Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QwPT9YZF2S3nHgl12NKKbNK9M1E.roa
File: QwPT9YZF2S3nHgl12NKKbNK9M1E.roa (raw, json)
Hash identifier: lwKG3u0rUexZiUmQLZCTWSp24MlKXo8E0GZWBbfkG+s=
Subject key identifier: 43:03:D3:F5:86:45:D9:2D:E7:1E:09:75:D8:D2:8A:6C:D2:BD:33:51
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QwPT9YZF2S3nHgl12NKKbNK9M1E.roa
Signing time: Thu 15 Sep 2022 02:54:13 +0000
ROA not before: Thu 15 Sep 2022 02:54:13 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.195.24.0/21 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8098 (0x1fa2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:54:13 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=4303D3F58645D92DE71E0975D8D28A6CD2BD3351
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:48:88:52:d3:9d:cf:f5:0c:cb:b7:24:a0:34:
4c:c1:6b:1a:ba:22:83:4d:de:bb:78:68:de:04:5f:
31:e5:87:69:d3:03:40:3a:58:10:76:31:e2:ef:80:
3c:f1:50:c8:82:da:9c:17:98:e1:a7:e3:12:ab:0b:
33:ba:fc:04:f9:eb:84:78:4f:bb:59:0d:4b:be:6a:
75:fa:75:a9:54:f4:23:53:b2:9b:1c:1c:e2:16:f2:
8f:5f:6a:5a:c2:fe:d9:bc:2c:14:7b:ce:33:db:fa:
6f:c4:b7:73:2f:a8:33:7b:44:ba:47:53:39:1c:55:
03:2c:6c:66:a0:87:b6:44:79:eb:7a:54:90:c4:0f:
c6:2b:d5:1c:1b:44:53:2f:3c:97:ce:82:ea:1d:aa:
2f:8c:82:e2:da:a2:e2:d8:56:97:81:c2:7e:fb:41:
08:bc:d9:b8:cf:c4:63:14:29:e0:a5:7d:37:a9:f5:
f7:bd:6e:b9:bb:07:52:83:12:8b:df:d9:96:00:14:
44:0a:6d:9d:de:1b:35:8a:0a:15:c8:b8:8f:91:64:
8e:d0:2c:c2:b4:6f:e7:63:ca:1b:f0:48:ee:dc:d0:
45:4e:f6:ab:78:68:ac:ac:fb:ca:61:61:c9:23:10:
ba:29:1d:59:32:1f:06:62:05:0c:b3:7b:90:1c:e2:
fc:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:03:D3:F5:86:45:D9:2D:E7:1E:09:75:D8:D2:8A:6C:D2:BD:33:51
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QwPT9YZF2S3nHgl12NKKbNK9M1E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.24.0/21
Signature Algorithm: sha256WithRSAEncryption
84:6d:2b:88:83:c2:4b:62:92:6f:92:f0:3d:4c:4f:aa:42:4c:
a0:9b:37:3f:ac:b0:83:08:23:7b:21:a8:37:6c:1c:bc:22:47:
a5:29:85:d9:a5:06:9a:24:df:8a:0a:03:5d:25:2d:7b:7f:22:
8f:96:98:32:07:7c:d3:1b:61:f9:50:12:b3:64:96:92:b1:82:
fa:73:42:cf:9a:17:07:e6:32:bb:5d:0a:66:31:de:e9:cd:b7:
03:d5:91:7b:cc:4f:b3:f7:89:37:60:42:8b:ec:59:c9:68:ce:
32:8a:7c:fb:d1:4f:38:2d:0d:a0:aa:9a:37:41:3e:3e:e2:3e:
d7:0e:6a:a2:68:cd:78:cd:3d:db:51:ce:4b:43:10:a2:11:a0:
38:4c:fa:0c:28:b8:db:e1:60:23:97:f2:96:21:ab:09:2e:19:
36:ca:36:23:eb:e9:86:39:ef:aa:5e:3e:a4:99:87:59:05:6c:
e7:6e:7b:75:d4:9c:74:67:bc:48:41:77:04:98:8d:af:eb:ee:
b0:c0:55:56:fd:aa:36:7d:59:d8:b8:d4:44:a6:c3:73:e2:f7:
b4:f0:31:d1:10:de:c5:b8:ae:00:13:46:70:a3:7e:41:f2:32:
8a:e7:a1:5b:25:02:c5:0c:39:12:7a:98:26:38:f8:48:ea:c3:
33:3a:c2:97
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICH6IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMjA5MTUw
MjU0MTNaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDQzMDNEM0Y1ODY0NUQ5
MkRFNzFFMDk3NUQ4RDI4QTZDRDJCRDMzNTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCxSIhS053P9QzLtySgNEzBaxq6IoNN3rt4aN4EXzHlh2nTA0A6
WBB2MeLvgDzxUMiC2pwXmOGn4xKrCzO6/AT564R4T7tZDUu+anX6dalU9CNTspsc
HOIW8o9falrC/tm8LBR7zjPb+m/Et3MvqDN7RLpHUzkcVQMsbGagh7ZEeet6VJDE
D8Yr1RwbRFMvPJfOguodqi+MguLaouLYVpeBwn77QQi82bjPxGMUKeClfTep9fe9
brm7B1KDEovf2ZYAFEQKbZ3eGzWKChXIuI+RZI7QLMK0b+djyhvwSO7c0EVO9qt4
aKys+8phYckjELopHVkyHwZiBQyze5Ac4vwBAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUQwPT9YZF2S3nHgl12NKKbNK9M1EwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1F3UFQ5WVpGMlMzbkhnbDEy
TktLYk5LOU0xRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7
wxgwDQYJKoZIhvcNAQELBQADggEBAIRtK4iDwktikm+S8D1MT6pCTKCbNz+ssIMI
I3shqDdsHLwiR6UphdmlBpok34oKA10lLXt/Io+WmDIHfNMbYflQErNklpKxgvpz
Qs+aFwfmMrtdCmYx3unNtwPVkXvMT7P3iTdgQovsWclozjKKfPvRTzgtDaCqmjdB
Pj7iPtcOaqJozXjNPdtRzktDEKIRoDhM+gwouNvhYCOX8pYhqwkuGTbKNiPr6YY5
76pePqSZh1kFbOdue3XUnHRnvEhBdwSYja/r7rDAVVb9qjZ9Wdi41ESmw3Pi97Tw
MdEQ3sW4rgATRnCjfkHyMornoVslAsUMORJ6mCY4+EjqwzM6wpc=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:16:29 2025 by rpki-client