Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/YFtvO8cF8tvUbc_4xdUCjQeNBSc.roa
File: YFtvO8cF8tvUbc_4xdUCjQeNBSc.roa (raw, json)
Hash identifier: qgO3QgGyXF1+HfpDrGchF7KTfMmJDoqkf3msSmovrSc=
Subject key identifier: 60:5B:6F:3B:C7:05:F2:DB:D4:6D:CF:F8:C5:D5:02:8D:07:8D:05:27
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1AA0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/YFtvO8cF8tvUbc_4xdUCjQeNBSc.roa
Signing time: Wed 29 Sep 2021 02:45:34 +0000
ROA not before: Wed 29 Sep 2021 02:45:34 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 123.192.32.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6816 (0x1aa0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:45:34 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=605B6F3BC705F2DBD46DCFF8C5D5028D078D0527
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:eb:9a:17:92:16:2b:35:82:67:67:44:6b:c6:
2d:aa:08:e0:a1:d0:77:41:56:e1:4c:99:80:b3:21:
d4:f0:e4:5f:1d:17:c9:ab:89:c9:b5:7d:33:8a:cb:
20:f7:c8:09:37:ed:17:4d:32:64:9d:6e:1b:de:2b:
4a:e9:be:ea:ae:c4:1b:54:7e:97:07:41:27:9e:32:
03:bf:66:6d:a2:41:53:63:d7:48:68:8b:7e:8e:48:
ee:10:dc:9a:1f:25:8e:ff:a0:81:71:6e:07:38:a0:
40:ac:29:5a:d5:31:c3:3e:8d:cb:e2:38:73:9d:6f:
3f:02:09:5b:fb:7c:5d:6f:6a:22:d8:b3:4e:2e:79:
9c:3a:55:f3:71:c4:70:c0:1b:e1:7a:e4:52:f4:ea:
35:f0:e9:27:50:8a:cc:26:1a:47:14:6a:4f:2b:9f:
82:77:7d:76:97:0a:86:8b:65:de:b5:4d:a2:7e:ef:
9b:06:b6:d2:66:64:23:a4:e1:7a:bc:d4:f4:e7:7c:
fc:48:5e:e7:40:77:38:e9:07:55:e2:72:72:2e:03:
ba:55:1d:46:5f:ed:63:f2:0e:42:bd:24:70:48:bd:
7f:e1:c3:85:2e:f9:e4:d3:0d:02:22:b8:63:72:c9:
67:37:1e:8a:7a:f3:3c:f0:5d:42:ae:2f:bf:9e:19:
f0:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:5B:6F:3B:C7:05:F2:DB:D4:6D:CF:F8:C5:D5:02:8D:07:8D:05:27
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/YFtvO8cF8tvUbc_4xdUCjQeNBSc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.192.32.0/20
Signature Algorithm: sha256WithRSAEncryption
6d:c0:eb:98:d7:47:9b:7e:84:ab:03:e3:0a:0f:28:c1:9b:32:
b3:af:c2:7e:17:2e:5c:77:45:70:db:72:7e:03:cf:fc:d4:29:
2e:7f:84:ff:67:fd:1c:4f:e5:5a:75:d7:95:f9:17:11:8b:b7:
13:77:dd:c5:9a:75:35:2f:d2:59:06:bb:fe:96:e9:15:a7:49:
86:23:c7:01:e9:6d:79:e7:e9:a1:7e:99:4a:9d:80:6a:13:db:
09:fd:6f:b6:81:12:b7:6d:58:a6:db:75:94:24:15:9a:02:cc:
9f:91:cb:92:fb:5f:d1:ab:6c:df:52:bb:25:9f:20:50:85:08:
e0:36:e4:a8:c8:7f:ef:bf:70:a8:2d:72:26:15:3d:40:7c:7b:
18:5a:d8:a5:ce:f8:1c:54:05:58:fe:6e:cf:ec:8d:02:fd:b5:
24:68:63:63:35:e4:e2:49:59:90:37:8c:f1:49:3f:ef:bf:88:
ae:9e:09:d8:5d:5d:c9:57:dc:b8:60:60:05:ec:ee:1c:61:4c:
2e:9b:c1:2f:74:26:f8:b5:14:94:66:e9:7f:12:68:f9:3f:b7:
18:48:06:d8:fb:8b:84:cd:2b:1d:9c:7d:a4:c9:e6:e9:8b:f1:
d5:e2:a1:f5:d5:23:d8:a9:c4:84:78:0a:3f:79:d0:bb:62:68:
42:d7:f7:c7
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICGqAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMTA5Mjkw
MjQ1MzRaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDYwNUI2RjNCQzcwNUYy
REJENDZEQ0ZGOEM1RDUwMjhEMDc4RDA1MjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDA65oXkhYrNYJnZ0Rrxi2qCOCh0HdBVuFMmYCzIdTw5F8dF8mr
icm1fTOKyyD3yAk37RdNMmSdbhveK0rpvuquxBtUfpcHQSeeMgO/Zm2iQVNj10ho
i36OSO4Q3JofJY7/oIFxbgc4oECsKVrVMcM+jcviOHOdbz8CCVv7fF1vaiLYs04u
eZw6VfNxxHDAG+F65FL06jXw6SdQiswmGkcUak8rn4J3fXaXCoaLZd61TaJ+75sG
ttJmZCOk4Xq81PTnfPxIXudAdzjpB1XicnIuA7pVHUZf7WPyDkK9JHBIvX/hw4Uu
+eTTDQIiuGNyyWc3Hop68zzwXUKuL7+eGfAZAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUYFtvO8cF8tvUbc/4xdUCjQeNBScwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1lGdHZPOGNGOHR2VWJjXzR4
ZFVDalFlTkJTYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAR7
wCAwDQYJKoZIhvcNAQELBQADggEBAG3A65jXR5t+hKsD4woPKMGbMrOvwn4XLlx3
RXDbcn4Dz/zUKS5/hP9n/RxP5Vp115X5FxGLtxN33cWadTUv0lkGu/6W6RWnSYYj
xwHpbXnn6aF+mUqdgGoT2wn9b7aBErdtWKbbdZQkFZoCzJ+Ry5L7X9GrbN9SuyWf
IFCFCOA25KjIf++/cKgtciYVPUB8exha2KXO+BxUBVj+bs/sjQL9tSRoY2M15OJJ
WZA3jPFJP++/iK6eCdhdXclX3LhgYAXs7hxhTC6bwS90Jvi1FJRm6X8SaPk/txhI
Btj7i4TNKx2cfaTJ5umL8dXiofXVI9ipxIR4Cj950LtiaELX98c=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:22 2023 by rpki-client on console-ams.rpki-client.org