Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hCJXSMErmhPTh01GE7cIGSIbmX8.roa
File: hCJXSMErmhPTh01GE7cIGSIbmX8.roa (raw, json)
Hash identifier: RJ7m4bZHUly2yD71Sdgolc0ttbZ89ZMuVJEZUd6Hgps=
Subject key identifier: 84:22:57:48:C1:2B:9A:13:D3:87:4D:46:13:B7:08:19:22:1B:99:7F
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 237E
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hCJXSMErmhPTh01GE7cIGSIbmX8.roa
Signing time: Fri 16 Dec 2022 03:35:15 +0000
ROA not before: Fri 16 Dec 2022 03:35:15 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 106.1.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9086 (0x237e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Dec 16 03:35:15 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=84225748C12B9A13D3874D4613B70819221B997F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:6f:64:32:2e:41:59:5f:5a:c4:4e:93:8d:88:
2b:8f:6a:2d:1c:60:c8:d9:aa:4f:ef:f6:00:e4:7b:
ef:95:a4:18:01:7d:50:3f:61:48:70:3e:ea:83:f6:
60:d5:3f:94:07:3f:a0:f0:d6:0e:ac:35:18:ce:a7:
fa:f8:a1:ef:ab:32:28:ed:c0:bd:11:01:37:77:62:
9f:3e:c8:3d:27:d0:1e:21:e2:c5:e9:a1:06:3a:2b:
53:a6:6c:b4:87:54:5b:db:79:54:be:19:b2:e7:33:
50:a5:80:14:35:60:42:cd:ea:72:71:52:e8:81:d4:
ec:f5:4b:d1:9c:d8:0c:e5:00:48:43:ea:97:70:24:
65:0a:a1:d8:93:31:0b:80:b4:c9:e0:d4:ec:29:c7:
a6:80:ba:62:df:5e:01:53:6e:2a:3d:11:f0:63:48:
de:6c:9d:bf:38:b0:52:11:8c:ca:2f:c4:5f:7c:76:
79:10:44:ba:ed:1b:23:0a:45:6b:1c:44:62:15:a9:
df:88:cb:b5:ae:24:4c:9d:36:b9:b2:96:d2:42:76:
d0:27:2c:33:ea:56:cd:d9:ab:bd:91:17:0c:9d:6a:
b2:ec:e7:55:40:f0:42:98:0a:33:35:f0:28:d0:cf:
06:b9:90:e4:2d:58:ea:f4:62:2f:17:00:7e:21:98:
3a:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:22:57:48:C1:2B:9A:13:D3:87:4D:46:13:B7:08:19:22:1B:99:7F
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hCJXSMErmhPTh01GE7cIGSIbmX8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.0.0/16
Signature Algorithm: sha256WithRSAEncryption
a4:9c:7d:20:e0:aa:7e:1b:fc:cf:38:b4:ed:72:5d:a2:1f:43:
fb:8c:92:8f:76:aa:45:4a:51:02:81:b8:9f:2b:5b:c2:df:37:
57:ab:9f:52:92:7c:d2:bf:09:08:d8:23:1f:e5:61:e6:48:5e:
41:f8:dd:26:07:4a:fe:dd:52:26:58:27:5f:6a:62:1f:91:e7:
aa:b6:48:d9:2a:46:82:9c:29:87:6a:fc:a5:6b:35:9a:0a:2a:
e8:50:ce:e8:38:52:a0:64:71:29:9f:e4:7e:0a:d7:0c:23:5b:
40:db:60:2e:fc:38:22:1a:af:3c:b8:d5:d2:07:4c:cf:82:8a:
78:37:c6:6d:a7:fe:c5:78:a8:15:46:e3:20:cb:55:7c:7d:00:
1e:fd:ec:1e:07:ea:6e:af:91:d0:c9:2e:b3:9e:83:9d:c2:55:
1b:d5:d7:3a:29:5c:97:ad:a2:33:f5:f2:07:dc:46:6d:b9:7f:
e0:fb:94:88:37:64:b3:94:b9:de:b6:81:f5:59:c6:1d:d9:11:
5b:1d:c6:6c:f7:95:06:c9:21:b1:54:5f:2c:7d:97:e1:ea:28:
3a:d3:7b:bb:1c:b9:11:9e:51:9f:63:3b:ec:e7:ad:73:be:e8:
68:7c:3c:c7:e4:a6:e9:27:fe:77:c3:47:20:8b:04:50:b1:9f:
cf:32:2a:b9
-----BEGIN CERTIFICATE-----
MIIE0TCCA7mgAwIBAgICI34wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMjEyMTYw
MzM1MTVaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDg0MjI1NzQ4QzEyQjlB
MTNEMzg3NEQ0NjEzQjcwODE5MjIxQjk5N0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDfb2QyLkFZX1rETpONiCuPai0cYMjZqk/v9gDke++VpBgBfVA/
YUhwPuqD9mDVP5QHP6Dw1g6sNRjOp/r4oe+rMijtwL0RATd3Yp8+yD0n0B4h4sXp
oQY6K1OmbLSHVFvbeVS+GbLnM1ClgBQ1YELN6nJxUuiB1Oz1S9Gc2AzlAEhD6pdw
JGUKodiTMQuAtMng1Owpx6aAumLfXgFTbio9EfBjSN5snb84sFIRjMovxF98dnkQ
RLrtGyMKRWscRGIVqd+Iy7WuJEydNrmyltJCdtAnLDPqVs3Zq72RFwydarLs51VA
8EKYCjM18CjQzwa5kOQtWOr0Yi8XAH4hmDqJAgMBAAGjggHtMIIB6TAdBgNVHQ4E
FgQUhCJXSMErmhPTh01GE7cIGSIbmX8wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2hDSlhTTUVybWhQVGgwMUdF
N2NJR1NJYm1YOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwBq
ATANBgkqhkiG9w0BAQsFAAOCAQEApJx9IOCqfhv8zzi07XJdoh9D+4ySj3aqRUpR
AoG4nytbwt83V6ufUpJ80r8JCNgjH+Vh5kheQfjdJgdK/t1SJlgnX2piH5HnqrZI
2SpGgpwph2r8pWs1mgoq6FDO6DhSoGRxKZ/kfgrXDCNbQNtgLvw4IhqvPLjV0gdM
z4KKeDfGbaf+xXioFUbjIMtVfH0AHv3sHgfqbq+R0Mkus56DncJVG9XXOilcl62i
M/XyB9xGbbl/4PuUiDdks5S53raB9VnGHdkRWx3GbPeVBskhsVRfLH2X4eooOtN7
uxy5EZ5Rn2M77Oetc77oaHw8x+Sm6Sf+d8NHIIsEULGfzzIquQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:56 2024 by rpki-client on console-fra.rpki-client.org