Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/av9plkMMdnKwMu9nRnm0DttfQwU.roa
File: av9plkMMdnKwMu9nRnm0DttfQwU.roa (raw, json)
Hash identifier: s1gaa5hnJ0FstHjRL820cXO5ncG57YEuywJZkMWLZM4=
Subject key identifier: 6A:FF:69:96:43:0C:76:72:B0:32:EF:67:46:79:B4:0E:DB:5F:43:05
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1BEE
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/av9plkMMdnKwMu9nRnm0DttfQwU.roa
Signing time: Wed 29 Sep 2021 02:47:10 +0000
ROA not before: Wed 29 Sep 2021 02:47:10 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 123.195.232.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7150 (0x1bee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:47:10 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=6AFF6996430C7672B032EF674679B40EDB5F4305
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:27:dd:5f:e4:8c:24:28:7c:46:f9:18:bc:2f:
b6:e1:cc:b6:9e:ed:fd:4f:ef:19:be:01:7c:82:3a:
4e:30:d1:5b:6d:90:0a:40:66:95:72:18:19:13:00:
bb:63:0d:2f:8e:0c:7e:48:8d:57:35:93:45:3d:3c:
28:b4:f1:dd:a3:29:6c:9b:bf:8a:ee:06:62:8d:66:
20:95:34:59:3b:c8:d8:a7:7b:9f:4e:95:ac:3f:e4:
97:bc:a7:44:83:cc:31:c8:34:b3:d4:d4:d0:e1:58:
32:20:1e:b6:92:11:e6:0a:76:0a:b9:f4:18:69:3b:
f8:80:32:fe:a7:e6:09:27:ef:63:5e:90:3f:77:7e:
40:b9:1a:c5:09:68:be:f1:35:d6:d2:ba:f1:c8:2f:
94:4d:1e:2c:1b:2d:ad:44:86:44:20:99:ca:65:2c:
fd:a0:49:47:dd:36:d7:a2:4d:34:b8:69:6f:17:85:
e3:5c:23:15:2a:90:e2:de:17:61:61:b2:c2:a4:6d:
3d:94:56:98:4d:3d:04:33:f5:5d:6f:2d:3e:0b:41:
a7:89:a6:53:f7:9d:e4:5f:45:7a:27:af:5b:7a:e4:
09:ec:d0:39:cb:e4:12:41:d7:9a:e8:4f:09:35:33:
51:87:20:0a:ea:8d:f8:ac:6c:14:f0:fd:ef:b2:99:
63:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:FF:69:96:43:0C:76:72:B0:32:EF:67:46:79:B4:0E:DB:5F:43:05
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/av9plkMMdnKwMu9nRnm0DttfQwU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.232.0/22
Signature Algorithm: sha256WithRSAEncryption
67:06:23:49:d4:89:8b:76:1e:a7:46:dd:b7:f2:a3:d1:dd:be:
fa:e8:46:91:9d:0a:75:c8:e1:7d:69:0f:53:ae:2b:d6:c3:8a:
93:4f:a7:db:53:c8:89:f4:31:5c:d1:92:2c:fc:af:e3:52:ab:
44:13:ec:62:f4:72:fe:58:1e:32:c7:7d:74:f3:3d:25:97:ae:
bb:08:9b:95:4d:7b:a2:d3:97:13:28:4b:7d:fe:aa:7c:4a:14:
86:34:e6:ab:fa:93:35:6e:99:1b:bc:36:bb:89:de:c6:91:2e:
e9:00:53:df:6a:96:66:12:59:00:99:85:80:19:60:ac:44:51:
9e:df:63:ad:b0:3c:6d:34:4e:49:a1:ec:d4:73:a0:0d:13:dd:
5f:0e:3b:6b:fc:c2:c6:c7:e6:9c:48:9b:c5:1c:e0:26:12:fa:
ea:32:1b:83:39:86:cd:89:4a:86:82:e9:90:76:55:85:d5:ab:
80:84:60:f9:d3:f7:b5:79:d3:8b:f8:6e:1e:83:e6:a8:fb:4a:
f1:b2:c9:5f:57:08:13:fc:4c:a2:bd:dc:3e:45:95:2d:5d:f6:
7c:a5:59:a2:2f:5d:2c:4e:60:ff:98:4d:83:28:f1:cb:34:1d:
8f:1c:70:1c:17:b5:7b:07:ef:f2:1f:07:a5:20:98:e9:f5:4b:
ba:48:38:b7
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICG+4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMTA5Mjkw
MjQ3MTBaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDZBRkY2OTk2NDMwQzc2
NzJCMDMyRUY2NzQ2NzlCNDBFREI1RjQzMDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCuJ91f5IwkKHxG+Ri8L7bhzLae7f1P7xm+AXyCOk4w0VttkApA
ZpVyGBkTALtjDS+ODH5IjVc1k0U9PCi08d2jKWybv4ruBmKNZiCVNFk7yNine59O
law/5Je8p0SDzDHINLPU1NDhWDIgHraSEeYKdgq59BhpO/iAMv6n5gkn72NekD93
fkC5GsUJaL7xNdbSuvHIL5RNHiwbLa1EhkQgmcplLP2gSUfdNteiTTS4aW8XheNc
IxUqkOLeF2FhssKkbT2UVphNPQQz9V1vLT4LQaeJplP3neRfRXonr1t65Ans0DnL
5BJB15roTwk1M1GHIArqjfisbBTw/e+ymWNpAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUav9plkMMdnKwMu9nRnm0DttfQwUwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2F2OXBsa01NZG5Ld011OW5S
bm0wRHR0ZlF3VS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7
w+gwDQYJKoZIhvcNAQELBQADggEBAGcGI0nUiYt2HqdG3bfyo9HdvvroRpGdCnXI
4X1pD1OuK9bDipNPp9tTyIn0MVzRkiz8r+NSq0QT7GL0cv5YHjLHfXTzPSWXrrsI
m5VNe6LTlxMoS33+qnxKFIY05qv6kzVumRu8NruJ3saRLukAU99qlmYSWQCZhYAZ
YKxEUZ7fY62wPG00Tkmh7NRzoA0T3V8OO2v8wsbH5pxIm8Uc4CYS+uoyG4M5hs2J
SoaC6ZB2VYXVq4CEYPnT97V504v4bh6D5qj7SvGyyV9XCBP8TKK93D5FlS1d9nyl
WaIvXSxOYP+YTYMo8cs0HY8ccBwXtXsH7/IfB6UgmOn1S7pIOLc=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:55 2024 by rpki-client on console-fra.rpki-client.org