Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PsTAQzwUF-HiP0qhdzH7unjSCK4.roa
File: PsTAQzwUF-HiP0qhdzH7unjSCK4.roa (raw, json)
Hash identifier: DQmINP3Y5lu1pRz+1fZciVy9qrQdAaGBc0r5igWveAY=
Subject key identifier: 3E:C4:C0:43:3C:14:17:E1:E2:3F:4A:A1:77:31:FB:BA:78:D2:08:AE
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 18AB
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PsTAQzwUF-HiP0qhdzH7unjSCK4.roa
Signing time: Sun 07 Feb 2021 12:50:58 +0000
ROA not before: Sun 07 Feb 2021 12:50:58 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 118.232.128.0/18 maxlen: 18
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6315 (0x18ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:50:58 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3EC4C0433C1417E1E23F4AA17731FBBA78D208AE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:38:9a:81:ac:1c:19:6a:56:fe:1c:b2:bd:18:
2c:3e:c8:be:b8:07:e5:a4:8a:e1:51:bd:77:99:76:
c3:49:0c:b3:b1:a1:bd:5c:ae:5c:d5:ba:25:69:2b:
ed:2a:49:33:63:23:24:ef:c7:7c:64:60:24:8d:ae:
b9:2d:80:27:cb:92:7f:80:05:44:dd:b7:7e:4a:6c:
4c:60:1c:e1:24:db:75:f9:7e:a7:8d:31:9c:39:a8:
8f:54:c2:ad:a0:1f:43:23:08:22:db:21:7a:d3:8d:
e0:d2:15:86:93:ec:e2:d6:35:ca:ff:31:cb:7a:b6:
f9:e1:f5:a6:e0:65:b3:7f:26:a0:cb:26:2f:a4:43:
6f:6c:76:71:6d:90:ff:20:d1:65:5e:fe:65:7a:84:
c8:50:5b:15:3b:5f:51:2a:f2:aa:c4:ba:72:54:d6:
f2:a0:95:49:27:cd:c8:d5:04:eb:58:0d:e9:7d:47:
97:7f:00:aa:ea:aa:a5:56:5e:75:f0:a3:d5:58:7e:
55:44:b5:16:90:e0:bb:d8:bc:bc:04:16:a0:6f:2b:
72:e6:b2:6a:97:1f:93:18:aa:a7:01:f4:1e:b4:38:
89:b1:39:ff:ff:dd:52:e6:b8:d7:c9:08:ec:cc:d3:
81:e5:16:4c:89:28:06:c3:9d:1f:79:71:3d:94:cb:
24:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:C4:C0:43:3C:14:17:E1:E2:3F:4A:A1:77:31:FB:BA:78:D2:08:AE
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PsTAQzwUF-HiP0qhdzH7unjSCK4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.128.0/18
Signature Algorithm: sha256WithRSAEncryption
8f:a2:98:c0:2b:bc:55:00:74:98:ac:d2:2e:cf:4c:ab:ad:7c:
fe:92:ad:60:d7:16:c7:12:20:58:00:97:8f:ee:3c:73:d2:c2:
f7:40:2c:33:c3:b4:dd:2d:04:b3:2f:8e:e9:bc:3b:3e:58:2c:
36:30:dd:17:d6:94:07:e7:92:29:02:b8:04:ea:ca:76:de:a7:
06:ae:38:51:40:80:6f:b2:6b:fc:d5:35:cd:5c:db:8f:97:e4:
a6:7c:62:13:3d:52:64:cc:54:1d:c8:c0:45:fb:59:f5:bd:e5:
24:89:b9:4b:eb:a4:e1:1d:23:1e:81:0d:96:89:4a:d9:72:d8:
44:60:be:6a:de:91:13:4e:2e:90:07:55:b9:89:99:89:34:2c:
e8:2f:78:b7:12:01:fb:f6:78:13:d6:ca:fe:2d:47:2e:c8:6e:
3e:3b:de:9f:20:46:ad:63:82:8e:f1:b5:29:0e:fe:4e:b3:7b:
8d:40:00:fb:6f:de:b3:82:fe:32:c2:af:a9:65:a2:a8:dc:0c:
df:b3:e8:d1:44:5e:74:93:11:12:5f:92:6c:6e:b0:f1:dc:71:
7a:9a:53:55:fd:50:33:b2:89:a7:ee:e4:56:17:8d:f5:3c:fa:
b4:76:ce:ee:6b:fb:21:0d:c8:82:d2:be:71:d6:76:2c:cd:b7:
1c:9c:c3:18
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICGKswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMTAyMDcx
MjUwNThaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDNFQzRDMDQzM0MxNDE3
RTFFMjNGNEFBMTc3MzFGQkJBNzhEMjA4QUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDGOJqBrBwZalb+HLK9GCw+yL64B+WkiuFRvXeZdsNJDLOxob1c
rlzVuiVpK+0qSTNjIyTvx3xkYCSNrrktgCfLkn+ABUTdt35KbExgHOEk23X5fqeN
MZw5qI9Uwq2gH0MjCCLbIXrTjeDSFYaT7OLWNcr/Mct6tvnh9abgZbN/JqDLJi+k
Q29sdnFtkP8g0WVe/mV6hMhQWxU7X1Eq8qrEunJU1vKglUknzcjVBOtYDel9R5d/
AKrqqqVWXnXwo9VYflVEtRaQ4LvYvLwEFqBvK3LmsmqXH5MYqqcB9B60OImxOf//
3VLmuNfJCOzM04HlFkyJKAbDnR95cT2UyyTbAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUPsTAQzwUF+HiP0qhdzH7unjSCK4wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1BzVEFRendVRi1IaVAwcWhk
ekg3dW5qU0NLNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAZ2
6IAwDQYJKoZIhvcNAQELBQADggEBAI+imMArvFUAdJis0i7PTKutfP6SrWDXFscS
IFgAl4/uPHPSwvdALDPDtN0tBLMvjum8Oz5YLDYw3RfWlAfnkikCuATqynbepwau
OFFAgG+ya/zVNc1c24+X5KZ8YhM9UmTMVB3IwEX7WfW95SSJuUvrpOEdIx6BDZaJ
Stly2ERgvmrekRNOLpAHVbmJmYk0LOgveLcSAfv2eBPWyv4tRy7Ibj473p8gRq1j
go7xtSkO/k6ze41AAPtv3rOC/jLCr6lloqjcDN+z6NFEXnSTERJfkmxusPHccXqa
U1X9UDOyiafu5FYXjfU8+rR2zu5r+yENyILSvnHWdizNtxycwxg=
-----END CERTIFICATE-----