJ/gWQ0JDAsJ/t9pLka6WCTnGIyMc7i+SKclhGjl66Z+bN64Y
Ewsilditd2iXbSdhPWs0BSrrAyCaJ2wz5cwZnjFYWgAn9ADAA0z3pWzRlu6L5idb
hUPkLq+UJBPopPFH+ITulPHlUPUUAntnw4/SSgKLVjtk4bfurSRJ4Mj80tP/sXcP
+Qfrl+7JHlPgI0fc0jRUKWrDFttx3N2pEX7/6c7DdPIY6cxTPBJea0QsnxFGmHrD
vuzXA7fswYc2p64JJPm96MxxEVYRQH96RhCZAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUPF2yYbrgAHkljerYtQLAXglQSDowHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1BGMnlZYnJnQUhrbGplcll0
UUxBWGdsUVNEby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABq
AYowDQYJKoZIhvcNAQELBQADggEBALY+p9U4xCNFtkYIhA5RojF8yb2YDGp9W9DJ
Ti+7N0A35ITW2/bwBBlVdfgHKiiSD9otf1Cdm//PmaLWkYIOol28iFl9bDKvlj6E
zBJm5y20Da+336M/5W86Fbnp8BDvpFzfvhIBxarhT/yXXI/EsF2+yhXem0flB9FV
2JPSUijsHxvwKRB+RBMU3qCaVjL5RM6C+foRFyqwLrO14pjj1qOSZnhjs8oIWWY8
d1s4bdZK/I4WjkVZ9lsXp3E5ui5BqrJYg8MsqikZ/JxFf0k6OaOcJD0UgRpuCEgT
/G/wLnqp1Y1KAXgoKhQvXRii9ht6+95dDEAYUMZ1BkNQ7KBwrB8=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:30 2024 by rpki-client on console-ams.rpki-client.org