Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Rpc7nCbOBn3VQeymDMZBxmz-gYA.roa
File: Rpc7nCbOBn3VQeymDMZBxmz-gYA.roa (raw, json)
Hash identifier: xKH8mK4TOuZMDoIZFrRTHFG6thT6Cl/V9HMywqF1Qr8=
Subject key identifier: 46:97:3B:9C:26:CE:06:7D:D5:41:EC:A6:0C:C6:41:C6:6C:FE:81:80
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 0F70
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Rpc7nCbOBn3VQeymDMZBxmz-gYA.roa
Signing time: Tue 29 Sep 2020 09:56:57 +0000
ROA not before: Tue 29 Sep 2020 09:56:57 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 118.233.230.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3952 (0xf70)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 09:56:57 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=46973B9C26CE067DD541ECA60CC641C66CFE8180
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:dc:b1:2a:f7:d7:27:d9:76:74:24:93:59:83:
88:23:4d:eb:c8:da:b4:2e:12:d8:fa:ac:32:98:ad:
8c:d5:8e:93:24:4a:a2:74:d1:63:3c:6d:be:13:2e:
86:30:32:3f:90:1d:3a:7b:57:8e:71:08:48:b3:10:
90:3e:90:cd:8b:f6:54:24:82:67:44:22:32:2c:b9:
a5:9a:64:3c:5b:75:09:b1:c7:ec:ad:2c:94:38:95:
ad:68:7c:bb:04:23:62:0d:6b:af:d2:61:87:69:86:
62:d6:a0:61:c5:19:ee:e7:3f:ea:ca:f7:3c:15:0b:
62:be:d7:e7:aa:3b:4d:f7:3e:3a:dc:f5:0f:9a:de:
ee:e8:ba:14:9a:f8:7f:66:06:07:fe:43:db:7f:e2:
78:f6:b1:5c:bd:36:eb:3e:bb:53:52:cc:61:73:aa:
41:d8:31:07:0c:ac:15:87:de:ea:1a:fc:f9:f5:db:
2a:03:d9:8b:5b:08:f4:e8:27:4a:3d:c6:98:8b:d5:
09:53:13:62:37:12:6b:9c:fd:a4:cc:44:ab:35:ba:
52:f0:20:b2:44:1d:4b:85:cc:51:ea:4c:9c:d3:e1:
19:b9:a2:48:7b:4e:38:04:e1:c7:63:cd:7a:ad:2c:
d0:0c:74:ec:4c:b1:fa:79:ff:f6:8e:df:20:79:56:
8b:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:97:3B:9C:26:CE:06:7D:D5:41:EC:A6:0C:C6:41:C6:6C:FE:81:80
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Rpc7nCbOBn3VQeymDMZBxmz-gYA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.230.0/23
Signature Algorithm: sha256WithRSAEncryption
7d:6a:72:a2:d9:c6:08:36:51:10:b7:c2:b6:7c:42:7b:94:35:
51:60:4c:22:39:d4:27:2e:d2:9b:d7:20:7a:b4:d5:07:83:32:
25:e3:cf:6f:2f:75:d3:f9:55:90:6d:7c:81:bb:e5:77:5a:eb:
0c:62:98:82:39:48:42:2e:0d:3f:43:49:86:f4:8e:e7:58:d1:
c1:7d:45:f8:ab:6d:5d:33:34:9f:62:43:14:36:a7:a2:89:2a:
5e:b1:b7:c9:ad:f3:c1:77:b8:11:29:c9:8e:48:37:6a:91:65:
54:f7:8f:d9:9c:5b:71:cf:9f:e9:e9:08:fb:7e:85:a6:6c:f4:
38:71:08:c3:7b:fe:61:d4:9d:7a:c3:e8:0d:a8:1e:70:1e:f0:
c3:7d:3c:0e:f2:e6:8d:76:ea:5a:a7:a0:52:0a:71:fa:1c:16:
1b:58:e8:79:46:b0:1a:bb:7a:39:a3:6c:20:63:da:b5:e2:50:
dd:01:40:6a:aa:0f:60:28:d6:09:7b:c1:f1:0f:6e:99:8f:8c:
b6:62:ef:cc:80:63:57:38:75:6d:1f:f4:95:2d:6a:26:08:71:
2f:2b:57:2f:1f:de:7a:f3:15:49:a3:12:02:2f:62:c6:c9:1f:
4c:62:22:df:c8:dc:7b:5a:45:9a:8e:e8:b6:eb:95:98:f5:95:
34:d4:5c:75
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICD3AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMDA5Mjkw
OTU2NTdaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDQ2OTczQjlDMjZDRTA2
N0RENTQxRUNBNjBDQzY0MUM2NkNGRTgxODAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDY3LEq99cn2XZ0JJNZg4gjTevI2rQuEtj6rDKYrYzVjpMkSqJ0
0WM8bb4TLoYwMj+QHTp7V45xCEizEJA+kM2L9lQkgmdEIjIsuaWaZDxbdQmxx+yt
LJQ4la1ofLsEI2INa6/SYYdphmLWoGHFGe7nP+rK9zwVC2K+1+eqO033Pjrc9Q+a
3u7ouhSa+H9mBgf+Q9t/4nj2sVy9Nus+u1NSzGFzqkHYMQcMrBWH3uoa/Pn12yoD
2YtbCPToJ0o9xpiL1QlTE2I3Emuc/aTMRKs1ulLwILJEHUuFzFHqTJzT4Rm5okh7
TjgE4cdjzXqtLNAMdOxMsfp5//aO3yB5VovhAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQURpc7nCbOBn3VQeymDMZBxmz+gYAwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1JwYzduQ2JPQm4zVlFleW1E
TVpCeG16LWdZQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAF2
6eYwDQYJKoZIhvcNAQELBQADggEBAH1qcqLZxgg2URC3wrZ8QnuUNVFgTCI51Ccu
0pvXIHq01QeDMiXjz28vddP5VZBtfIG75Xda6wximII5SEIuDT9DSYb0judY0cF9
RfirbV0zNJ9iQxQ2p6KJKl6xt8mt88F3uBEpyY5IN2qRZVT3j9mcW3HPn+npCPt+
haZs9DhxCMN7/mHUnXrD6A2oHnAe8MN9PA7y5o126lqnoFIKcfocFhtY6HlGsBq7
ejmjbCBj2rXiUN0BQGqqD2Ao1gl7wfEPbpmPjLZi78yAY1c4dW0f9JUtaiYIcS8r
Vy8f3nrzFUmjEgIvYsbJH0xiIt/I3HtaRZqO6LbrlZj1lTTUXHU=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:19 2023 by rpki-client on console-ams.rpki-client.org