Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ctEE4MPSo8x-i_vFM7hzwjHMzxA.roa
File: ctEE4MPSo8x-i_vFM7hzwjHMzxA.roa (raw, json)
Hash identifier: q2K4YoljK7mQ+4eEZtwlRXnFdWw4BrV1TCo40l9x9B0=
Subject key identifier: 72:D1:04:E0:C3:D2:A3:CC:7E:8B:FB:C5:33:B8:73:C2:31:CC:CF:10
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ctEE4MPSo8x-i_vFM7hzwjHMzxA.roa
Signing time: Thu 15 Sep 2022 02:46:16 +0000
ROA not before: Thu 15 Sep 2022 02:46:16 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.194.136.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8096 (0x1fa0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:46:16 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=72D104E0C3D2A3CC7E8BFBC533B873C231CCCF10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:70:e6:e2:8b:7f:b6:91:08:bf:37:11:29:97:
00:fb:d9:a9:0a:26:20:06:99:8f:a3:e8:15:01:c9:
f0:2e:03:9d:14:26:2f:a7:64:77:b4:80:30:39:c7:
76:cd:cc:fe:87:29:8e:78:26:69:6e:8c:ee:2f:3d:
a7:6a:00:a3:1e:28:d4:66:e5:b0:46:bd:f7:cc:64:
b3:3d:46:f6:eb:54:8f:7f:12:cb:75:a8:00:52:3c:
72:b7:15:22:37:69:1c:81:ef:c5:79:ab:9f:95:ae:
d2:15:b7:e8:0e:dd:15:d5:14:d6:a3:09:5d:21:ff:
e8:a1:4a:e0:9e:0a:6d:4d:75:0a:3e:c5:7f:ca:98:
19:7f:f9:89:fe:ba:67:bd:7b:13:91:47:9c:bd:6d:
52:31:7a:c1:4a:a2:3a:8a:bc:70:1d:a3:7c:ed:81:
7c:bc:a1:05:71:ff:e6:fe:36:0b:f3:de:cb:ee:cb:
33:86:1f:4e:46:e9:02:2c:f6:d1:55:18:7b:f1:d5:
4f:0a:fc:91:31:15:6c:c7:c5:07:64:24:31:52:e4:
c2:41:24:4e:a0:33:7f:7c:4b:04:de:a6:33:94:c5:
ba:ba:d3:d6:96:91:21:1e:62:d6:22:a6:dd:ef:4d:
13:55:92:87:01:c7:b0:6c:2a:ea:d6:ab:ec:5d:eb:
76:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:D1:04:E0:C3:D2:A3:CC:7E:8B:FB:C5:33:B8:73:C2:31:CC:CF:10
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ctEE4MPSo8x-i_vFM7hzwjHMzxA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.136.0/21
Signature Algorithm: sha256WithRSAEncryption
7d:d9:84:e3:fc:7e:ef:3d:26:7f:08:21:51:3a:5d:5f:70:ba:
df:d1:d2:37:43:4d:53:dd:95:7c:8d:7c:04:66:29:f9:55:77:
ea:a6:ed:52:54:d4:10:b1:b6:01:25:a0:e3:93:28:dd:82:fa:
03:ba:da:eb:49:45:a8:b1:39:9d:4a:2e:18:5b:68:8f:2f:b6:
fd:73:e1:ff:fc:6c:62:83:cb:b2:b5:d2:ab:ac:fa:b3:ab:db:
7d:1c:5e:11:09:67:df:db:df:b9:36:11:65:e1:60:bc:cf:c5:
ba:c6:24:e1:85:de:ae:83:a0:ab:3e:02:d0:83:62:b7:07:af:
8e:19:27:dc:ee:bb:9d:67:63:a8:9a:f6:9a:f2:46:a3:cb:86:
17:a4:42:a0:99:75:84:1f:32:78:18:2f:dc:41:05:0e:3f:9d:
da:6e:f7:1e:96:6a:19:dd:6f:26:8d:a0:27:82:73:19:6a:0f:
f0:f5:fb:54:ed:6d:31:c1:fd:ee:59:e3:52:6c:06:e8:88:d7:
ee:ef:e3:b7:99:45:8a:10:34:71:da:e1:3f:df:92:e9:90:05:
2d:e0:61:b1:4b:ef:b0:a0:7f:63:f6:88:29:3b:9b:b2:b3:ef:
77:7e:c4:d8:0c:17:66:7f:a5:70:be:bd:16:b3:8a:42:68:e3:
ed:93:bd:08
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICH6AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMjA5MTUw
MjQ2MTZaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDcyRDEwNEUwQzNEMkEz
Q0M3RThCRkJDNTMzQjg3M0MyMzFDQ0NGMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCicObii3+2kQi/NxEplwD72akKJiAGmY+j6BUByfAuA50UJi+n
ZHe0gDA5x3bNzP6HKY54JmlujO4vPadqAKMeKNRm5bBGvffMZLM9RvbrVI9/Est1
qABSPHK3FSI3aRyB78V5q5+VrtIVt+gO3RXVFNajCV0h/+ihSuCeCm1NdQo+xX/K
mBl/+Yn+ume9exORR5y9bVIxesFKojqKvHAdo3ztgXy8oQVx/+b+Ngvz3svuyzOG
H05G6QIs9tFVGHvx1U8K/JExFWzHxQdkJDFS5MJBJE6gM398SwTepjOUxbq609aW
kSEeYtYipt3vTRNVkocBx7BsKurWq+xd63YRAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUctEE4MPSo8x+i/vFM7hzwjHMzxAwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2N0RUU0TVBTbzh4LWlfdkZN
N2h6d2pITXp4QS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7
wogwDQYJKoZIhvcNAQELBQADggEBAH3ZhOP8fu89Jn8IIVE6XV9wut/R0jdDTVPd
lXyNfARmKflVd+qm7VJU1BCxtgEloOOTKN2C+gO62utJRaixOZ1KLhhbaI8vtv1z
4f/8bGKDy7K10qus+rOr230cXhEJZ9/b37k2EWXhYLzPxbrGJOGF3q6DoKs+AtCD
YrcHr44ZJ9zuu51nY6ia9pryRqPLhhekQqCZdYQfMngYL9xBBQ4/ndpu9x6Wahnd
byaNoCeCcxlqD/D1+1TtbTHB/e5Z41JsBuiI1+7v47eZRYoQNHHa4T/fkumQBS3g
YbFL77Cgf2P2iCk7m7Kz73d+xNgMF2Z/pXC+vRazikJo4+2TvQg=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:36 2024 by rpki-client on console-ams.rpki-client.org