Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QjZfPsI6_xokOp-6Yzr1BUCG9ik.roa
File: QjZfPsI6_xokOp-6Yzr1BUCG9ik.roa (raw, json)
Hash identifier: Up42HPZxbXBZ9WYkA+9kpJ3m5GUQb0IBMQs3+UBy5wk=
Subject key identifier: 42:36:5F:3E:C2:3A:FF:1A:24:3A:9F:BA:63:3A:F5:05:40:86:F6:29
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QjZfPsI6_xokOp-6Yzr1BUCG9ik.roa
Signing time: Thu 15 Sep 2022 02:46:18 +0000
ROA not before: Thu 15 Sep 2022 02:46:18 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 118.233.40.0/21 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8096 (0x1fa0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:46:18 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=42365F3EC23AFF1A243A9FBA633AF5054086F629
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:d5:08:2b:90:5d:7b:34:f6:7e:4e:15:1f:ae:
bc:ec:61:ff:ff:b7:11:cc:46:e6:3b:1f:2e:f1:22:
de:3a:0e:20:64:6e:fb:56:88:d6:83:cc:eb:5c:76:
33:13:ba:41:4f:5b:df:aa:b7:a2:73:4d:8c:d1:57:
1e:ed:b2:25:06:c2:f0:1f:71:a8:64:e2:37:df:ed:
b1:ab:cd:f8:d0:1f:de:d1:b9:f4:4b:3e:2f:e5:f8:
c6:d8:b9:9c:85:40:0a:81:79:2f:1d:18:26:b9:43:
f9:8a:eb:6b:be:5e:f7:2e:71:f5:92:c7:04:2b:09:
03:53:09:64:34:21:61:b9:fd:f8:3a:47:0d:d1:70:
70:c3:67:ab:7f:73:95:aa:77:d5:5f:8b:3e:a8:7b:
9a:67:b2:4e:6d:7f:75:47:9d:03:85:38:d4:08:fc:
98:e6:d7:07:58:52:80:42:81:4b:a0:6a:ce:20:df:
0e:f1:b7:c5:eb:33:c6:91:86:3b:93:1a:c0:4b:9d:
36:8e:91:53:5a:ac:2c:08:27:df:10:a1:da:7e:ab:
7d:50:28:a6:82:2d:c0:df:96:1f:64:16:fb:c9:f2:
43:bb:b8:6c:bf:b0:6f:02:76:0f:79:a3:10:03:da:
ec:8f:01:ac:56:f1:f4:e9:a7:ca:70:a3:51:b7:f7:
16:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:36:5F:3E:C2:3A:FF:1A:24:3A:9F:BA:63:3A:F5:05:40:86:F6:29
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QjZfPsI6_xokOp-6Yzr1BUCG9ik.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.40.0/21
Signature Algorithm: sha256WithRSAEncryption
5e:69:7d:3a:00:4c:ba:bb:d2:77:14:d1:31:b9:d6:58:14:e4:
89:db:8d:8a:29:d4:42:90:b3:13:cd:61:e3:bd:56:9f:2b:8e:
c9:d4:c2:90:0c:de:4e:87:40:ea:a4:eb:c2:05:1e:33:1b:f2:
21:e5:8c:47:82:cb:19:4a:97:ba:43:ad:1c:45:22:34:86:c0:
43:33:51:ed:1d:e9:14:ab:7e:49:8a:2c:53:1a:8b:86:71:6c:
29:52:16:77:55:da:f5:8c:00:4d:74:31:40:9f:6f:5a:0e:42:
65:74:49:03:b2:b0:07:de:47:a9:49:c8:4e:1f:54:0d:8f:99:
10:51:8c:0f:ee:d2:a6:8e:2b:3d:7e:71:26:6f:5e:65:38:6f:
99:59:0a:48:64:35:12:99:f2:4c:46:19:25:69:62:46:c5:23:
6c:e9:00:ba:4e:ef:31:f9:b2:e4:34:8d:49:15:a3:f8:83:c8:
58:70:7b:e3:11:06:91:a6:3d:71:f9:eb:4e:e1:1a:29:7d:ea:
36:eb:6c:7f:d4:fb:3e:f1:c5:2a:41:02:49:45:63:c0:79:d5:
dc:1a:5a:88:82:8f:0b:e0:c7:83:18:fd:8f:58:90:62:22:c4:
01:fc:fd:19:7b:e2:ea:de:57:b7:ab:be:28:01:4f:e9:2f:03:
96:b3:15:85
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICH6AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMjA5MTUw
MjQ2MThaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDQyMzY1RjNFQzIzQUZG
MUEyNDNBOUZCQTYzM0FGNTA1NDA4NkY2MjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDg1QgrkF17NPZ+ThUfrrzsYf//txHMRuY7Hy7xIt46DiBkbvtW
iNaDzOtcdjMTukFPW9+qt6JzTYzRVx7tsiUGwvAfcahk4jff7bGrzfjQH97RufRL
Pi/l+MbYuZyFQAqBeS8dGCa5Q/mK62u+XvcucfWSxwQrCQNTCWQ0IWG5/fg6Rw3R
cHDDZ6t/c5Wqd9Vfiz6oe5pnsk5tf3VHnQOFONQI/Jjm1wdYUoBCgUugas4g3w7x
t8XrM8aRhjuTGsBLnTaOkVNarCwIJ98Qodp+q31QKKaCLcDflh9kFvvJ8kO7uGy/
sG8Cdg95oxAD2uyPAaxW8fTpp8pwo1G39xaJAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUQjZfPsI6/xokOp+6Yzr1BUCG9ikwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1FqWmZQc0k2X3hva09wLTZZ
enIxQlVDRzlpay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN2
6SgwDQYJKoZIhvcNAQELBQADggEBAF5pfToATLq70ncU0TG51lgU5InbjYop1EKQ
sxPNYeO9Vp8rjsnUwpAM3k6HQOqk68IFHjMb8iHljEeCyxlKl7pDrRxFIjSGwEMz
Ue0d6RSrfkmKLFMai4ZxbClSFndV2vWMAE10MUCfb1oOQmV0SQOysAfeR6lJyE4f
VA2PmRBRjA/u0qaOKz1+cSZvXmU4b5lZCkhkNRKZ8kxGGSVpYkbFI2zpALpO7zH5
suQ0jUkVo/iDyFhwe+MRBpGmPXH5607hGil96jbrbH/U+z7xxSpBAklFY8B51dwa
WoiCjwvgx4MY/Y9YkGIixAH8/Rl74ureV7ervigBT+kvA5azFYU=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:31 2024 by rpki-client on console-ams.rpki-client.org