Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/galyP1XmTvKkFj29GPxeo-NyT3k.roa
File: galyP1XmTvKkFj29GPxeo-NyT3k.roa (raw, json)
Hash identifier: z3HStxRVaq7npL/wpJ2J6/tWwakVusGjLMob+wu11Wc=
Subject key identifier: 81:A9:72:3F:55:E6:4E:F2:A4:16:3D:BD:18:FC:5E:A3:E3:72:4F:79
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 0F6C
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/galyP1XmTvKkFj29GPxeo-NyT3k.roa
Signing time: Tue 29 Sep 2020 09:56:55 +0000
ROA not before: Tue 29 Sep 2020 09:56:55 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 180.177.140.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3948 (0xf6c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 09:56:55 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=81A9723F55E64EF2A4163DBD18FC5EA3E3724F79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:4d:15:64:17:b8:10:75:d3:e1:3a:e9:a9:15:
9e:50:44:90:56:0b:1f:e9:dc:66:a0:7a:67:68:2a:
3c:ad:b5:fc:2b:b9:be:db:04:bb:c6:cb:a6:72:24:
d6:34:d2:89:46:3c:f7:6a:be:45:8b:aa:ac:b8:0f:
54:0d:87:ba:61:9b:8f:f4:57:84:35:a1:26:fa:4e:
d3:00:6d:30:93:2e:41:4a:d2:6e:ad:15:ee:92:e5:
31:5f:a3:74:df:8a:cb:97:84:81:da:15:89:fe:4b:
87:eb:0e:1e:6f:b4:7b:52:89:8c:19:f5:bb:4b:90:
0c:0b:7a:6e:14:37:03:81:c3:88:03:1c:98:74:42:
66:81:8a:b9:d3:b0:df:a3:57:85:4a:c9:6e:58:fa:
c1:ba:da:e5:61:b1:8b:25:f5:e5:d4:97:a5:d1:78:
d0:59:90:2a:54:ab:7e:7d:ff:14:b6:ba:b2:23:d0:
74:1b:16:18:a3:03:6a:08:d3:fb:b9:d6:9f:9e:37:
fe:4a:f7:62:9b:9b:58:55:47:d2:2a:9f:1b:d8:63:
d1:4d:5b:bb:f9:49:1b:7a:b6:5f:8a:c2:16:2a:e8:
a4:4f:0e:e2:b3:39:c3:e4:cb:96:17:15:69:a4:8a:
36:d5:2a:a9:11:f6:39:0f:b1:89:a4:00:0b:68:31:
15:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:A9:72:3F:55:E6:4E:F2:A4:16:3D:BD:18:FC:5E:A3:E3:72:4F:79
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/galyP1XmTvKkFj29GPxeo-NyT3k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.177.140.0/22
Signature Algorithm: sha256WithRSAEncryption
9e:e0:1d:5a:41:67:58:69:6e:5d:d1:94:83:81:32:24:5a:ea:
fd:cb:81:57:5b:99:b6:0c:35:21:09:2f:28:73:f6:92:d7:cb:
73:05:d2:37:1b:b0:d4:c9:e0:4d:09:cb:08:41:cc:bf:87:35:
b1:b7:69:02:63:49:e2:69:23:1d:fb:bd:24:1f:b9:46:2b:5b:
71:47:10:da:c3:a1:cd:33:32:3d:90:9b:1a:0f:94:0d:e5:87:
15:18:9b:ce:85:7e:ee:44:f9:5c:da:74:65:1d:57:6a:5e:d4:
8a:4c:66:5e:c0:d4:22:0f:85:16:2b:d2:6b:95:50:35:35:50:
26:ac:fc:1c:55:e8:37:fd:75:76:ea:23:06:c8:d4:f8:05:ea:
2f:ee:67:d3:c1:e6:16:e7:c8:e0:44:dd:fc:7a:43:79:93:b7:
55:fd:b0:cc:4b:d2:bc:ef:7f:ff:43:29:5c:0b:fb:44:b0:d4:
1a:61:13:6d:95:fb:50:9c:2c:fe:47:02:6e:b5:0f:6a:c8:6b:
00:1e:7d:74:eb:09:aa:ae:8e:ac:e3:7f:a4:f8:83:cb:ab:08:
bc:67:94:0f:35:73:89:4b:75:fe:ce:35:82:a7:65:c6:67:20:
80:20:0c:ab:c6:ac:9f:a0:69:d8:a1:3f:a7:c4:65:35:59:61:
a2:b5:2b:0f
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICD2wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMDA5Mjkw
OTU2NTVaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDgxQTk3MjNGNTVFNjRF
RjJBNDE2M0RCRDE4RkM1RUEzRTM3MjRGNzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC8TRVkF7gQddPhOumpFZ5QRJBWCx/p3GagemdoKjyttfwrub7b
BLvGy6ZyJNY00olGPPdqvkWLqqy4D1QNh7phm4/0V4Q1oSb6TtMAbTCTLkFK0m6t
Fe6S5TFfo3TfisuXhIHaFYn+S4frDh5vtHtSiYwZ9btLkAwLem4UNwOBw4gDHJh0
QmaBirnTsN+jV4VKyW5Y+sG62uVhsYsl9eXUl6XReNBZkCpUq359/xS2urIj0HQb
FhijA2oI0/u51p+eN/5K92Kbm1hVR9IqnxvYY9FNW7v5SRt6tl+KwhYq6KRPDuKz
OcPky5YXFWmkijbVKqkR9jkPsYmkAAtoMRXVAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUgalyP1XmTvKkFj29GPxeo+NyT3kwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2dhbHlQMVhtVHZLa0ZqMjlH
UHhlby1OeVQzay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAK0
sYwwDQYJKoZIhvcNAQELBQADggEBAJ7gHVpBZ1hpbl3RlIOBMiRa6v3LgVdbmbYM
NSEJLyhz9pLXy3MF0jcbsNTJ4E0JywhBzL+HNbG3aQJjSeJpIx37vSQfuUYrW3FH
ENrDoc0zMj2QmxoPlA3lhxUYm86Ffu5E+VzadGUdV2pe1IpMZl7A1CIPhRYr0muV
UDU1UCas/BxV6Df9dXbqIwbI1PgF6i/uZ9PB5hbnyOBE3fx6Q3mTt1X9sMxL0rzv
f/9DKVwL+0Sw1BphE22V+1CcLP5HAm61D2rIawAefXTrCaqujqzjf6T4g8urCLxn
lA81c4lLdf7ONYKnZcZnIIAgDKvGrJ+gadihP6fEZTVZYaK1Kw8=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:25 2023 by rpki-client on console-ams.rpki-client.org