Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QoY5Hah9JEWn3XdBrbR4i5z2gqY.roa
File: QoY5Hah9JEWn3XdBrbR4i5z2gqY.roa (raw, json)
Hash identifier: vNYjHI53AGH8lmPDAgCiHPZsf63Wr5NNDnZN/dbzmKw=
Subject key identifier: 42:86:39:1D:A8:7D:24:45:A7:DD:77:41:AD:B4:78:8B:9C:F6:82:A6
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1F01
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QoY5Hah9JEWn3XdBrbR4i5z2gqY.roa
Signing time: Thu 30 Jun 2022 01:51:14 +0000
ROA not before: Thu 30 Jun 2022 01:51:14 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 180.177.112.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7937 (0x1f01)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Jun 30 01:51:14 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=4286391DA87D2445A7DD7741ADB4788B9CF682A6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:90:5c:0f:13:10:6c:7f:77:f4:ad:3a:cf:02:
4a:7e:55:4e:3f:7b:6b:9a:bd:bf:d6:80:ec:08:e7:
34:fd:1f:1e:5d:6b:18:51:f4:60:59:0b:42:70:8c:
22:81:62:dd:76:14:7b:bc:16:36:00:0b:b3:e0:f7:
78:d6:ed:31:32:43:e5:ad:25:1f:44:c0:74:af:09:
21:41:c3:7d:e7:a8:40:95:28:13:f3:ac:97:51:18:
0d:c7:4a:a3:66:24:d9:4e:41:d4:37:ee:12:a2:ae:
a7:1f:a8:7e:53:d7:ff:a4:42:83:5a:91:36:d4:bf:
4c:56:8c:e5:d0:91:93:34:df:e1:73:f3:ea:4d:58:
34:0d:60:6b:5c:e8:2e:46:a1:bc:16:1e:d9:63:d2:
23:37:aa:f4:10:ba:2b:fc:80:a0:9a:da:2a:22:8f:
4e:9b:71:0f:cb:21:a7:df:bf:df:71:99:e5:b8:cf:
ec:82:16:0c:a0:1a:ff:0f:b3:1d:ec:60:1a:8a:8d:
4f:dc:35:98:f4:3a:0f:4b:2c:be:44:08:47:d0:43:
66:35:b3:3c:11:4a:b2:48:75:c0:9b:f5:d7:8c:31:
f7:02:f6:a8:2a:95:d1:18:7b:c6:07:d7:e5:5f:21:
f5:9c:36:af:7f:19:aa:ed:85:0e:ba:3c:f9:4f:01:
b0:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:86:39:1D:A8:7D:24:45:A7:DD:77:41:AD:B4:78:8B:9C:F6:82:A6
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QoY5Hah9JEWn3XdBrbR4i5z2gqY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.177.112.0/21
Signature Algorithm: sha256WithRSAEncryption
0a:1c:c3:1f:e6:86:a2:2e:a2:f1:38:a9:be:05:04:7b:d8:79:
cc:dc:e8:01:c5:a6:ac:b6:1d:7c:74:1f:f9:39:41:ec:ad:64:
c2:78:c4:ea:49:66:65:c5:f4:f2:d6:62:b6:79:77:21:34:61:
3f:5e:77:2e:e8:62:7f:f9:47:8a:e5:18:0e:58:bf:d0:04:1c:
cd:d5:5b:7d:fc:28:69:2b:25:1e:06:d8:d8:c9:99:24:26:21:
d3:d1:70:44:39:2a:ae:94:90:ad:16:8d:89:f2:3d:41:0f:a6:
58:b0:8f:36:5b:19:6c:ef:10:58:96:70:40:af:a8:cf:94:1b:
8c:13:49:e4:d2:a1:8d:c2:4f:8b:8e:9c:87:a5:9b:51:92:55:
98:55:05:6e:79:7b:c1:dc:1d:74:66:ab:46:c8:18:85:71:0e:
96:12:68:c2:46:43:f1:1e:31:1b:c7:43:2a:ac:cb:aa:e7:51:
ae:9b:4f:77:f0:d3:06:5d:a6:68:98:0c:d8:ed:ce:4f:40:de:
7e:39:8a:95:b7:89:76:4c:ce:e5:bb:ef:cc:97:fd:41:d8:7a:
5f:b7:25:97:e8:ad:c3:86:08:41:59:ea:37:66:7d:55:05:41:
2e:55:6a:eb:fb:ca:68:04:dc:a6:bc:4b:15:66:24:c9:70:f8:
9e:56:86:0b
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICHwEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMjA2MzAw
MTUxMTRaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDQyODYzOTFEQTg3RDI0
NDVBN0RENzc0MUFEQjQ3ODhCOUNGNjgyQTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDSkFwPExBsf3f0rTrPAkp+VU4/e2uavb/WgOwI5zT9Hx5daxhR
9GBZC0JwjCKBYt12FHu8FjYAC7Pg93jW7TEyQ+WtJR9EwHSvCSFBw33nqECVKBPz
rJdRGA3HSqNmJNlOQdQ37hKirqcfqH5T1/+kQoNakTbUv0xWjOXQkZM03+Fz8+pN
WDQNYGtc6C5GobwWHtlj0iM3qvQQuiv8gKCa2ioij06bcQ/LIaffv99xmeW4z+yC
FgygGv8Psx3sYBqKjU/cNZj0Og9LLL5ECEfQQ2Y1szwRSrJIdcCb9deMMfcC9qgq
ldEYe8YH1+VfIfWcNq9/GarthQ66PPlPAbCbAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUQoY5Hah9JEWn3XdBrbR4i5z2gqYwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1FvWTVIYWg5SkVXbjNYZEJy
YlI0aTV6MmdxWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0
sXAwDQYJKoZIhvcNAQELBQADggEBAAocwx/mhqIuovE4qb4FBHvYeczc6AHFpqy2
HXx0H/k5QeytZMJ4xOpJZmXF9PLWYrZ5dyE0YT9edy7oYn/5R4rlGA5Yv9AEHM3V
W338KGkrJR4G2NjJmSQmIdPRcEQ5Kq6UkK0WjYnyPUEPpliwjzZbGWzvEFiWcECv
qM+UG4wTSeTSoY3CT4uOnIelm1GSVZhVBW55e8HcHXRmq0bIGIVxDpYSaMJGQ/Ee
MRvHQyqsy6rnUa6bT3fw0wZdpmiYDNjtzk9A3n45ipW3iXZMzuW778yX/UHYel+3
JZforcOGCEFZ6jdmfVUFQS5Vauv7ymgE3Ka8SxVmJMlw+J5Whgs=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:28 2023 by rpki-client on console-fra.rpki-client.org