Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/TRY-j1vzF2B_mYprbK7Wzw2uIBo.roa
File: TRY-j1vzF2B_mYprbK7Wzw2uIBo.roa (raw, json)
Hash identifier: 1udX+y1vm9mgTXxK81EwZbw+JnFbL0Ik/lg6mBjFpjU=
Subject key identifier: 4D:16:3E:8F:5B:F3:17:60:7F:99:8A:6B:6C:AE:D6:CF:0D:AE:20:1A
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 214B
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/TRY-j1vzF2B_mYprbK7Wzw2uIBo.roa
Signing time: Fri 25 Nov 2022 04:39:45 +0000
ROA not before: Fri 25 Nov 2022 04:39:45 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 180.176.0.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8523 (0x214b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:39:45 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=4D163E8F5BF317607F998A6B6CAED6CF0DAE201A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:4a:17:46:db:66:0a:17:01:09:cc:b1:d0:b7:
b0:b0:38:14:f5:6d:20:6e:d2:b2:8c:72:48:3f:1f:
78:a6:a0:a3:2a:fd:bc:10:73:e4:8a:73:75:bb:93:
d8:35:3f:c9:0d:74:1e:c4:8f:fc:0d:8b:d3:e4:b7:
1e:30:96:9a:43:8d:b5:3a:f4:bc:f5:6f:91:e1:f4:
a5:1f:14:d5:89:35:8e:70:2a:79:93:0b:ae:fc:06:
58:7c:1e:42:ce:a6:8b:e7:58:49:71:48:f5:ad:4f:
e2:8d:67:44:eb:27:f0:ea:8a:18:4c:e5:18:21:95:
db:62:c2:f4:d7:6d:6c:1e:6b:90:fc:07:9c:6e:cf:
b9:68:49:a5:ee:9b:a7:18:43:2e:d6:e5:df:31:9a:
42:a4:a6:9c:6a:ba:fd:3a:2e:9c:1d:5c:6c:9c:fb:
20:67:63:4b:f7:f5:a0:63:80:8b:72:5a:ab:6c:8a:
a6:99:3e:1a:46:9a:5a:26:c4:9b:6e:b4:e0:f5:d7:
e3:b7:88:b8:53:f5:3b:7a:81:4a:b9:b6:2d:0d:f7:
d9:90:b5:48:2d:7b:01:dc:15:75:a0:93:9a:9f:e5:
a8:74:ca:d5:f7:80:78:bc:ec:2c:bf:a6:e8:2c:a9:
15:3b:5b:ea:f0:ee:78:37:d9:cd:a0:6d:df:09:8d:
b3:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:16:3E:8F:5B:F3:17:60:7F:99:8A:6B:6C:AE:D6:CF:0D:AE:20:1A
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/TRY-j1vzF2B_mYprbK7Wzw2uIBo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.176.0.0/22
Signature Algorithm: sha256WithRSAEncryption
21:f8:32:ee:69:ca:6e:4c:cd:00:9a:2b:23:ee:08:32:ea:e4:
43:fc:ec:ca:b0:6f:27:12:75:c5:10:e4:95:59:cf:9b:b4:13:
2e:91:b2:d8:6d:5a:ff:46:6a:d7:b7:37:fc:ab:62:18:1a:f1:
b1:8f:d8:99:07:df:5a:fe:5c:f7:4a:cb:34:64:33:c7:d2:45:
ec:d2:12:9c:00:11:f3:d2:6f:af:3b:bb:32:47:c7:bc:6e:a0:
8a:6d:94:49:15:27:fc:5e:3b:86:bd:18:e6:35:4c:64:5d:79:
5b:51:1b:d0:f1:20:09:83:2f:2a:5b:fd:c6:9e:9b:32:20:f7:
c0:cd:0f:70:30:e4:c7:ba:65:9d:92:13:80:3a:d2:1a:ae:79:
f5:09:dd:72:b1:c2:10:ae:9e:85:36:ef:60:ab:64:f4:a3:82:
4e:fa:a9:d4:de:2f:bb:c5:fd:31:17:5c:78:d9:67:4e:8b:b7:
4d:bd:69:07:cb:12:2e:ca:07:db:e1:d1:07:00:8e:08:db:08:
d1:15:90:0e:77:01:91:f3:63:8a:70:de:0e:37:f5:2f:08:fb:
cc:78:d2:5a:b3:28:1e:6f:bb:eb:b4:79:8f:f6:a2:59:d7:3d:
a0:82:67:6d:ba:ce:4d:7b:dc:e4:07:b5:b4:99:d7:82:5e:e6:
f9:19:e9:a6
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICIUswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMjExMjUw
NDM5NDVaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDREMTYzRThGNUJGMzE3
NjA3Rjk5OEE2QjZDQUVENkNGMERBRTIwMUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDAShdG22YKFwEJzLHQt7CwOBT1bSBu0rKMckg/H3imoKMq/bwQ
c+SKc3W7k9g1P8kNdB7Ej/wNi9Pktx4wlppDjbU69Lz1b5Hh9KUfFNWJNY5wKnmT
C678Blh8HkLOpovnWElxSPWtT+KNZ0TrJ/DqihhM5RghldtiwvTXbWwea5D8B5xu
z7loSaXum6cYQy7W5d8xmkKkppxquv06LpwdXGyc+yBnY0v39aBjgItyWqtsiqaZ
PhpGmlomxJtutOD11+O3iLhT9Tt6gUq5ti0N99mQtUgtewHcFXWgk5qf5ah0ytX3
gHi87Cy/pugsqRU7W+rw7ng32c2gbd8JjbMxAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUTRY+j1vzF2B/mYprbK7Wzw2uIBowHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1RSWS1qMXZ6RjJCX21ZcHJi
SzdXencydUlCby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAK0
sAAwDQYJKoZIhvcNAQELBQADggEBACH4Mu5pym5MzQCaKyPuCDLq5EP87MqwbycS
dcUQ5JVZz5u0Ey6RsthtWv9Gate3N/yrYhga8bGP2JkH31r+XPdKyzRkM8fSRezS
EpwAEfPSb687uzJHx7xuoIptlEkVJ/xeO4a9GOY1TGRdeVtRG9DxIAmDLypb/cae
mzIg98DND3Aw5Me6ZZ2SE4A60hquefUJ3XKxwhCunoU272CrZPSjgk76qdTeL7vF
/TEXXHjZZ06Lt029aQfLEi7KB9vh0QcAjgjbCNEVkA53AZHzY4pw3g439S8I+8x4
0lqzKB5vu+u0eY/2olnXPaCCZ226zk173OQHtbSZ14Je5vkZ6aY=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:53 2024 by rpki-client on console-fra.rpki-client.org