Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/cfODe2NWu54ilQFoEWgZHakSLHQ.roa
File: cfODe2NWu54ilQFoEWgZHakSLHQ.roa (raw, json)
Hash identifier: uBXpIQzppcSnTvZv/gmumfAF7ZQ7393ClefCgNt0FO4=
Subject key identifier: 71:F3:83:7B:63:56:BB:9E:22:95:01:68:11:68:19:1D:A9:12:2C:74
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1082
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/cfODe2NWu54ilQFoEWgZHakSLHQ.roa
Signing time: Mon 16 Nov 2020 01:51:23 +0000
ROA not before: Mon 16 Nov 2020 01:51:23 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 118.233.200.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4226 (0x1082)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 16 01:51:23 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=71F3837B6356BB9E229501681168191DA9122C74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:39:da:af:d0:06:55:79:1f:10:80:ae:1f:bd:
fc:50:fa:b8:fb:d8:20:d3:d8:81:f0:5b:4c:dd:95:
e1:db:5e:d1:18:fd:7f:25:e4:a7:ac:e1:71:78:27:
70:f0:c3:2f:28:ae:5b:ac:46:12:e2:da:50:e6:f0:
4e:3a:15:2c:46:75:aa:26:f3:12:6a:0f:11:41:7a:
6b:f3:11:d8:92:94:12:70:f5:bd:3e:51:35:10:cd:
3d:9e:46:4e:c2:b6:04:ec:c6:24:ec:e6:22:9b:24:
09:d5:e9:b7:e7:6b:c8:00:de:a9:9a:af:47:97:84:
d4:b5:15:49:ac:20:9b:df:72:0f:02:2a:ef:f0:f7:
3f:1d:6f:08:07:36:2e:a1:17:fb:c8:bd:29:65:f0:
82:6a:64:8e:6c:cb:22:1c:1f:8b:29:01:cb:b1:62:
41:86:6c:fc:e1:41:2b:31:5e:1b:08:af:b9:17:6b:
b3:cb:27:89:3d:c9:f9:8f:ec:04:d5:f8:82:d9:63:
0c:db:c8:d1:8f:f5:a4:20:a9:2b:13:3e:2e:51:40:
e0:7b:65:10:d5:44:8a:f1:d3:28:62:a9:a3:81:dc:
6b:dc:dc:7a:e7:b7:e3:7c:fa:92:2c:32:56:7b:8e:
e6:10:5c:07:f5:a5:23:5d:8d:b6:4d:eb:72:f4:74:
a2:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:F3:83:7B:63:56:BB:9E:22:95:01:68:11:68:19:1D:A9:12:2C:74
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/cfODe2NWu54ilQFoEWgZHakSLHQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.200.0/21
Signature Algorithm: sha256WithRSAEncryption
3c:56:c7:21:3c:5b:35:08:37:92:b2:3c:f8:74:bd:19:2c:c6:
81:76:39:ae:6d:6a:82:64:45:88:b2:1a:75:75:f1:96:c3:f4:
bf:ce:64:a0:25:4c:15:c9:17:75:26:fb:0a:d8:f5:ca:5c:18:
db:cc:44:56:51:f4:22:ad:16:48:b0:8f:56:04:2d:5b:92:fe:
a1:ff:64:c1:ce:76:3c:c0:9f:2b:b3:8f:95:94:2c:36:40:18:
ba:e4:b3:c6:44:d9:89:72:21:15:aa:15:2d:22:cc:1a:69:82:
66:eb:06:c1:0b:81:9a:7d:7f:0a:e5:ee:7f:ff:d2:a7:37:4a:
0c:24:35:ce:aa:ae:61:06:5f:64:53:35:16:de:01:93:31:b2:
c0:b1:5d:f9:93:ab:56:dc:b8:d6:c9:bf:25:d5:51:b0:98:20:
45:8e:2c:7c:c9:b6:ee:73:72:79:27:ae:5e:04:d8:fa:fa:25:
5d:fa:fd:4a:1a:97:00:e3:a4:d0:8a:37:d2:ab:ac:ff:9e:49:
7c:cf:eb:3c:c9:82:8b:4c:67:42:d2:c8:76:8b:bf:a6:d8:11:
1f:0f:74:a8:4d:b7:08:15:ba:84:c4:90:bc:69:86:a0:70:f4:
d0:16:40:f0:66:b1:37:bb:a2:c8:32:d7:37:92:83:03:6a:08:
15:a2:be:c6
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICEIIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMDExMTYw
MTUxMjNaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDcxRjM4MzdCNjM1NkJC
OUUyMjk1MDE2ODExNjgxOTFEQTkxMjJDNzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC0Odqv0AZVeR8QgK4fvfxQ+rj72CDT2IHwW0zdleHbXtEY/X8l
5Kes4XF4J3Dwwy8orlusRhLi2lDm8E46FSxGdaom8xJqDxFBemvzEdiSlBJw9b0+
UTUQzT2eRk7CtgTsxiTs5iKbJAnV6bfna8gA3qmar0eXhNS1FUmsIJvfcg8CKu/w
9z8dbwgHNi6hF/vIvSll8IJqZI5syyIcH4spAcuxYkGGbPzhQSsxXhsIr7kXa7PL
J4k9yfmP7ATV+ILZYwzbyNGP9aQgqSsTPi5RQOB7ZRDVRIrx0yhiqaOB3Gvc3Hrn
t+N8+pIsMlZ7juYQXAf1pSNdjbZN63L0dKI9AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUcfODe2NWu54ilQFoEWgZHakSLHQwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2NmT0RlMk5XdTU0aWxRRm9F
V2daSGFrU0xIUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN2
6cgwDQYJKoZIhvcNAQELBQADggEBADxWxyE8WzUIN5KyPPh0vRksxoF2Oa5taoJk
RYiyGnV18ZbD9L/OZKAlTBXJF3Um+wrY9cpcGNvMRFZR9CKtFkiwj1YELVuS/qH/
ZMHOdjzAnyuzj5WULDZAGLrks8ZE2YlyIRWqFS0izBppgmbrBsELgZp9fwrl7n//
0qc3SgwkNc6qrmEGX2RTNRbeAZMxssCxXfmTq1bcuNbJvyXVUbCYIEWOLHzJtu5z
cnknrl4E2Pr6JV36/UoalwDjpNCKN9KrrP+eSXzP6zzJgotMZ0LSyHaLv6bYER8P
dKhNtwgVuoTEkLxphqBw9NAWQPBmsTe7osgy1zeSgwNqCBWivsY=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:55 2024 by rpki-client on console-fra.rpki-client.org