Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/YfTthfZ3pnw_6CGfs-iQbNR6tEw.roa
File: YfTthfZ3pnw_6CGfs-iQbNR6tEw.roa (raw, json)
Hash identifier: uP3SJv3MHjVEvrXcZytohhV/P0BO/30z3rrrux8zVJ0=
Subject key identifier: 61:F4:ED:85:F6:77:A6:7C:3F:E8:21:9F:B3:E8:90:6C:D4:7A:B4:4C
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 0D34
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/YfTthfZ3pnw_6CGfs-iQbNR6tEw.roa
Signing time: Tue 29 Sep 2020 09:54:18 +0000
ROA not before: Tue 29 Sep 2020 09:54:18 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 118.233.0.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3380 (0xd34)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 09:54:18 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=61F4ED85F677A67C3FE8219FB3E8906CD47AB44C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:26:e7:92:12:b8:23:11:53:43:39:6e:fe:47:
76:16:ed:5a:1c:af:f2:92:86:c3:80:8c:87:b4:95:
ea:6c:96:2d:ad:d8:31:3e:28:8e:7d:3e:14:08:21:
d3:6b:15:22:49:5f:70:71:c3:22:b1:46:8a:16:bf:
40:0b:c4:c9:6d:4a:c6:ca:63:0a:f0:15:4e:c1:36:
59:21:fe:f3:65:04:19:fc:2d:08:28:ae:9b:c7:6e:
08:6c:62:7f:63:1d:30:7d:e9:7f:1e:41:68:a9:72:
81:ba:69:38:5e:60:47:1d:e6:18:15:5c:7b:dc:64:
60:55:e3:44:e5:16:fd:3f:f4:a9:6d:92:80:12:f5:
2b:bd:e3:b9:09:39:e4:dc:d5:d5:49:9b:c4:ae:d0:
a1:d7:24:64:a7:a0:85:87:3c:ab:c3:82:e2:66:71:
6c:64:6d:f2:2a:f1:f5:b8:97:19:7e:de:96:d8:2f:
de:cc:38:08:2b:b3:f8:3d:4f:bf:b2:c3:98:4b:e3:
80:8b:6d:67:ad:98:19:2c:0c:06:42:5a:a2:0f:01:
ef:68:e3:cb:19:0f:f4:5c:50:48:b4:66:2b:21:9b:
51:bb:b1:96:6b:ab:ab:29:fc:96:f3:dd:a8:ca:41:
01:bf:c3:d8:7f:6c:c4:62:90:88:0c:e4:52:23:0b:
fb:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:F4:ED:85:F6:77:A6:7C:3F:E8:21:9F:B3:E8:90:6C:D4:7A:B4:4C
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/YfTthfZ3pnw_6CGfs-iQbNR6tEw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.0.0/21
Signature Algorithm: sha256WithRSAEncryption
90:78:8b:09:49:f3:89:d6:9d:01:a4:45:cb:8a:65:82:8c:8f:
40:a9:68:87:d1:ba:f4:e3:60:35:13:e5:98:83:66:2a:ef:36:
f4:37:7e:c9:9a:2e:e2:4e:86:88:05:8d:7f:e7:41:69:2e:2c:
52:12:ae:f1:c8:2c:b8:e6:73:7c:24:c2:b0:c0:2f:7e:a1:78:
81:76:db:b1:bf:dd:89:ce:f4:27:37:cd:20:5f:b6:dd:82:d7:
85:38:36:a0:76:40:d5:ef:5f:c9:c0:42:c9:d2:b3:ee:72:3a:
da:58:1d:8a:9f:d1:33:12:30:e6:c1:f8:c4:76:7d:78:ea:a6:
95:04:2e:54:db:8c:60:1b:17:11:06:50:1c:17:9a:1d:09:15:
13:bf:66:61:a6:a4:5e:02:4c:3f:0d:96:e6:63:c5:86:cf:36:
94:ee:ef:5e:aa:e6:39:87:f0:32:a4:6b:42:a9:c8:43:df:d6:
2d:63:5c:da:a8:7e:7a:e0:72:a7:48:2b:6e:70:b2:10:0b:67:
cd:07:4a:1f:14:98:e2:e9:dd:5c:3a:56:30:bc:4f:69:ce:bc:
d3:57:d4:1b:dc:fe:fb:19:b7:9d:15:99:8c:f6:5e:c8:43:f4:
d5:00:0f:d3:2d:97:5b:aa:a5:b0:18:9e:49:51:6d:7d:4b:b9:
db:b2:57:af
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICDTQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMDA5Mjkw
OTU0MThaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDYxRjRFRDg1RjY3N0E2
N0MzRkU4MjE5RkIzRTg5MDZDRDQ3QUI0NEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDYJueSErgjEVNDOW7+R3YW7Vocr/KShsOAjIe0lepsli2t2DE+
KI59PhQIIdNrFSJJX3BxwyKxRooWv0ALxMltSsbKYwrwFU7BNlkh/vNlBBn8LQgo
rpvHbghsYn9jHTB96X8eQWipcoG6aTheYEcd5hgVXHvcZGBV40TlFv0/9KltkoAS
9Su947kJOeTc1dVJm8Su0KHXJGSnoIWHPKvDguJmcWxkbfIq8fW4lxl+3pbYL97M
OAgrs/g9T7+yw5hL44CLbWetmBksDAZCWqIPAe9o48sZD/RcUEi0Zishm1G7sZZr
q6sp/Jbz3ajKQQG/w9h/bMRikIgM5FIjC/udAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUYfTthfZ3pnw/6CGfs+iQbNR6tEwwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1lmVHRoZlozcG53XzZDR2Zz
LWlRYk5SNnRFdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN2
6QAwDQYJKoZIhvcNAQELBQADggEBAJB4iwlJ84nWnQGkRcuKZYKMj0CpaIfRuvTj
YDUT5ZiDZirvNvQ3fsmaLuJOhogFjX/nQWkuLFISrvHILLjmc3wkwrDAL36heIF2
27G/3YnO9Cc3zSBftt2C14U4NqB2QNXvX8nAQsnSs+5yOtpYHYqf0TMSMObB+MR2
fXjqppUELlTbjGAbFxEGUBwXmh0JFRO/ZmGmpF4CTD8NluZjxYbPNpTu716q5jmH
8DKka0KpyEPf1i1jXNqofnrgcqdIK25wshALZ80HSh8UmOLp3Vw6VjC8T2nOvNNX
1Bvc/vsZt50VmYz2XshD9NUAD9Mtl1uqpbAYnklRbX1LuduyV68=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:34 2023 by rpki-client on console-fra.rpki-client.org