Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Q9hKDrwmg10SbH4ZD-mw_n_dxjc.roa
File: Q9hKDrwmg10SbH4ZD-mw_n_dxjc.roa (raw, json)
Hash identifier: 06ZfYsfFJA3noZpxZTsZAhqysb4P4fr5AJEUK61wh0w=
Subject key identifier: 43:D8:4A:0E:BC:26:83:5D:12:6C:7E:19:0F:E9:B0:FE:7F:DD:C6:37
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 21A8
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Q9hKDrwmg10SbH4ZD-mw_n_dxjc.roa
Signing time: Fri 25 Nov 2022 04:40:10 +0000
ROA not before: Fri 25 Nov 2022 04:40:10 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.195.56.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8616 (0x21a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:40:10 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=43D84A0EBC26835D126C7E190FE9B0FE7FDDC637
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:5d:4f:f1:c2:d0:8f:6e:73:0a:cb:88:1b:41:
91:70:99:69:4a:e1:8e:19:6c:62:f2:d8:4d:77:17:
75:de:1f:e5:80:88:2c:bc:fa:7d:f9:27:9b:b2:45:
ed:f3:f0:85:21:e4:7d:43:d9:ad:46:17:99:26:3c:
e1:28:4d:1f:d9:66:1e:d6:6e:88:1e:f4:b4:13:df:
9f:f9:27:83:7f:ca:09:1d:67:ae:b1:ca:d2:d8:53:
bc:bd:7d:8d:87:60:a9:6e:cc:1c:87:70:ae:b3:c5:
64:39:ee:6f:3f:ec:ab:9c:d8:55:50:37:a6:d5:a1:
0b:61:93:33:fa:74:7a:6b:e0:c0:16:53:f0:1c:b6:
2a:92:16:53:9d:3d:9a:03:4f:a2:76:74:4a:1a:a3:
8d:20:7c:15:70:01:df:a9:13:1f:6b:0b:1d:d5:06:
22:96:0d:fa:46:f6:fc:02:30:5d:10:af:8f:44:b1:
58:9b:7e:79:9e:17:5b:72:cd:f7:1e:a0:2b:6a:36:
28:50:98:eb:7b:d2:cf:fa:13:4c:3a:44:a9:a1:48:
86:04:e3:57:42:4d:87:ae:eb:d8:44:8e:33:75:8e:
1b:fb:ea:60:db:33:42:e8:7b:74:56:7b:83:1a:49:
d4:10:73:ac:11:70:55:4d:73:a2:75:a0:87:56:e6:
65:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:D8:4A:0E:BC:26:83:5D:12:6C:7E:19:0F:E9:B0:FE:7F:DD:C6:37
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Q9hKDrwmg10SbH4ZD-mw_n_dxjc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.56.0/21
Signature Algorithm: sha256WithRSAEncryption
53:b9:86:4d:d1:ab:f0:df:9f:e0:9a:52:7c:da:34:cb:63:80:
2a:49:e0:64:46:72:44:8a:cb:e1:25:eb:17:08:2c:32:fd:ad:
88:da:be:16:5e:69:21:cd:0f:67:a1:34:ad:1e:0a:9b:0a:58:
0f:5a:a2:6d:88:f6:a5:e1:1f:00:bf:71:02:5f:04:b3:4b:a2:
ca:f3:d7:e9:2f:9e:40:b4:cb:46:0a:44:9f:53:43:6c:85:7a:
9b:a6:20:ca:74:e8:71:c2:b6:23:c9:b5:b5:7f:32:16:35:07:
42:ee:5a:89:7e:58:24:8b:f1:13:9b:45:51:41:47:97:e4:38:
b1:8e:f3:ae:cf:79:48:f8:20:c8:86:2f:89:e5:81:8b:d7:db:
5f:59:20:02:e3:97:27:4a:fd:a8:37:9f:cf:0b:9a:24:e6:1c:
1b:7b:21:c0:40:d6:56:05:26:b7:76:eb:22:26:8e:ba:15:42:
e8:16:4e:1c:aa:59:47:39:d6:e0:07:65:e9:e1:18:8e:0d:f2:
f5:96:4f:0e:3e:b7:72:c7:f9:5b:3a:dd:f1:9c:f3:89:14:53:
e8:f0:58:57:a4:5b:b5:32:41:bf:6a:dc:2e:57:88:7c:8f:2d:
98:08:89:dd:9e:61:d2:e6:2b:4d:00:28:1c:5a:d5:09:cc:56:
62:54:f7:f6
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICIagwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMjExMjUw
NDQwMTBaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDQzRDg0QTBFQkMyNjgz
NUQxMjZDN0UxOTBGRTlCMEZFN0ZEREM2MzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDMXU/xwtCPbnMKy4gbQZFwmWlK4Y4ZbGLy2E13F3XeH+WAiCy8
+n35J5uyRe3z8IUh5H1D2a1GF5kmPOEoTR/ZZh7Wboge9LQT35/5J4N/ygkdZ66x
ytLYU7y9fY2HYKluzByHcK6zxWQ57m8/7Kuc2FVQN6bVoQthkzP6dHpr4MAWU/Ac
tiqSFlOdPZoDT6J2dEoao40gfBVwAd+pEx9rCx3VBiKWDfpG9vwCMF0Qr49EsVib
fnmeF1tyzfceoCtqNihQmOt70s/6E0w6RKmhSIYE41dCTYeu69hEjjN1jhv76mDb
M0Loe3RWe4MaSdQQc6wRcFVNc6J1oIdW5mX1AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUQ9hKDrwmg10SbH4ZD+mw/n/dxjcwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1E5aEtEcndtZzEwU2JINFpE
LW13X25fZHhqYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7
wzgwDQYJKoZIhvcNAQELBQADggEBAFO5hk3Rq/Dfn+CaUnzaNMtjgCpJ4GRGckSK
y+El6xcILDL9rYjavhZeaSHND2ehNK0eCpsKWA9aom2I9qXhHwC/cQJfBLNLosrz
1+kvnkC0y0YKRJ9TQ2yFepumIMp06HHCtiPJtbV/MhY1B0LuWol+WCSL8RObRVFB
R5fkOLGO867PeUj4IMiGL4nlgYvX219ZIALjlydK/ag3n88LmiTmHBt7IcBA1lYF
Jrd26yImjroVQugWThyqWUc51uAHZenhGI4N8vWWTw4+t3LH+Vs63fGc84kUU+jw
WFekW7UyQb9q3C5XiHyPLZgIid2eYdLmK00AKBxa1QnMVmJU9/Y=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:52 2024 by rpki-client on console-fra.rpki-client.org