Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Y9fGxXvVv3x9urTmcZOeDyRPw6k.roa
File: Y9fGxXvVv3x9urTmcZOeDyRPw6k.roa (raw, json)
Hash identifier: O+u48WraekdhKwUxtVEuw3fCCtUZCKdV5STsJM9spPI=
Subject key identifier: 63:D7:C6:C5:7B:D5:BF:7C:7D:BA:B4:E6:71:93:9E:0F:24:4F:C3:A9
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Y9fGxXvVv3x9urTmcZOeDyRPw6k.roa
Signing time: Thu 15 Sep 2022 02:53:36 +0000
ROA not before: Thu 15 Sep 2022 02:53:36 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 180.177.136.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8098 (0x1fa2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:53:36 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=63D7C6C57BD5BF7C7DBAB4E671939E0F244FC3A9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:3b:7d:34:be:a0:48:ca:90:2e:56:51:68:d5:
1c:27:ae:79:49:a4:65:30:c4:4d:5f:47:d9:0e:34:
3b:58:6b:91:b0:26:55:3d:ec:2e:85:83:1a:74:f1:
93:cb:a7:35:1b:ad:9c:aa:34:77:2a:a0:1e:24:05:
c8:01:54:d3:9e:59:c6:81:21:99:dc:b0:fe:95:b2:
85:c4:87:a3:a4:1f:5f:b7:b4:6f:35:6e:ce:e4:38:
75:db:3d:e3:c6:8e:78:fb:d8:36:05:a7:8b:f5:e4:
b4:66:da:80:93:4a:ca:08:a0:c9:70:a1:ce:82:56:
9f:ba:d4:42:47:bf:85:5d:12:77:cb:55:6a:e2:dc:
a2:cc:2c:01:10:d1:87:f0:8e:d7:a0:27:85:6e:7f:
ee:15:98:e5:68:6c:bb:e1:b7:c6:a8:25:48:93:68:
e0:cc:f3:a6:04:57:d5:af:c5:1b:7c:91:bc:1b:34:
0f:3c:40:38:6f:79:4c:a4:0f:4f:92:b8:43:74:5b:
2e:9b:e4:fb:d9:8c:0a:11:6c:78:8b:df:b2:40:c4:
b6:15:97:fa:ef:d8:fc:db:af:4e:57:65:6e:09:2b:
79:5a:e3:de:19:17:07:09:55:9f:45:4a:65:10:d9:
6b:a8:17:62:92:7e:74:c5:aa:54:35:9a:67:04:99:
1a:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:D7:C6:C5:7B:D5:BF:7C:7D:BA:B4:E6:71:93:9E:0F:24:4F:C3:A9
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Y9fGxXvVv3x9urTmcZOeDyRPw6k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.177.136.0/22
Signature Algorithm: sha256WithRSAEncryption
76:1d:75:c1:f9:c4:21:53:95:d8:1b:f0:38:6d:72:c5:28:da:
64:ec:9b:15:75:f2:98:6c:5b:2f:04:3d:f0:e0:3f:3b:a9:ea:
5d:b1:78:bf:78:7a:f6:7a:6c:56:83:39:23:7d:55:15:22:73:
5b:74:87:85:59:a8:cd:5c:e4:93:99:60:af:3c:2a:e4:b9:b5:
b6:29:b1:75:a8:31:f9:66:00:ae:34:0c:5b:6c:ac:17:a7:1c:
f3:9d:50:ee:97:df:db:3e:c4:a8:b5:6b:0c:aa:f1:2a:2c:93:
c2:d0:bc:23:8d:0b:0c:c8:c6:96:fa:e1:b4:c0:3f:25:44:7a:
47:80:b0:68:cb:ef:03:49:2c:65:51:31:27:6a:2a:22:70:95:
47:c1:1d:b7:20:e1:5c:0d:d1:1b:3a:2c:b7:1c:94:24:44:9d:
57:9a:4d:57:c7:e6:78:19:dd:f0:0d:82:34:13:9d:78:72:cd:
db:09:ba:74:e1:a8:e5:85:e1:6b:6d:f5:8f:43:a0:09:3c:7e:
f1:57:f7:7f:35:d4:ee:2d:25:29:9f:05:c1:e7:bb:6e:a4:99:
07:3b:33:f4:08:f3:b1:90:8d:0f:69:2c:22:71:88:11:7a:18:
db:60:d9:87:7f:7d:4c:64:08:11:b7:0b:68:de:cd:d3:00:6d:
be:d5:98:e1
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICH6IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMjA5MTUw
MjUzMzZaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDYzRDdDNkM1N0JENUJG
N0M3REJBQjRFNjcxOTM5RTBGMjQ0RkMzQTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDMO300vqBIypAuVlFo1RwnrnlJpGUwxE1fR9kONDtYa5GwJlU9
7C6Fgxp08ZPLpzUbrZyqNHcqoB4kBcgBVNOeWcaBIZncsP6VsoXEh6OkH1+3tG81
bs7kOHXbPePGjnj72DYFp4v15LRm2oCTSsoIoMlwoc6CVp+61EJHv4VdEnfLVWri
3KLMLAEQ0YfwjtegJ4Vuf+4VmOVobLvht8aoJUiTaODM86YEV9WvxRt8kbwbNA88
QDhveUykD0+SuEN0Wy6b5PvZjAoRbHiL37JAxLYVl/rv2Pzbr05XZW4JK3la494Z
FwcJVZ9FSmUQ2WuoF2KSfnTFqlQ1mmcEmRqxAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUY9fGxXvVv3x9urTmcZOeDyRPw6kwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1k5Zkd4WHZWdjN4OXVyVG1j
Wk9lRHlSUHc2ay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAK0
sYgwDQYJKoZIhvcNAQELBQADggEBAHYddcH5xCFTldgb8DhtcsUo2mTsmxV18phs
Wy8EPfDgPzup6l2xeL94evZ6bFaDOSN9VRUic1t0h4VZqM1c5JOZYK88KuS5tbYp
sXWoMflmAK40DFtsrBenHPOdUO6X39s+xKi1awyq8Sosk8LQvCONCwzIxpb64bTA
PyVEekeAsGjL7wNJLGVRMSdqKiJwlUfBHbcg4VwN0Rs6LLcclCREnVeaTVfH5ngZ
3fANgjQTnXhyzdsJunThqOWF4Wtt9Y9DoAk8fvFX93811O4tJSmfBcHnu26kmQc7
M/QI87GQjQ9pLCJxiBF6GNtg2Yd/fUxkCBG3C2jezdMAbb7VmOE=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:54 2024 by rpki-client on console-fra.rpki-client.org