Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Powqn6qBxLudWZV-byovH9-Hh4o.roa
File: Powqn6qBxLudWZV-byovH9-Hh4o.roa (raw, json)
Hash identifier: 0MslzqhYj8jEccT8fNTdEPuHPuonLvTv88/SXtO43iQ=
Subject key identifier: 3E:8C:2A:9F:AA:81:C4:BB:9D:59:95:7E:6F:2A:2F:1F:DF:87:87:8A
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 0E7B
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Powqn6qBxLudWZV-byovH9-Hh4o.roa
Signing time: Tue 29 Sep 2020 09:55:47 +0000
ROA not before: Tue 29 Sep 2020 09:55:47 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 123.192.96.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3707 (0xe7b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 09:55:47 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3E8C2A9FAA81C4BB9D59957E6F2A2F1FDF87878A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:29:13:38:9f:f0:63:01:d4:14:fb:ca:06:4d:
b4:f6:49:08:84:ce:b3:0a:97:ab:1d:ad:d8:5f:84:
ab:01:7b:68:c9:fd:d8:df:00:aa:43:61:55:eb:01:
24:5b:d4:c7:c5:08:d1:38:32:e0:7f:fa:74:4d:59:
87:b8:22:28:06:b0:45:6f:4b:48:c8:b4:3a:b6:b3:
8c:3c:1d:24:53:fb:f5:0f:bd:09:da:0e:f3:ab:1a:
00:41:cd:d6:bd:31:a9:05:61:64:73:c2:b2:19:40:
e7:03:63:99:ea:91:48:a4:91:f9:66:db:37:12:15:
08:82:89:70:fe:ab:ec:94:d5:c0:d2:f2:13:97:b3:
74:1f:1e:7c:57:64:ac:0b:39:f6:65:57:88:4f:d7:
6e:ab:ec:4b:7e:61:74:c7:85:0d:03:e1:ea:b4:f0:
c8:88:bf:d1:3e:10:64:f0:3d:61:20:d6:04:8c:51:
d9:9a:da:d7:31:55:9f:27:e2:79:b3:f2:c2:74:3b:
30:9c:cc:88:58:b0:c2:aa:95:6b:a9:8e:88:e2:d2:
27:89:5c:2f:65:63:c4:0b:d9:ef:69:5f:89:8e:fd:
ef:67:d1:38:64:fb:4a:28:d5:1d:8e:80:12:d3:c0:
74:a4:d7:af:62:92:95:11:7f:d7:96:b3:55:ce:fb:
ae:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:8C:2A:9F:AA:81:C4:BB:9D:59:95:7E:6F:2A:2F:1F:DF:87:87:8A
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Powqn6qBxLudWZV-byovH9-Hh4o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.192.96.0/22
Signature Algorithm: sha256WithRSAEncryption
3c:7c:fb:f1:f0:a4:92:db:d9:29:a9:51:35:70:e8:b9:ac:6a:
c7:49:5e:78:20:4f:a9:3c:e2:07:fe:20:b9:00:b7:19:19:d3:
d0:f8:e3:72:81:67:e9:36:97:54:64:69:aa:5c:2c:d0:cd:95:
ec:31:d6:2f:af:cb:e4:43:a7:a3:53:82:f0:01:1a:d3:a8:d8:
6d:c5:d6:d4:cb:47:0d:63:77:23:5a:30:f9:9e:44:f9:83:56:
77:09:1d:dc:4f:20:b1:69:bc:46:9e:a1:29:bf:75:5a:bd:bc:
85:7b:f3:31:03:08:45:d8:fa:66:7a:90:65:b1:86:bc:a3:5f:
dc:af:e0:cd:a9:07:e8:b8:2b:42:a7:ad:3d:16:7a:05:b4:e2:
04:89:d5:1d:e6:de:f4:e6:e0:28:53:03:d6:54:1c:84:e5:f2:
66:66:5a:b0:5e:e8:a4:55:93:ce:32:46:85:71:d9:92:10:37:
7e:ab:65:d5:53:5f:fc:b8:4a:60:3c:a4:d6:1e:28:2f:a0:30:
44:c9:8b:fa:97:a1:9f:e7:0f:16:20:e1:84:c2:ae:6a:2d:c3:
02:36:f3:b9:ee:24:01:0a:4f:df:b3:ef:cd:69:3f:c7:dc:ff:
14:0c:cc:9f:c7:50:18:2a:db:e3:27:df:12:ea:fe:fa:c8:46:
a6:b3:ef:54
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICDnswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMDA5Mjkw
OTU1NDdaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDNFOEMyQTlGQUE4MUM0
QkI5RDU5OTU3RTZGMkEyRjFGREY4Nzg3OEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCuKRM4n/BjAdQU+8oGTbT2SQiEzrMKl6sdrdhfhKsBe2jJ/djf
AKpDYVXrASRb1MfFCNE4MuB/+nRNWYe4IigGsEVvS0jItDq2s4w8HSRT+/UPvQna
DvOrGgBBzda9MakFYWRzwrIZQOcDY5nqkUikkflm2zcSFQiCiXD+q+yU1cDS8hOX
s3QfHnxXZKwLOfZlV4hP126r7Et+YXTHhQ0D4eq08MiIv9E+EGTwPWEg1gSMUdma
2tcxVZ8n4nmz8sJ0OzCczIhYsMKqlWupjoji0ieJXC9lY8QL2e9pX4mO/e9n0Thk
+0oo1R2OgBLTwHSk169ikpURf9eWs1XO+641AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUPowqn6qBxLudWZV+byovH9+Hh4owHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1Bvd3FuNnFCeEx1ZFdaVi1i
eW92SDktSGg0by5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7
wGAwDQYJKoZIhvcNAQELBQADggEBADx8+/HwpJLb2SmpUTVw6LmsasdJXnggT6k8
4gf+ILkAtxkZ09D443KBZ+k2l1RkaapcLNDNlewx1i+vy+RDp6NTgvABGtOo2G3F
1tTLRw1jdyNaMPmeRPmDVncJHdxPILFpvEaeoSm/dVq9vIV78zEDCEXY+mZ6kGWx
hryjX9yv4M2pB+i4K0KnrT0WegW04gSJ1R3m3vTm4ChTA9ZUHITl8mZmWrBe6KRV
k84yRoVx2ZIQN36rZdVTX/y4SmA8pNYeKC+gMETJi/qXoZ/nDxYg4YTCrmotwwI2
87nuJAEKT9+z781pP8fc/xQMzJ/HUBgq2+Mn3xLq/vrIRqaz71Q=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:52 2024 by rpki-client on console-fra.rpki-client.org