Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/_5iTwbkWOKGQ7K6XUd6qJfPmKvc.roa
File: _5iTwbkWOKGQ7K6XUd6qJfPmKvc.roa (raw, json)
Hash identifier: nDbxrt0cAh7vjM8KKqtWSYI0vQqV33QgbZihxNuY9qs=
Subject key identifier: FF:98:93:C1:B9:16:38:A1:90:EC:AE:97:51:DE:AA:25:F3:E6:2A:F7
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2298
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/_5iTwbkWOKGQ7K6XUd6qJfPmKvc.roa
Signing time: Fri 25 Nov 2022 04:41:23 +0000
ROA not before: Fri 25 Nov 2022 04:41:23 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 118.233.160.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8856 (0x2298)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:41:23 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=FF9893C1B91638A190ECAE9751DEAA25F3E62AF7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:42:d4:5b:59:fb:b8:df:0a:6b:0a:91:b3:af:
f4:bd:da:94:fb:02:26:2e:e6:05:06:39:6a:b3:a6:
e0:b2:fc:17:0b:43:3b:07:d2:f4:45:1f:36:e8:a8:
0a:82:c0:a1:fb:74:72:5a:d4:aa:c5:4d:fe:d4:32:
6c:3d:e6:df:72:19:fa:27:ed:d1:fd:47:14:4f:cd:
9c:50:7f:25:1a:75:76:c7:f6:df:73:0d:bb:0c:3d:
16:99:8c:d0:ab:dc:18:16:14:e7:47:b5:3e:76:90:
9a:3d:ca:4c:f0:11:10:23:40:fe:d8:49:8f:73:f8:
db:14:bc:74:37:ff:ba:e1:ad:98:e4:3a:2f:c4:db:
b0:e5:cf:96:a6:24:dd:c9:c4:39:80:50:a4:7d:33:
f1:f5:95:f8:e7:9f:db:87:89:aa:b7:0e:0e:b5:1e:
b6:cf:be:0e:7b:86:a6:66:25:94:bb:ad:16:7e:64:
53:c7:fa:06:99:19:cd:2c:bc:90:f3:7d:31:50:17:
8c:a5:1c:d4:85:b7:63:67:79:69:68:e7:20:17:e8:
9b:ff:e3:15:fd:2a:44:35:44:18:a8:7e:81:be:e1:
3d:c4:f1:66:62:b9:24:9d:76:b4:97:8f:ca:2c:c4:
b1:2a:48:57:65:e8:34:ca:23:95:4b:4b:64:73:34:
d8:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:98:93:C1:B9:16:38:A1:90:EC:AE:97:51:DE:AA:25:F3:E6:2A:F7
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/_5iTwbkWOKGQ7K6XUd6qJfPmKvc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.160.0/21
Signature Algorithm: sha256WithRSAEncryption
55:0f:6d:9b:67:4d:9e:72:60:0a:bf:1c:6b:b1:f4:da:b9:5b:
25:fe:5c:28:a9:63:61:d6:df:07:1c:64:67:33:d5:8c:96:67:
41:c8:c2:7f:98:29:4a:20:b8:ab:8b:31:42:34:8d:cc:76:36:
89:68:0b:6a:9d:8a:be:d5:7b:82:27:c0:65:c1:48:99:82:16:
de:89:dc:40:08:52:20:8b:40:44:eb:cb:f6:93:06:a1:20:13:
f3:bd:d8:3f:f4:c2:da:1b:a6:07:3b:0d:d4:51:b1:52:c0:46:
09:57:8c:29:fa:1f:2c:6c:09:4f:72:8d:08:ea:00:d3:ce:37:
56:64:40:a3:8b:77:34:ff:1c:24:ed:ca:71:8a:a0:96:98:89:
93:dc:09:2b:77:8a:e1:62:38:01:bf:af:59:67:fd:a0:82:4e:
45:d5:93:11:67:42:5e:4b:9c:b8:49:c9:31:c2:d0:c8:f2:31:
88:06:79:28:cc:ec:4d:ed:96:a0:a2:ff:4f:ce:1b:4d:34:99:
9e:66:33:aa:df:de:c1:88:53:85:92:ad:74:8f:00:0b:cb:a3:
a5:41:5f:e5:01:98:ce:a7:9b:63:2a:a8:cb:26:c7:72:d9:07:
5d:c3:e1:de:a8:e7:66:c2:3d:0f:5c:e0:de:d9:1e:13:ec:4e:
15:86:25:c6
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICIpgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMjExMjUw
NDQxMjNaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEZGOTg5M0MxQjkxNjM4
QTE5MEVDQUU5NzUxREVBQTI1RjNFNjJBRjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC0QtRbWfu43wprCpGzr/S92pT7AiYu5gUGOWqzpuCy/BcLQzsH
0vRFHzboqAqCwKH7dHJa1KrFTf7UMmw95t9yGfon7dH9RxRPzZxQfyUadXbH9t9z
DbsMPRaZjNCr3BgWFOdHtT52kJo9ykzwERAjQP7YSY9z+NsUvHQ3/7rhrZjkOi/E
27Dlz5amJN3JxDmAUKR9M/H1lfjnn9uHiaq3Dg61HrbPvg57hqZmJZS7rRZ+ZFPH
+gaZGc0svJDzfTFQF4ylHNSFt2NneWlo5yAX6Jv/4xX9KkQ1RBiofoG+4T3E8WZi
uSSddrSXj8osxLEqSFdl6DTKI5VLS2RzNNg5AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQU/5iTwbkWOKGQ7K6XUd6qJfPmKvcwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL181aVR3YmtXT0tHUTdLNlhV
ZDZxSmZQbUt2Yy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN2
6aAwDQYJKoZIhvcNAQELBQADggEBAFUPbZtnTZ5yYAq/HGux9Nq5WyX+XCipY2HW
3wccZGcz1YyWZ0HIwn+YKUoguKuLMUI0jcx2NoloC2qdir7Ve4InwGXBSJmCFt6J
3EAIUiCLQETry/aTBqEgE/O92D/0wtobpgc7DdRRsVLARglXjCn6HyxsCU9yjQjq
ANPON1ZkQKOLdzT/HCTtynGKoJaYiZPcCSt3iuFiOAG/r1ln/aCCTkXVkxFnQl5L
nLhJyTHC0MjyMYgGeSjM7E3tlqCi/0/OG000mZ5mM6rf3sGIU4WSrXSPAAvLo6VB
X+UBmM6nm2MqqMsmx3LZB13D4d6o52bCPQ9c4N7ZHhPsThWGJcY=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:34 2024 by rpki-client on console-ams.rpki-client.org