Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/RWyjlizju5QCJowh7isSknoJgFU.roa
File: RWyjlizju5QCJowh7isSknoJgFU.roa (raw, json)
Hash identifier: tA6pR71fh87aUTRvU2kzL5mbKKXBDLwIncFsCjMC50U=
Subject key identifier: 45:6C:A3:96:2C:E3:BB:94:02:26:8C:21:EE:2B:12:92:7A:09:80:55
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/RWyjlizju5QCJowh7isSknoJgFU.roa
Signing time: Thu 15 Sep 2022 02:45:20 +0000
ROA not before: Thu 15 Sep 2022 02:45:20 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.195.52.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8096 (0x1fa0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:45:20 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=456CA3962CE3BB9402268C21EE2B12927A098055
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:f9:71:90:34:10:03:2d:21:1e:5b:05:22:fe:
64:6a:dc:b1:2b:39:78:ea:fc:5c:67:9b:6d:e8:d4:
dc:37:cc:aa:ee:f0:d4:80:1c:47:16:42:96:b1:04:
16:43:bb:91:af:6c:e4:0a:ae:32:fd:ce:09:be:ae:
57:95:78:dd:8d:10:e4:3f:ea:50:72:42:3f:cd:88:
a8:a0:56:06:f9:22:68:ba:b0:af:28:7f:76:17:fa:
cb:5a:65:b8:2d:40:65:a9:8e:14:44:65:df:c5:76:
fc:bc:4a:62:da:d4:7b:ce:a0:14:90:50:96:b0:ff:
5d:fc:b7:c5:06:d5:da:3e:c5:3d:90:d6:05:c0:e1:
0a:8e:b8:b9:69:a0:99:0c:28:29:5a:c4:8e:67:6a:
9e:d7:f2:86:c8:8b:2e:5c:db:9e:71:47:25:db:c9:
45:f3:5f:b7:a2:e8:05:90:d3:01:2b:49:7a:24:c7:
5b:0c:fc:01:cf:e7:58:84:7d:03:7e:4e:58:ef:fe:
93:1a:56:35:ff:d9:a6:85:89:65:8f:5e:ed:32:26:
9d:17:8a:6d:c8:97:e3:b8:dc:88:19:c2:76:58:56:
92:8f:9c:20:0c:ff:85:0c:1d:40:68:33:76:07:2c:
1c:a3:80:c7:c9:45:6c:59:60:78:e2:16:12:3e:db:
b3:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:6C:A3:96:2C:E3:BB:94:02:26:8C:21:EE:2B:12:92:7A:09:80:55
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/RWyjlizju5QCJowh7isSknoJgFU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.52.0/22
Signature Algorithm: sha256WithRSAEncryption
6a:00:d3:c1:d2:b4:ad:bf:45:d1:b8:0d:7e:da:16:6f:05:45:
52:47:1c:4c:24:c7:16:d3:f5:4d:09:9d:fa:bc:96:5d:a8:45:
8c:0e:cd:be:ea:86:50:9f:80:43:c3:95:14:7a:2c:89:20:22:
8f:26:91:fe:c6:62:fa:1a:36:b3:28:52:0e:b6:48:df:e5:20:
1c:db:ea:e0:22:70:94:15:32:33:64:d3:75:7f:18:a1:61:67:
30:33:bd:e7:cb:b1:a8:17:c8:eb:c0:4b:ff:1d:67:b5:2f:bb:
be:82:8b:e7:50:8a:cb:e0:b0:0d:2b:22:87:07:74:71:07:da:
2f:91:f6:8a:28:8b:4c:22:f7:82:56:eb:2d:cb:f3:7c:79:48:
ad:02:22:51:cc:0a:7f:df:0a:8d:f6:13:4f:60:fa:ad:fd:1d:
21:55:9b:33:a8:53:fa:8c:14:b9:46:4b:bb:82:e9:e6:03:58:
6f:12:9c:dd:57:db:1f:79:49:d4:6e:dc:ff:99:6d:68:78:0c:
fe:24:e0:03:27:94:18:c7:56:22:5a:47:55:90:d9:6f:c2:6e:
ff:63:67:40:ac:70:53:f3:a2:2d:fa:ca:cb:a9:10:66:5e:89:
09:dd:d8:bd:b6:30:bd:a0:f0:bc:c9:07:8b:7d:82:cc:70:a7:
ca:88:7c:f0
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICH6AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMjA5MTUw
MjQ1MjBaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDQ1NkNBMzk2MkNFM0JC
OTQwMjI2OEMyMUVFMkIxMjkyN0EwOTgwNTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCh+XGQNBADLSEeWwUi/mRq3LErOXjq/Fxnm23o1Nw3zKru8NSA
HEcWQpaxBBZDu5GvbOQKrjL9zgm+rleVeN2NEOQ/6lByQj/NiKigVgb5Imi6sK8o
f3YX+staZbgtQGWpjhREZd/Fdvy8SmLa1HvOoBSQUJaw/138t8UG1do+xT2Q1gXA
4QqOuLlpoJkMKClaxI5nap7X8obIiy5c255xRyXbyUXzX7ei6AWQ0wErSXokx1sM
/AHP51iEfQN+Tljv/pMaVjX/2aaFiWWPXu0yJp0Xim3Il+O43IgZwnZYVpKPnCAM
/4UMHUBoM3YHLByjgMfJRWxZYHjiFhI+27NXAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQURWyjlizju5QCJowh7isSknoJgFUwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1JXeWpsaXpqdTVRQ0pvd2g3
aXNTa25vSmdGVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7
wzQwDQYJKoZIhvcNAQELBQADggEBAGoA08HStK2/RdG4DX7aFm8FRVJHHEwkxxbT
9U0Jnfq8ll2oRYwOzb7qhlCfgEPDlRR6LIkgIo8mkf7GYvoaNrMoUg62SN/lIBzb
6uAicJQVMjNk03V/GKFhZzAzvefLsagXyOvAS/8dZ7Uvu76Ci+dQisvgsA0rIocH
dHEH2i+R9oooi0wi94JW6y3L83x5SK0CIlHMCn/fCo32E09g+q39HSFVmzOoU/qM
FLlGS7uC6eYDWG8SnN1X2x95SdRu3P+ZbWh4DP4k4AMnlBjHViJaR1WQ2W/Cbv9j
Z0CscFPzoi36ysupEGZeiQnd2L22ML2g8LzJB4t9gsxwp8qIfPA=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:34:05 2025 by rpki-client