Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/fUlNOnpw9UWG-LYhGWFS3iUwu1U.roa
File: fUlNOnpw9UWG-LYhGWFS3iUwu1U.roa (raw, json)
Hash identifier: 156MJ+E+XexMl3pNH4hsI6z/21JQsLeBU4aBf0INn8w=
Subject key identifier: 7D:49:4D:3A:7A:70:F5:45:86:F8:B6:21:19:61:52:DE:25:30:BB:55
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 21ED
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/fUlNOnpw9UWG-LYhGWFS3iUwu1U.roa
Signing time: Fri 25 Nov 2022 04:40:33 +0000
ROA not before: Fri 25 Nov 2022 04:40:33 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 180.176.88.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8685 (0x21ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:40:33 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=7D494D3A7A70F54586F8B621196152DE2530BB55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:15:ac:ff:00:ee:79:3f:67:16:9c:6f:ba:d7:
3a:97:c0:d1:fb:8c:aa:5c:3e:e5:2a:fc:f6:0f:9e:
e2:e3:2e:32:38:ff:bc:ff:03:63:76:06:91:5e:f7:
2a:d8:e9:77:4c:95:17:c0:12:56:97:c8:b5:6c:06:
72:84:2b:20:a4:8a:17:87:60:46:4f:00:72:5c:01:
33:2b:ca:f2:14:31:a2:46:0b:85:74:5c:c5:23:a7:
bd:84:50:d9:4e:6a:bd:f4:15:2d:de:2e:3a:a8:50:
33:81:e7:a3:3a:9d:98:01:c6:62:94:1d:6a:42:17:
3d:ce:24:bb:35:ab:fe:31:af:53:14:ba:59:3e:c6:
d5:24:b5:46:23:df:e1:8e:51:0e:3a:1a:1c:ec:e9:
27:f1:0b:e5:b6:14:40:ab:f3:26:a5:2a:ad:45:d8:
77:0a:1c:14:16:e4:00:11:7d:c8:9f:2a:07:79:04:
e5:08:55:bb:05:69:1a:d5:83:a6:fc:0f:a4:70:b0:
7a:95:71:c9:7a:70:cb:1c:fe:c2:92:b4:f4:04:d5:
6c:0c:ec:e5:25:6f:cc:a4:0a:46:dd:79:cd:3c:87:
a3:08:6e:95:7f:1f:15:34:67:96:ec:d7:05:71:ff:
4d:d2:1d:bf:cb:33:4c:e1:81:88:c4:fb:fa:bc:ec:
30:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:49:4D:3A:7A:70:F5:45:86:F8:B6:21:19:61:52:DE:25:30:BB:55
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/fUlNOnpw9UWG-LYhGWFS3iUwu1U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.176.88.0/22
Signature Algorithm: sha256WithRSAEncryption
56:b7:c6:0c:f2:c8:b4:d9:85:23:1c:e5:f5:79:74:93:d4:be:
65:bc:5a:a9:51:21:1f:dc:6e:bc:91:63:03:22:21:7a:c8:06:
2c:60:23:04:ff:01:5e:0c:9f:1a:d7:b6:1a:03:95:3b:f5:5f:
d9:95:2f:59:ba:0c:a5:12:61:57:e0:7a:99:e4:d1:d6:da:1c:
64:3c:2e:47:93:fd:01:07:55:c5:8d:3d:81:f7:92:ec:b1:7b:
90:c0:43:78:9f:ff:0b:ac:49:d3:10:d4:7d:3b:09:66:f0:20:
b9:12:3f:e3:bf:6e:ff:0d:fc:65:fc:61:2f:f1:79:71:d2:11:
df:44:62:e9:66:28:b1:b0:5f:8b:c3:cd:dd:81:f2:b9:f2:53:
18:9b:41:ab:a3:a5:c4:d4:f0:b4:6c:5c:4c:2d:b6:c3:2d:0b:
ff:0e:95:f6:f3:57:9c:1f:55:be:92:ec:42:f9:49:2f:cd:9a:
01:33:dc:ba:b7:c8:0c:ec:9b:8e:c9:d2:75:bb:5a:3b:42:10:
e7:74:e8:c8:4e:f6:dd:82:8f:61:9d:3d:c4:33:90:f2:0b:e6:
ef:3b:56:eb:ac:1e:99:95:13:e3:e9:a8:19:73:cd:5c:32:fe:
ab:66:ef:69:1e:47:82:1b:1c:af:54:e1:90:31:98:c7:3f:30:
30:5b:b3:ee
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICIe0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMjExMjUw
NDQwMzNaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDdENDk0RDNBN0E3MEY1
NDU4NkY4QjYyMTE5NjE1MkRFMjUzMEJCNTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCwFaz/AO55P2cWnG+61zqXwNH7jKpcPuUq/PYPnuLjLjI4/7z/
A2N2BpFe9yrY6XdMlRfAElaXyLVsBnKEKyCkiheHYEZPAHJcATMryvIUMaJGC4V0
XMUjp72EUNlOar30FS3eLjqoUDOB56M6nZgBxmKUHWpCFz3OJLs1q/4xr1MUulk+
xtUktUYj3+GOUQ46Ghzs6SfxC+W2FECr8yalKq1F2HcKHBQW5AARfcifKgd5BOUI
VbsFaRrVg6b8D6RwsHqVccl6cMsc/sKStPQE1WwM7OUlb8ykCkbdec08h6MIbpV/
HxU0Z5bs1wVx/03SHb/LM0zhgYjE+/q87DCbAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUfUlNOnpw9UWG+LYhGWFS3iUwu1UwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2ZVbE5PbnB3OVVXRy1MWWhH
V0ZTM2lVd3UxVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAK0
sFgwDQYJKoZIhvcNAQELBQADggEBAFa3xgzyyLTZhSMc5fV5dJPUvmW8WqlRIR/c
bryRYwMiIXrIBixgIwT/AV4MnxrXthoDlTv1X9mVL1m6DKUSYVfgepnk0dbaHGQ8
LkeT/QEHVcWNPYH3kuyxe5DAQ3if/wusSdMQ1H07CWbwILkSP+O/bv8N/GX8YS/x
eXHSEd9EYulmKLGwX4vDzd2B8rnyUxibQaujpcTU8LRsXEwttsMtC/8OlfbzV5wf
Vb6S7EL5SS/NmgEz3Lq3yAzsm47J0nW7WjtCEOd06MhO9t2Cj2GdPcQzkPIL5u87
VuusHpmVE+PpqBlzzVwy/qtm72keR4IbHK9U4ZAxmMc/MDBbs+4=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:56 2024 by rpki-client on console-fra.rpki-client.org