Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hZmeAB8BhwJnaWKUIgYEquAROYE.roa
File: hZmeAB8BhwJnaWKUIgYEquAROYE.roa (raw, json)
Hash identifier: mY9tYK3TPrmuYOR/XP0gyN8gGjeHf2gIwIJaV23aMpk=
Subject key identifier: 85:99:9E:00:1F:01:87:02:67:69:62:94:22:06:04:AA:E0:11:39:81
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2A26
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hZmeAB8BhwJnaWKUIgYEquAROYE.roa
Signing time: Fri 01 Sep 2023 10:07:33 +0000
ROA not before: Fri 01 Sep 2023 10:07:33 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9924
IP address blocks: 123.195.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10790 (0x2a26)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:07:33 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=85999E001F01870267696294220604AAE0113981
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:1c:0e:f8:88:44:61:59:0b:8d:3e:26:a1:2c:
89:40:91:a7:a3:8b:a6:7e:48:3a:b2:90:7d:a2:47:
9f:73:7b:50:11:5d:3c:9f:56:81:19:83:81:7a:b4:
e3:8b:62:07:b7:14:2f:ad:2b:9b:2b:94:24:8d:28:
55:2e:0a:e4:60:13:f2:c9:b7:70:42:ec:ed:58:3c:
be:b9:bb:27:8a:15:f9:6f:41:fd:9c:23:97:c4:c2:
6b:74:12:3a:51:27:f5:83:40:40:50:52:6f:71:aa:
8f:c3:46:79:55:11:25:fd:13:98:a8:f9:38:00:1f:
40:cf:28:11:a9:81:fe:16:24:f4:ce:ed:68:00:6d:
1e:2a:a3:3c:e1:f5:ad:7b:40:d8:17:fc:a9:2d:41:
1c:8d:9f:50:f7:85:97:44:f1:e0:e2:35:0b:5e:b1:
1a:ed:03:75:00:21:e7:e7:8e:a2:6f:5d:17:6f:57:
8b:28:4e:27:8b:b2:dd:b6:53:1a:8e:fe:66:03:50:
3f:27:5c:af:41:e8:07:3c:61:76:ac:de:b3:ce:34:
e2:61:40:54:20:83:01:1c:ff:37:de:96:5d:4e:fb:
b3:d7:f1:38:eb:66:be:b7:96:c7:e5:3b:be:88:3f:
04:e1:b2:81:79:5b:72:77:e6:4b:ab:a4:c8:8c:1b:
d1:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:99:9E:00:1F:01:87:02:67:69:62:94:22:06:04:AA:E0:11:39:81
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hZmeAB8BhwJnaWKUIgYEquAROYE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.0.0/16
Signature Algorithm: sha256WithRSAEncryption
5a:14:8d:73:ba:00:ff:93:c2:40:dc:07:e6:1f:82:cd:75:07:
67:95:70:19:de:31:33:93:c8:16:22:30:82:60:1e:11:44:35:
eb:89:b0:8e:45:1b:eb:83:2d:2a:59:df:0d:79:70:c3:d8:8c:
8c:27:73:28:e0:10:dd:54:63:4d:c7:d7:ac:5e:0a:d3:80:25:
47:71:86:6b:65:2c:94:31:2e:ae:50:e7:f0:26:bb:88:26:f3:
4a:9a:fb:6e:65:19:9b:ae:41:47:67:79:ee:9a:fe:5e:a5:a7:
7a:34:7a:35:ad:70:c5:6f:43:80:95:9b:80:11:10:5e:8c:84:
b4:c6:32:7e:39:97:2b:0e:f6:4f:f3:3d:a0:b3:6b:6b:6e:e6:
cc:9d:98:8d:79:85:41:81:fe:f5:c7:3e:bc:c9:0e:ad:88:4e:
2e:75:eb:e0:70:ef:dc:54:33:63:7c:15:eb:14:54:35:f6:79:
0e:1b:e9:16:3b:5b:40:1c:20:78:63:4e:61:4e:6b:76:82:ee:
46:84:5b:c8:b4:a0:26:7a:a3:35:85:85:7c:67:3d:bf:1a:d8:
b1:ab:9c:80:75:c7:27:92:a7:09:90:60:e1:bd:53:2e:53:31:
db:0b:9e:0c:08:4b:a3:6f:cc:80:3f:6c:3a:f7:1b:00:24:2b:
02:dd:e9:03
-----BEGIN CERTIFICATE-----
MIIE0TCCA7mgAwIBAgICKiYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx
MDA3MzNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDg1OTk5RTAwMUYwMTg3
MDI2NzY5NjI5NDIyMDYwNEFBRTAxMTM5ODEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC2HA74iERhWQuNPiahLIlAkaeji6Z+SDqykH2iR59ze1ARXTyf
VoEZg4F6tOOLYge3FC+tK5srlCSNKFUuCuRgE/LJt3BC7O1YPL65uyeKFflvQf2c
I5fEwmt0EjpRJ/WDQEBQUm9xqo/DRnlVESX9E5io+TgAH0DPKBGpgf4WJPTO7WgA
bR4qozzh9a17QNgX/KktQRyNn1D3hZdE8eDiNQtesRrtA3UAIefnjqJvXRdvV4so
TieLst22UxqO/mYDUD8nXK9B6Ac8YXas3rPONOJhQFQggwEc/zfell1O+7PX8Tjr
Zr63lsflO76IPwThsoF5W3J35kurpMiMG9HNAgMBAAGjggHtMIIB6TAdBgNVHQ4E
FgQUhZmeAB8BhwJnaWKUIgYEquAROYEwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2habWVBQjhCaHdKbmFXS1VJ
Z1lFcXVBUk9ZRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwB7
wzANBgkqhkiG9w0BAQsFAAOCAQEAWhSNc7oA/5PCQNwH5h+CzXUHZ5VwGd4xM5PI
FiIwgmAeEUQ164mwjkUb64MtKlnfDXlww9iMjCdzKOAQ3VRjTcfXrF4K04AlR3GG
a2UslDEurlDn8Ca7iCbzSpr7bmUZm65BR2d57pr+XqWnejR6Na1wxW9DgJWbgBEQ
XoyEtMYyfjmXKw72T/M9oLNra27mzJ2YjXmFQYH+9cc+vMkOrYhOLnXr4HDv3FQz
Y3wV6xRUNfZ5DhvpFjtbQBwgeGNOYU5rdoLuRoRbyLSgJnqjNYWFfGc9vxrYsauc
gHXHJ5KnCZBg4b1TLlMx2wueDAhLo2/MgD9sOvcbACQrAt3pAw==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:29:09 2025 by rpki-client