Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Qb2OvSRsd9CFiWwOD0SOK2pfxZY.roa
File: Qb2OvSRsd9CFiWwOD0SOK2pfxZY.roa (raw, json)
Hash identifier: s2WfZRlqiMD/XR/Ul97ZEV3NeeoG8YfYUhHMYzBq8gQ=
Subject key identifier: 41:BD:8E:BD:24:6C:77:D0:85:89:6C:0E:0F:44:8E:2B:6A:5F:C5:96
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1635
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Qb2OvSRsd9CFiWwOD0SOK2pfxZY.roa
Signing time: Sun 07 Feb 2021 12:09:00 +0000
ROA not before: Sun 07 Feb 2021 12:09:00 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 45.64.29.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5685 (0x1635)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:09:00 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=41BD8EBD246C77D085896C0E0F448E2B6A5FC596
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:26:f1:92:40:9d:78:05:ad:d9:4e:66:eb:24:
1b:9b:ab:0d:1a:54:de:67:ca:72:76:25:94:16:51:
c6:ab:bd:85:15:10:47:14:41:6d:9d:c1:07:de:90:
40:d9:3b:cd:6a:ec:e7:98:33:24:91:45:1c:dd:23:
3c:af:ae:4b:b0:c2:94:d2:9c:46:f5:1e:b8:8c:8c:
20:42:fe:b2:f7:13:e9:fa:4d:b8:fd:8a:c7:e0:e0:
63:1d:f3:10:ad:3d:11:82:94:39:2c:3e:14:a5:df:
60:6b:d6:b1:35:c4:43:11:2c:55:de:be:02:52:ea:
0c:51:ba:73:d4:f6:b4:9c:2a:a5:9d:d9:d8:46:76:
1e:bb:f4:ec:eb:ba:76:dd:48:19:8c:68:3c:d2:0a:
73:e8:08:a1:9c:00:24:bf:c9:e2:6e:ec:03:8c:a6:
2e:7d:b1:d8:3b:f4:26:3f:10:cc:b6:85:3f:b3:fb:
14:fd:7d:e1:b5:1e:9a:3c:34:2c:73:17:17:02:d9:
50:d6:ee:98:19:79:46:fd:65:55:4e:4e:eb:23:ac:
8d:79:dd:ca:f8:a4:55:f6:96:4b:4d:f3:0f:16:e9:
83:61:95:84:6c:e9:c1:eb:cc:ec:ae:ea:34:33:09:
fd:b2:5a:23:17:2d:c7:64:4c:3d:0c:e1:94:f6:74:
d2:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:BD:8E:BD:24:6C:77:D0:85:89:6C:0E:0F:44:8E:2B:6A:5F:C5:96
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Qb2OvSRsd9CFiWwOD0SOK2pfxZY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
45.64.29.0/24
Signature Algorithm: sha256WithRSAEncryption
62:b6:a2:0d:73:31:98:80:b0:45:32:a4:11:88:55:ad:b9:72:
e1:3f:28:2c:ef:f9:36:38:57:08:ce:ad:b5:70:96:a9:d2:ce:
29:32:5a:91:79:5c:79:a5:ee:b3:6c:d3:80:3c:dc:2c:f1:18:
6c:3a:53:8c:34:91:ac:29:9f:bc:ed:6f:7d:f7:25:8c:2e:0e:
1d:e6:3f:2a:9e:64:e2:4d:68:7a:75:48:c7:0c:ad:a0:22:18:
03:ed:72:a0:26:93:7a:0a:3c:10:03:7b:d9:61:8b:82:d0:c6:
b0:3c:2c:44:3a:00:9d:fd:30:1c:74:91:35:0b:6e:fc:6e:e6:
48:65:8f:b7:bc:02:e7:52:2e:ea:14:27:34:95:45:8f:0b:0a:
ed:e2:46:bf:4d:24:83:e6:48:ac:21:a0:21:ef:3a:c6:42:6e:
4d:27:0f:ef:ad:97:4b:b4:67:d0:fc:96:5e:54:bb:f3:35:9f:
44:cd:f2:d1:6f:e4:38:ea:9b:c6:00:e5:c0:01:db:4e:d7:5d:
06:37:16:47:30:79:27:af:bf:e6:8d:7f:0b:2f:e9:ba:75:dc:
8a:0e:92:c5:93:c9:ad:08:c3:74:98:da:11:c7:7c:ba:14:b8:
63:36:98:7f:a1:ef:d0:63:f3:8e:1a:b8:ab:c9:5d:16:1b:3d:
31:c4:31:8a
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICFjUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMTAyMDcx
MjA5MDBaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDQxQkQ4RUJEMjQ2Qzc3
RDA4NTg5NkMwRTBGNDQ4RTJCNkE1RkM1OTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDjJvGSQJ14Ba3ZTmbrJBubqw0aVN5nynJ2JZQWUcarvYUVEEcU
QW2dwQfekEDZO81q7OeYMySRRRzdIzyvrkuwwpTSnEb1HriMjCBC/rL3E+n6Tbj9
isfg4GMd8xCtPRGClDksPhSl32Br1rE1xEMRLFXevgJS6gxRunPU9rScKqWd2dhG
dh679OzrunbdSBmMaDzSCnPoCKGcACS/yeJu7AOMpi59sdg79CY/EMy2hT+z+xT9
feG1Hpo8NCxzFxcC2VDW7pgZeUb9ZVVOTusjrI153cr4pFX2lktN8w8W6YNhlYRs
6cHrzOyu6jQzCf2yWiMXLcdkTD0M4ZT2dNLJAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUQb2OvSRsd9CFiWwOD0SOK2pfxZYwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1FiMk92U1JzZDlDRmlXd09E
MFNPSzJwZnhaWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAt
QB0wDQYJKoZIhvcNAQELBQADggEBAGK2og1zMZiAsEUypBGIVa25cuE/KCzv+TY4
VwjOrbVwlqnSzikyWpF5XHml7rNs04A83CzxGGw6U4w0kawpn7ztb333JYwuDh3m
PyqeZOJNaHp1SMcMraAiGAPtcqAmk3oKPBADe9lhi4LQxrA8LEQ6AJ39MBx0kTUL
bvxu5khlj7e8AudSLuoUJzSVRY8LCu3iRr9NJIPmSKwhoCHvOsZCbk0nD++tl0u0
Z9D8ll5Uu/M1n0TN8tFv5Djqm8YA5cAB207XXQY3FkcweSevv+aNfwsv6bp13IoO
ksWTya0Iw3SY2hHHfLoUuGM2mH+h79Bj844auKvJXRYbPTHEMYo=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:31 2024 by rpki-client on console-ams.rpki-client.org