Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/a5bG_DsFCxBG-cQw2HOBDRHeKg4.roa
File: a5bG_DsFCxBG-cQw2HOBDRHeKg4.roa (raw, json)
Hash identifier: zpW8rgQSOLgT5NTw1D/65kXI/E+WyBey2krxToqN/Ms=
Subject key identifier: 6B:96:C6:FC:3B:05:0B:10:46:F9:C4:30:D8:73:81:0D:11:DE:2A:0E
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1BC2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/a5bG_DsFCxBG-cQw2HOBDRHeKg4.roa
Signing time: Wed 29 Sep 2021 02:46:57 +0000
ROA not before: Wed 29 Sep 2021 02:46:57 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 211.76.120.128/25 maxlen: 25
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7106 (0x1bc2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:46:57 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=6B96C6FC3B050B1046F9C430D873810D11DE2A0E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:05:c6:00:65:6b:97:ca:8e:d7:92:24:88:06:
dc:87:73:93:0d:57:66:9a:20:6e:38:e7:72:64:18:
15:42:84:f2:73:29:b0:5a:d2:cd:32:81:bd:3d:ab:
7e:ba:ce:36:b3:5d:97:e2:31:ac:e6:29:ad:6c:bd:
32:1e:67:d9:7a:a4:a3:87:f6:80:28:2f:05:59:75:
8f:9e:68:6c:48:da:be:d8:69:27:56:48:b0:be:a6:
3a:b6:45:19:73:6a:fe:34:5b:3e:12:12:9b:ee:8a:
ab:6f:02:77:88:41:96:92:10:13:08:b9:36:b3:0a:
0b:3c:15:a9:c8:2b:89:f3:7e:42:4d:b1:e5:af:64:
65:b1:bf:d6:3e:ac:af:a3:13:97:0d:46:be:b4:53:
32:a0:c6:66:cf:d8:8d:9f:82:aa:71:56:75:57:4f:
46:68:31:7c:3d:69:7b:58:1f:3d:74:53:b7:c0:38:
c4:2a:6d:62:16:22:6d:91:da:65:12:a9:89:cd:e1:
0e:c5:bc:60:fd:0b:da:5b:30:e6:cf:8c:d8:67:52:
63:4f:f1:50:3d:8e:bb:af:93:09:5a:6f:50:86:36:
8b:df:6f:ac:a2:67:6b:49:f9:5e:c5:a4:42:42:06:
45:28:a3:76:97:66:72:c6:f9:4a:e3:7d:8b:42:fe:
f1:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:96:C6:FC:3B:05:0B:10:46:F9:C4:30:D8:73:81:0D:11:DE:2A:0E
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/a5bG_DsFCxBG-cQw2HOBDRHeKg4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.120.128/25
Signature Algorithm: sha256WithRSAEncryption
7d:0d:8f:02:13:ae:ee:23:04:86:1b:3b:68:b8:7a:a9:d1:42:
1c:e9:8c:e0:c5:38:64:fc:fc:77:e3:dc:8b:88:18:b4:de:30:
8e:d9:3f:12:d5:01:3f:5d:04:9f:8f:bf:3b:34:37:73:92:2f:
42:eb:03:0a:3d:0f:0a:29:e9:f0:05:2a:bc:a1:4f:bc:48:03:
77:e2:7d:f8:ac:72:2d:01:6f:b1:8d:40:ef:64:72:fd:8c:8d:
ce:3e:2b:40:77:a8:ff:67:6c:c1:60:75:76:ad:2c:94:c6:e7:
30:5d:99:bf:1e:30:e3:54:17:c2:d5:ea:26:c4:fd:df:16:ac:
67:ce:1d:44:fa:ed:c3:5f:18:0b:41:ab:fe:06:dd:71:5d:1f:
a5:a2:49:0d:8c:81:85:d6:61:5e:03:23:5e:79:d8:93:dc:02:
96:50:9e:59:5b:a2:79:ff:94:e6:d4:a1:71:79:2c:4b:e2:70:
e5:0e:0b:2d:19:bf:92:7a:e9:1f:88:cf:ca:6e:a3:d0:6b:1b:
e0:e7:70:88:ab:f3:02:c9:87:d4:83:96:74:1f:50:64:2b:2c:
12:e2:ab:ac:99:1f:53:73:75:b0:c8:46:50:ed:7b:3a:28:9a:
c7:4a:b3:45:cf:d9:b7:10:41:cd:2a:65:51:e2:bb:6a:1d:53:
56:9e:2c:15
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgICG8IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMTA5Mjkw
MjQ2NTdaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDZCOTZDNkZDM0IwNTBC
MTA0NkY5QzQzMEQ4NzM4MTBEMTFERTJBMEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDZBcYAZWuXyo7XkiSIBtyHc5MNV2aaIG4453JkGBVChPJzKbBa
0s0ygb09q366zjazXZfiMazmKa1svTIeZ9l6pKOH9oAoLwVZdY+eaGxI2r7YaSdW
SLC+pjq2RRlzav40Wz4SEpvuiqtvAneIQZaSEBMIuTazCgs8FanIK4nzfkJNseWv
ZGWxv9Y+rK+jE5cNRr60UzKgxmbP2I2fgqpxVnVXT0ZoMXw9aXtYHz10U7fAOMQq
bWIWIm2R2mUSqYnN4Q7FvGD9C9pbMObPjNhnUmNP8VA9jruvkwlab1CGNovfb6yi
Z2tJ+V7FpEJCBkUoo3aXZnLG+UrjfYtC/vELAgMBAAGjggHvMIIB6zAdBgNVHQ4E
FgQUa5bG/DsFCxBG+cQw2HOBDRHeKg4wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2E1YkdfRHNGQ3hCRy1jUXcy
SE9CRFJIZUtnNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgABMAcDBQfT
THiAMA0GCSqGSIb3DQEBCwUAA4IBAQB9DY8CE67uIwSGGztouHqp0UIc6YzgxThk
/Px349yLiBi03jCO2T8S1QE/XQSfj787NDdzki9C6wMKPQ8KKenwBSq8oU+8SAN3
4n34rHItAW+xjUDvZHL9jI3OPitAd6j/Z2zBYHV2rSyUxucwXZm/HjDjVBfC1eom
xP3fFqxnzh1E+u3DXxgLQav+Bt1xXR+lokkNjIGF1mFeAyNeediT3AKWUJ5ZW6J5
/5Tm1KFxeSxL4nDlDgstGb+SeukfiM/KbqPQaxvg53CIq/MCyYfUg5Z0H1BkKywS
4qusmR9Tc3WwyEZQ7Xs6KJrHSrNFz9m3EEHNKmVR4rtqHVNWniwV
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:35 2023 by rpki-client on console-fra.rpki-client.org