Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/VnkayIthxp495ddo9h0XsY9UZjc.roa
File: VnkayIthxp495ddo9h0XsY9UZjc.roa (raw, json)
Hash identifier: y2xq4wPu+T4ER0hzA1W/MK4pExJxO1h0+rlv+lPgvkk=
Subject key identifier: 56:79:1A:C8:8B:61:C6:9E:3D:E5:D7:68:F6:1D:17:B1:8F:54:66:37
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 13F5
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/VnkayIthxp495ddo9h0XsY9UZjc.roa
Signing time: Sun 07 Feb 2021 11:56:47 +0000
ROA not before: Sun 07 Feb 2021 11:56:47 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 123.192.16.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5109 (0x13f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 11:56:47 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=56791AC88B61C69E3DE5D768F61D17B18F546637
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:0b:05:63:04:d1:e5:fd:79:00:88:d4:2a:ef:
3b:1e:9a:c4:f5:a1:89:69:4a:e6:b4:99:71:16:11:
ad:8b:13:76:14:fd:e4:22:d8:7f:c1:45:33:b0:d8:
98:f3:8e:07:df:a6:24:00:0e:e8:ab:83:95:ea:df:
66:02:af:bf:48:b3:c1:56:9a:c6:0c:41:02:f3:51:
de:8f:42:69:2c:6c:d5:15:bf:49:31:17:60:5d:0e:
62:3e:a8:e3:ef:7c:fc:e6:a2:d9:65:70:9f:a3:57:
a5:99:23:a0:c0:1a:66:b2:3d:bd:45:6e:a9:fb:b2:
61:ec:86:f4:90:fe:cb:4d:f7:d8:8a:4a:b4:9c:93:
84:0c:dc:9a:ee:51:c4:d6:9b:9d:8d:20:2b:f7:f0:
04:01:8c:55:60:b4:40:f2:7f:11:bb:d6:93:f2:2d:
50:ec:bb:a4:24:db:74:d5:3e:97:82:e1:94:2a:f7:
0d:a5:7b:e8:22:e3:cb:ba:6c:c7:85:11:1e:cb:95:
33:f5:34:fe:2d:b2:2d:ad:bf:30:b9:99:b1:57:c2:
ba:ab:67:98:48:0c:07:16:7f:d8:47:48:5b:09:83:
bf:80:79:0c:dc:51:5d:21:2e:50:9a:02:fb:a4:e7:
6e:10:6c:df:c8:b3:80:9b:56:de:4d:4b:f7:fb:48:
3a:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:79:1A:C8:8B:61:C6:9E:3D:E5:D7:68:F6:1D:17:B1:8F:54:66:37
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/VnkayIthxp495ddo9h0XsY9UZjc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.192.16.0/21
Signature Algorithm: sha256WithRSAEncryption
39:bc:2e:71:ef:cd:13:7e:a2:c2:0d:f7:73:9a:b8:d7:6e:0f:
a8:96:20:16:d9:b9:8e:6b:20:cd:01:8a:3e:f0:cc:03:b2:ec:
f1:b8:66:cd:56:ba:c4:d5:1e:12:1d:46:78:7d:ef:24:d2:88:
c8:1a:24:3b:a1:db:58:44:13:5b:0b:5d:4e:cd:fd:c0:c6:00:
83:dc:07:b6:ed:b4:65:94:c4:7a:f8:5d:21:8f:96:de:67:c9:
c0:76:cd:3b:d5:08:67:8d:10:ae:58:96:05:5c:ad:66:a5:a0:
0c:0b:85:54:32:30:01:d1:60:53:25:b5:7f:49:c4:5f:d8:24:
4d:27:82:1e:d2:5e:3b:22:4a:b0:19:c4:0d:5d:60:a3:3a:37:
4b:4c:79:d3:c7:50:32:a9:61:dc:b3:84:1e:df:c6:00:0e:0b:
27:b8:d8:d2:cd:72:6a:78:7c:0e:54:e4:8c:ac:00:3f:ea:83:
76:63:6b:0b:ea:5c:fc:a5:d9:7a:9b:66:2d:0d:29:f6:da:67:
63:c2:db:ce:9c:2d:ca:0f:b8:43:f5:b2:37:e0:9f:a3:b2:22:
87:19:b9:5a:41:fe:b0:a1:89:54:9c:54:b5:16:cf:08:6b:5f:
96:21:78:28:d1:89:76:06:70:b0:85:3e:56:3b:34:d7:10:57:
75:02:98:78
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICE/UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMTAyMDcx
MTU2NDdaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDU2NzkxQUM4OEI2MUM2
OUUzREU1RDc2OEY2MUQxN0IxOEY1NDY2MzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCjCwVjBNHl/XkAiNQq7zsemsT1oYlpSua0mXEWEa2LE3YU/eQi
2H/BRTOw2JjzjgffpiQADuirg5Xq32YCr79Is8FWmsYMQQLzUd6PQmksbNUVv0kx
F2BdDmI+qOPvfPzmotllcJ+jV6WZI6DAGmayPb1Fbqn7smHshvSQ/stN99iKSrSc
k4QM3JruUcTWm52NICv38AQBjFVgtEDyfxG71pPyLVDsu6Qk23TVPpeC4ZQq9w2l
e+gi48u6bMeFER7LlTP1NP4tsi2tvzC5mbFXwrqrZ5hIDAcWf9hHSFsJg7+AeQzc
UV0hLlCaAvuk524QbN/Is4CbVt5NS/f7SDpHAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUVnkayIthxp495ddo9h0XsY9UZjcwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1Zua2F5SXRoeHA0OTVkZG85
aDBYc1k5VVpqYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7
wBAwDQYJKoZIhvcNAQELBQADggEBADm8LnHvzRN+osIN93OauNduD6iWIBbZuY5r
IM0Bij7wzAOy7PG4Zs1WusTVHhIdRnh97yTSiMgaJDuh21hEE1sLXU7N/cDGAIPc
B7bttGWUxHr4XSGPlt5nycB2zTvVCGeNEK5YlgVcrWaloAwLhVQyMAHRYFMltX9J
xF/YJE0ngh7SXjsiSrAZxA1dYKM6N0tMedPHUDKpYdyzhB7fxgAOCye42NLNcmp4
fA5U5IysAD/qg3ZjawvqXPyl2XqbZi0NKfbaZ2PC286cLcoPuEP1sjfgn6OyIocZ
uVpB/rChiVScVLUWzwhrX5YheCjRiXYGcLCFPlY7NNcQV3UCmHg=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:53 2024 by rpki-client on console-fra.rpki-client.org