Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hBM1OX_rxg3jcNbtcYYTa1DXeRE.roa
File: hBM1OX_rxg3jcNbtcYYTa1DXeRE.roa (raw, json)
Hash identifier: zH14hhiwKKzHoOoY2SvDlLe0sAzk+NzYALm5BCMjsrU=
Subject key identifier: 84:13:35:39:7F:EB:C6:0D:E3:70:D6:ED:71:86:13:6B:50:D7:79:11
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1B18
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hBM1OX_rxg3jcNbtcYYTa1DXeRE.roa
Signing time: Wed 29 Sep 2021 02:46:08 +0000
ROA not before: Wed 29 Sep 2021 02:46:08 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 106.1.150.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6936 (0x1b18)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:46:08 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=841335397FEBC60DE370D6ED7186136B50D77911
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:4e:04:07:71:69:8f:50:72:8a:72:63:cf:8e:
85:72:f6:5f:aa:b7:37:98:ac:95:c3:e4:ed:03:dd:
20:1c:ac:e2:0b:86:e5:03:c4:9e:64:1a:40:e7:25:
c0:bb:da:87:42:0b:d7:22:62:33:fd:37:a5:50:0d:
40:22:be:d0:af:41:a6:d4:5d:b9:e9:1a:2b:f6:b7:
6a:7c:88:44:d1:50:7e:9f:cd:a5:b2:16:59:9d:92:
22:2a:f7:83:c9:7c:3e:80:42:7f:d8:2d:73:39:04:
97:48:19:6c:b8:b3:c8:9e:fd:d3:87:9d:fd:69:74:
81:b9:cd:bf:8c:3c:7b:7e:56:12:bc:ca:db:24:4d:
d0:a6:cc:54:ca:7d:68:a1:88:78:b9:17:52:d4:f9:
5b:14:dc:73:3a:cc:c8:9b:dc:7e:4a:26:a8:9f:ef:
90:2e:fd:a9:d6:91:c1:2b:20:6b:62:1b:70:f5:56:
22:fd:1a:1b:7a:83:40:86:e0:34:24:0e:99:85:91:
20:8a:b5:c8:bd:98:6e:89:bd:3d:40:18:2f:31:0e:
37:75:ca:9e:bc:a2:86:84:18:cf:de:88:28:47:61:
f1:4d:ac:9f:20:0e:c0:ad:c1:64:86:da:6b:4b:1a:
1a:43:7f:bb:d6:a2:0a:10:43:06:ed:8b:c8:af:1c:
98:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:13:35:39:7F:EB:C6:0D:E3:70:D6:ED:71:86:13:6B:50:D7:79:11
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hBM1OX_rxg3jcNbtcYYTa1DXeRE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.150.0/24
Signature Algorithm: sha256WithRSAEncryption
06:24:3e:83:3c:2d:71:be:57:54:e0:67:e2:e7:b9:76:df:ac:
0d:4b:38:f7:9c:e1:7b:0d:fa:58:e6:58:86:24:8b:02:d6:d7:
39:43:5d:5d:60:c2:cd:c3:2f:d2:65:40:76:ec:3f:05:68:77:
ff:24:07:a2:ca:94:52:d3:14:20:d2:24:a4:e7:26:04:36:e8:
a9:aa:21:1a:b5:50:08:4b:07:06:8f:90:a6:19:36:a6:32:b9:
57:9f:33:8a:75:b3:06:82:c8:2a:7e:68:38:f7:4e:c8:77:e1:
35:d8:46:25:f6:23:e1:dc:f7:fc:69:d3:d5:dc:ec:e6:ab:75:
f3:97:21:32:c5:ee:63:a5:f9:de:91:3d:c1:cf:40:92:c1:1c:
1a:27:a3:87:33:a8:3c:f5:2e:b5:80:25:d0:a3:3f:d0:55:0a:
ab:3d:5b:b9:ee:ea:8e:23:63:2d:84:f7:6d:d9:e6:a7:78:a0:
a7:c2:33:2f:30:97:1c:45:c9:6b:55:a7:68:b9:60:49:55:cd:
15:c8:8a:d9:dd:0b:b1:1a:d6:3d:c5:d5:cb:69:96:88:e5:52:
03:21:dd:da:e8:f0:69:6f:ae:f3:3e:45:b6:d1:0c:d5:bf:c7:
b4:cd:cc:15:27:c7:cf:96:9c:a0:ac:84:d7:f9:ad:2c:33:51:
b7:55:13:36
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICGxgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMTA5Mjkw
MjQ2MDhaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDg0MTMzNTM5N0ZFQkM2
MERFMzcwRDZFRDcxODYxMzZCNTBENzc5MTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC6TgQHcWmPUHKKcmPPjoVy9l+qtzeYrJXD5O0D3SAcrOILhuUD
xJ5kGkDnJcC72odCC9ciYjP9N6VQDUAivtCvQabUXbnpGiv2t2p8iETRUH6fzaWy
FlmdkiIq94PJfD6AQn/YLXM5BJdIGWy4s8ie/dOHnf1pdIG5zb+MPHt+VhK8ytsk
TdCmzFTKfWihiHi5F1LU+VsU3HM6zMib3H5KJqif75Au/anWkcErIGtiG3D1ViL9
Ght6g0CG4DQkDpmFkSCKtci9mG6JvT1AGC8xDjd1yp68ooaEGM/eiChHYfFNrJ8g
DsCtwWSG2mtLGhpDf7vWogoQQwbti8ivHJj9AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUhBM1OX/rxg3jcNbtcYYTa1DXeREwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2hCTTFPWF9yeGczamNOYnRj
WVlUYTFEWGVSRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABq
AZYwDQYJKoZIhvcNAQELBQADggEBAAYkPoM8LXG+V1TgZ+LnuXbfrA1LOPec4XsN
+ljmWIYkiwLW1zlDXV1gws3DL9JlQHbsPwVod/8kB6LKlFLTFCDSJKTnJgQ26Kmq
IRq1UAhLBwaPkKYZNqYyuVefM4p1swaCyCp+aDj3Tsh34TXYRiX2I+Hc9/xp09Xc
7OardfOXITLF7mOl+d6RPcHPQJLBHBono4czqDz1LrWAJdCjP9BVCqs9W7nu6o4j
Yy2E923Z5qd4oKfCMy8wlxxFyWtVp2i5YElVzRXIitndC7Ea1j3F1ctplojlUgMh
3dro8GlvrvM+RbbRDNW/x7TNzBUnx8+WnKCshNf5rSwzUbdVEzY=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:25 2023 by rpki-client on console-ams.rpki-client.org