Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/dcmaCCXZaN-iWD3pV1DRpLefbVs.roa
File: dcmaCCXZaN-iWD3pV1DRpLefbVs.roa (raw, json)
Hash identifier: 3mPHse1PeGSb+3ps2PG48DwUX8zdg8aaZUcg0QArcY8=
Subject key identifier: 75:C9:9A:08:25:D9:68:DF:A2:58:3D:E9:57:50:D1:A4:B7:9F:6D:5B
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2059
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/dcmaCCXZaN-iWD3pV1DRpLefbVs.roa
Signing time: Fri 25 Nov 2022 04:38:36 +0000
ROA not before: Fri 25 Nov 2022 04:38:36 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.193.8.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8281 (0x2059)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:38:36 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=75C99A0825D968DFA2583DE95750D1A4B79F6D5B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:44:d2:b5:76:16:48:7c:34:a5:6d:0e:c2:ca:
3b:3a:06:af:df:ab:da:2b:09:4c:60:5d:cd:04:46:
d9:8c:bb:2d:05:0b:58:e5:ab:0e:ef:54:b1:13:3f:
e9:55:c1:04:f1:06:a5:f9:f0:c4:03:d1:0a:b1:9c:
d9:50:49:0d:5c:d0:23:8e:5d:c2:78:6f:3b:43:e3:
df:9f:63:e7:a2:19:6a:66:27:c5:72:fc:69:68:04:
fb:70:23:23:19:52:9b:47:b8:cb:a8:3a:ca:f0:ce:
76:13:08:2a:da:b0:80:ff:7a:2f:a0:c2:d2:25:8e:
f1:59:36:69:92:e0:bb:74:f2:ce:0f:e7:13:91:ff:
65:30:be:85:53:9c:c5:f6:a0:ef:44:81:a8:01:fd:
ed:72:59:8f:07:b9:a5:9d:46:81:0a:7a:6c:ba:ee:
06:02:f4:93:e5:46:e1:a2:09:ee:96:5f:64:8f:b6:
2a:36:54:18:5c:1d:b8:68:a2:1d:93:91:3d:de:bc:
9e:88:ae:1d:e7:58:d9:78:5f:9d:e4:41:ef:d8:15:
09:e5:6e:dd:3f:0b:bf:c2:d1:c8:7b:e5:94:c6:a7:
58:50:ed:88:56:05:67:17:2f:91:fb:1c:9b:7f:ca:
4d:9a:d0:c6:10:f2:d2:b9:a7:59:a9:d8:06:fd:e0:
1a:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:C9:9A:08:25:D9:68:DF:A2:58:3D:E9:57:50:D1:A4:B7:9F:6D:5B
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/dcmaCCXZaN-iWD3pV1DRpLefbVs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.8.0/21
Signature Algorithm: sha256WithRSAEncryption
69:bf:b3:03:46:c7:06:59:4e:a9:0a:a0:17:a3:50:ca:b5:c1:
f3:cb:8f:1e:c3:bf:94:3b:c3:52:3d:77:e9:3b:f3:2f:a8:ed:
07:20:36:42:ab:f9:73:c1:0e:9c:49:2a:f4:07:2c:03:65:2c:
7d:7e:38:c8:23:55:ca:d1:7a:ed:85:df:f0:a1:5e:9a:2b:8b:
47:5a:62:2d:7c:7c:7e:19:3c:fd:5f:65:70:88:42:76:be:81:
cd:27:7c:98:84:62:df:3f:ea:1b:48:31:b0:2a:2b:f4:88:eb:
b9:dc:5f:88:9f:ab:0c:07:1f:d0:64:3b:ba:3e:a5:db:78:e0:
ec:05:27:89:98:63:89:67:c4:37:d3:d7:03:55:93:6d:44:76:
cb:5f:42:4e:2f:88:d2:01:99:3e:fa:e4:2f:58:a7:bd:f9:97:
2f:e3:60:4a:b1:72:7f:f7:69:ea:cc:9c:a4:14:57:36:7f:91:
03:85:71:af:32:29:b1:b1:83:4a:f4:53:ac:45:3e:32:93:ab:
69:b3:6c:32:39:3a:5b:1d:01:4f:fd:53:40:f3:98:92:24:e0:
b2:ca:13:8f:e0:1d:73:fb:00:68:db:58:e5:f4:60:ba:d8:38:
b3:da:cc:84:0d:0b:67:ae:46:9f:17:5c:38:cb:2c:c7:ea:89:
88:78:3b:fb
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICIFkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMjExMjUw
NDM4MzZaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDc1Qzk5QTA4MjVEOTY4
REZBMjU4M0RFOTU3NTBEMUE0Qjc5RjZENUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCtRNK1dhZIfDSlbQ7Cyjs6Bq/fq9orCUxgXc0ERtmMuy0FC1jl
qw7vVLETP+lVwQTxBqX58MQD0QqxnNlQSQ1c0COOXcJ4bztD49+fY+eiGWpmJ8Vy
/GloBPtwIyMZUptHuMuoOsrwznYTCCrasID/ei+gwtIljvFZNmmS4Lt08s4P5xOR
/2UwvoVTnMX2oO9EgagB/e1yWY8HuaWdRoEKemy67gYC9JPlRuGiCe6WX2SPtio2
VBhcHbhooh2TkT3evJ6Irh3nWNl4X53kQe/YFQnlbt0/C7/C0ch75ZTGp1hQ7YhW
BWcXL5H7HJt/yk2a0MYQ8tK5p1mp2Ab94BqVAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUdcmaCCXZaN+iWD3pV1DRpLefbVswHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2RjbWFDQ1haYU4taVdEM3BW
MURScExlZmJWcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7
wQgwDQYJKoZIhvcNAQELBQADggEBAGm/swNGxwZZTqkKoBejUMq1wfPLjx7Dv5Q7
w1I9d+k78y+o7QcgNkKr+XPBDpxJKvQHLANlLH1+OMgjVcrReu2F3/ChXpori0da
Yi18fH4ZPP1fZXCIQna+gc0nfJiEYt8/6htIMbAqK/SI67ncX4ifqwwHH9BkO7o+
pdt44OwFJ4mYY4lnxDfT1wNVk21EdstfQk4viNIBmT765C9Yp735ly/jYEqxcn/3
aerMnKQUVzZ/kQOFca8yKbGxg0r0U6xFPjKTq2mzbDI5OlsdAU/9U0DzmJIk4LLK
E4/gHXP7AGjbWOX0YLrYOLPazIQNC2euRp8XXDjLLMfqiYh4O/s=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:56 2024 by rpki-client on console-fra.rpki-client.org