Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/RNBYqr2ZTelE2bbzhJ_U9VoTy-A.roa
File: RNBYqr2ZTelE2bbzhJ_U9VoTy-A.roa (raw, json)
Hash identifier: o3s7Ua4Vq5fS1cFKwwdJcsXo+WXlUNVyrcKrSJeEAUM=
Subject key identifier: 44:D0:58:AA:BD:99:4D:E9:44:D9:B6:F3:84:9F:D4:F5:5A:13:CB:E0
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1765
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/RNBYqr2ZTelE2bbzhJ_U9VoTy-A.roa
Signing time: Sun 07 Feb 2021 12:18:55 +0000
ROA not before: Sun 07 Feb 2021 12:18:55 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 118.233.24.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5989 (0x1765)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:18:55 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=44D058AABD994DE944D9B6F3849FD4F55A13CBE0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:e7:99:e4:a8:31:b1:7a:44:f0:8d:ab:45:06:
b5:e3:ae:bb:a9:07:43:42:a2:d4:48:13:2e:d8:52:
c5:0a:37:35:d3:2f:6b:71:0d:f1:df:b7:ae:16:7a:
23:28:c3:93:7c:0d:85:53:0e:e5:25:5d:6b:fb:3e:
b7:be:68:07:05:dd:17:d8:9a:cd:f6:87:90:c1:fe:
ce:cd:e5:ff:ee:a5:5e:b6:0f:d1:5e:70:7c:5b:b7:
5b:bd:d8:97:65:26:bb:fc:a8:65:6d:6e:ad:dc:91:
e9:6d:36:5d:13:42:1f:0d:f6:e2:46:cf:b9:34:71:
94:96:c1:5d:e1:ff:78:0e:e3:b9:7a:30:b2:95:86:
58:c0:f0:ea:dc:54:85:88:aa:42:4d:2c:a3:15:41:
5a:bd:08:40:04:73:10:e4:c6:c7:9b:cf:9b:0c:89:
67:c2:f2:e3:07:75:1b:37:5d:52:21:03:90:ab:98:
66:3c:f2:08:d8:69:98:6d:ce:6d:ab:e0:dd:5f:b7:
61:31:2c:15:c2:38:9c:29:ef:2b:d3:78:92:f8:6f:
73:89:69:74:cc:c8:fc:b9:f9:a3:a7:f1:b4:bb:36:
93:c3:7d:44:65:7e:21:56:65:f1:22:05:d1:21:6e:
54:01:6a:86:fe:38:5c:9e:37:db:73:a7:7f:df:29:
ce:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:D0:58:AA:BD:99:4D:E9:44:D9:B6:F3:84:9F:D4:F5:5A:13:CB:E0
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/RNBYqr2ZTelE2bbzhJ_U9VoTy-A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.24.0/22
Signature Algorithm: sha256WithRSAEncryption
b7:b7:b9:23:fb:58:4e:1f:d9:d9:72:37:09:5c:9f:6a:98:20:
1b:96:2f:f9:61:99:92:4b:10:52:f6:24:37:e3:67:4b:53:82:
fe:cd:37:ca:10:f2:74:8c:ac:e4:11:e8:c1:99:e1:e9:55:38:
1b:54:ed:3d:d7:13:b5:cc:a5:43:c8:4c:dd:85:cd:85:b4:16:
d7:62:40:36:44:8f:bb:45:55:b3:b8:cd:e2:cf:c4:9e:fb:c4:
06:e8:c2:44:76:86:cc:0d:1b:56:06:fd:26:3e:13:50:8d:51:
86:49:ed:f3:cb:c6:ec:64:a0:ab:82:8a:76:39:12:17:72:09:
e6:0c:60:09:8f:8e:71:e2:30:69:3e:14:b1:04:6d:2e:4d:8a:
e1:30:f4:0c:6f:91:69:29:1a:d4:59:37:25:4b:56:27:db:55:
34:65:89:08:ce:16:b5:aa:2d:07:3c:98:e6:fa:00:35:fe:1e:
24:7c:11:4d:47:83:1e:34:bb:43:13:6e:bd:0d:97:4e:2d:6c:
6b:ea:9f:a1:17:d8:0e:78:7c:23:46:0f:56:a4:2c:17:09:4b:
46:6b:3f:99:36:6a:11:11:bb:aa:37:4c:57:9d:1a:35:24:45:
5d:df:70:ea:9d:5f:aa:e0:ae:30:ee:53:37:55:57:49:96:07:
8c:2a:0f:d2
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICF2UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMTAyMDcx
MjE4NTVaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDQ0RDA1OEFBQkQ5OTRE
RTk0NEQ5QjZGMzg0OUZENEY1NUExM0NCRTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDP55nkqDGxekTwjatFBrXjrrupB0NCotRIEy7YUsUKNzXTL2tx
DfHft64WeiMow5N8DYVTDuUlXWv7Pre+aAcF3RfYms32h5DB/s7N5f/upV62D9Fe
cHxbt1u92JdlJrv8qGVtbq3ckeltNl0TQh8N9uJGz7k0cZSWwV3h/3gO47l6MLKV
hljA8OrcVIWIqkJNLKMVQVq9CEAEcxDkxsebz5sMiWfC8uMHdRs3XVIhA5CrmGY8
8gjYaZhtzm2r4N1ft2ExLBXCOJwp7yvTeJL4b3OJaXTMyPy5+aOn8bS7NpPDfURl
fiFWZfEiBdEhblQBaob+OFyeN9tzp3/fKc7nAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQURNBYqr2ZTelE2bbzhJ/U9VoTy+AwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1JOQllxcjJaVGVsRTJiYnpo
Sl9VOVZvVHktQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2
6RgwDQYJKoZIhvcNAQELBQADggEBALe3uSP7WE4f2dlyNwlcn2qYIBuWL/lhmZJL
EFL2JDfjZ0tTgv7NN8oQ8nSMrOQR6MGZ4elVOBtU7T3XE7XMpUPITN2FzYW0Ftdi
QDZEj7tFVbO4zeLPxJ77xAbowkR2hswNG1YG/SY+E1CNUYZJ7fPLxuxkoKuCinY5
EhdyCeYMYAmPjnHiMGk+FLEEbS5NiuEw9AxvkWkpGtRZNyVLVifbVTRliQjOFrWq
LQc8mOb6ADX+HiR8EU1Hgx40u0MTbr0Nl04tbGvqn6EX2A54fCNGD1akLBcJS0Zr
P5k2ahERu6o3TFedGjUkRV3fcOqdX6rgrjDuUzdVV0mWB4wqD9I=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:52 2024 by rpki-client on console-fra.rpki-client.org