Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/V5dGGw2oypox_QvyRuIKABifZKc.roa
File: V5dGGw2oypox_QvyRuIKABifZKc.roa (raw, json)
Hash identifier: iAwj7LVLHZN/C0JiA+Pl2wGR8KZxEvXmt+AZRqRQhTY=
Subject key identifier: 57:97:46:1B:0D:A8:CA:9A:31:FD:0B:F2:46:E2:0A:00:18:9F:64:A7
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 149F
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/V5dGGw2oypox_QvyRuIKABifZKc.roa
Signing time: Sun 07 Feb 2021 11:59:22 +0000
ROA not before: Sun 07 Feb 2021 11:59:22 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 118.233.100.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5279 (0x149f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 11:59:22 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5797461B0DA8CA9A31FD0BF246E20A00189F64A7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:73:76:3b:62:7f:8e:68:4f:66:e8:5b:98:dc:
f8:58:e4:4d:dc:71:85:5a:89:58:08:f7:32:d3:13:
97:3a:61:db:5d:39:9f:18:26:b5:92:bf:88:7d:d9:
5f:bf:1d:e6:4e:86:09:e2:d0:69:e4:5c:ce:bc:c7:
3b:b8:6e:98:3c:96:62:e0:78:96:30:73:e3:af:1b:
ec:95:4c:a8:6a:79:55:48:ef:81:8a:23:91:0f:f0:
3a:9f:99:67:c2:b1:aa:bd:ab:10:e7:18:95:8a:85:
56:35:a1:1a:cc:2f:a4:45:bd:76:34:46:65:82:d3:
bf:b1:06:25:67:a2:0a:1a:30:19:98:48:60:67:2f:
17:5f:f2:4b:cd:b7:94:7c:3f:5a:42:62:ec:30:24:
f7:c8:31:eb:91:72:fd:62:5e:e0:2a:16:f7:00:ab:
de:da:cd:c7:fb:97:05:08:8e:88:fb:d2:06:00:42:
39:a5:ca:a1:07:38:e6:70:e7:c8:0b:0e:aa:20:73:
56:d0:e7:9c:4f:b6:2c:0f:69:bf:d2:dd:39:5f:78:
e7:b8:f9:18:a5:06:b9:5d:93:ee:11:2a:a6:96:26:
19:8e:41:a3:55:9d:7b:4d:5a:39:67:5e:1a:7e:c4:
3b:51:39:d7:b7:5a:ef:ec:68:ef:6b:f8:d5:19:94:
65:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:97:46:1B:0D:A8:CA:9A:31:FD:0B:F2:46:E2:0A:00:18:9F:64:A7
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/V5dGGw2oypox_QvyRuIKABifZKc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.100.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:41:01:e3:a1:8f:06:65:81:f5:54:d7:9f:7a:78:5a:f8:bf:
e0:7e:c6:b6:67:5c:69:e7:c3:a8:92:5d:7a:65:fa:29:c5:a2:
7d:83:43:8d:e5:2e:c0:5d:2c:eb:17:9d:c7:1f:bc:0b:aa:40:
cd:d3:36:c0:47:53:7f:25:df:63:e4:ff:11:53:59:01:6c:ed:
bb:36:08:42:6a:08:da:6f:39:d9:d6:3b:13:bd:22:d0:b0:6d:
f5:71:6e:7e:30:73:3c:61:3d:32:b2:cb:a7:8e:9d:ed:36:b3:
b8:ca:20:f3:1d:0f:91:e3:8a:80:59:dd:45:48:23:b0:36:6f:
ac:03:7e:f4:57:12:77:4c:94:a7:5c:9a:2e:73:32:ea:e5:e7:
ce:05:78:7b:7c:39:84:8f:6d:0f:71:6e:b0:10:9b:dd:1c:47:
f9:4e:09:4a:a1:d4:13:be:44:c6:11:16:2e:d2:b4:88:8f:16:
43:99:b4:92:7f:68:c2:e2:8e:65:fd:d5:1a:83:eb:62:09:2d:
f5:4b:4c:20:93:7b:b1:89:1d:1f:2c:21:de:a5:91:73:6e:2c:
89:bf:6c:a1:e7:15:f1:0d:89:52:7b:5d:fe:bf:8d:35:a7:39:
47:92:b9:d1:2d:7f:1c:67:94:90:02:b3:d0:43:47:b4:7e:33:
fc:85:8b:5a
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICFJ8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMTAyMDcx
MTU5MjJaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDU3OTc0NjFCMERBOENB
OUEzMUZEMEJGMjQ2RTIwQTAwMTg5RjY0QTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDUc3Y7Yn+OaE9m6FuY3PhY5E3ccYVaiVgI9zLTE5c6YdtdOZ8Y
JrWSv4h92V+/HeZOhgni0GnkXM68xzu4bpg8lmLgeJYwc+OvG+yVTKhqeVVI74GK
I5EP8DqfmWfCsaq9qxDnGJWKhVY1oRrML6RFvXY0RmWC07+xBiVnogoaMBmYSGBn
Lxdf8kvNt5R8P1pCYuwwJPfIMeuRcv1iXuAqFvcAq97azcf7lwUIjoj70gYAQjml
yqEHOOZw58gLDqogc1bQ55xPtiwPab/S3TlfeOe4+RilBrldk+4RKqaWJhmOQaNV
nXtNWjlnXhp+xDtROde3Wu/saO9r+NUZlGUbAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUV5dGGw2oypox/QvyRuIKABifZKcwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1Y1ZEdHdzJveXBveF9RdnlS
dUlLQUJpZlpLYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB2
6WQwDQYJKoZIhvcNAQELBQADggEBALBBAeOhjwZlgfVU1596eFr4v+B+xrZnXGnn
w6iSXXpl+inFon2DQ43lLsBdLOsXnccfvAuqQM3TNsBHU38l32Pk/xFTWQFs7bs2
CEJqCNpvOdnWOxO9ItCwbfVxbn4wczxhPTKyy6eOne02s7jKIPMdD5HjioBZ3UVI
I7A2b6wDfvRXEndMlKdcmi5zMurl584FeHt8OYSPbQ9xbrAQm90cR/lOCUqh1BO+
RMYRFi7StIiPFkOZtJJ/aMLijmX91RqD62IJLfVLTCCTe7GJHR8sId6lkXNuLIm/
bKHnFfENiVJ7Xf6/jTWnOUeSudEtfxxnlJACs9BDR7R+M/yFi1o=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:30 2023 by rpki-client on console-fra.rpki-client.org