Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/i38paBkac2idMfR_5bjpWLI1XhU.roa
File: i38paBkac2idMfR_5bjpWLI1XhU.roa (raw, json)
Hash identifier: vLyIJOGnzqoJnpWM7pHPspK1ySn1FCXSreOyQ+Z6vy8=
Subject key identifier: 8B:7F:29:68:19:1A:73:68:9D:31:F4:7F:E5:B8:E9:58:B2:35:5E:15
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2402
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/i38paBkac2idMfR_5bjpWLI1XhU.roa
Signing time: Tue 06 Jun 2023 08:07:53 +0000
ROA not before: Tue 06 Jun 2023 08:07:53 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 45.64.28.0/22 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9218 (0x2402)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Jun 6 08:07:53 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=8B7F2968191A73689D31F47FE5B8E958B2355E15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:8f:ac:a8:db:60:dc:e6:ec:70:2b:58:1e:20:
5c:4a:20:2b:3c:ee:8c:a0:db:b2:ba:b0:ba:4a:b1:
52:35:52:66:25:3b:da:d7:43:3d:49:c7:a1:2a:0e:
5e:76:69:b1:35:da:91:cb:fb:70:4e:e1:b5:f4:3c:
7e:86:51:e9:07:1e:15:b6:bc:1a:09:89:42:4e:7d:
12:e1:96:19:6d:0a:73:2b:5b:08:4b:c3:ce:11:fc:
52:13:cd:81:60:9b:89:cc:21:07:26:1e:91:25:58:
1e:96:a5:e0:de:5f:c9:1f:3f:5b:f0:9d:a2:9a:c4:
56:8c:ff:2a:69:79:ad:ec:a1:e3:c5:0e:d7:e5:b5:
b2:3c:54:03:2f:e0:db:e7:9e:65:c7:a6:53:91:b2:
78:9f:fe:57:53:0f:a2:41:30:5b:42:cd:5c:ae:55:
a2:e9:bf:bf:64:0e:5e:7a:e1:da:54:32:d6:b7:69:
68:78:c7:ce:f4:b2:23:74:fc:70:36:e3:8a:e2:3d:
1c:08:2a:27:d1:63:a4:22:da:51:bd:cd:9f:9d:5e:
71:e8:dd:90:39:1f:4c:45:4b:95:3a:c7:f3:b7:f5:
95:28:98:58:4b:77:26:ad:2a:76:f1:3c:ed:f0:f0:
b0:c9:ce:c4:ef:4f:fb:22:c6:a4:d2:1d:6f:b8:90:
6e:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:7F:29:68:19:1A:73:68:9D:31:F4:7F:E5:B8:E9:58:B2:35:5E:15
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/i38paBkac2idMfR_5bjpWLI1XhU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
45.64.28.0/22
Signature Algorithm: sha256WithRSAEncryption
65:d8:58:51:b2:c3:9a:74:69:2a:53:91:bd:32:3d:9d:1b:47:
e4:cd:f9:d5:0b:66:34:94:c1:f1:84:aa:94:51:07:2c:a2:f5:
a8:fe:48:0f:0c:3e:ce:a0:ab:5f:a7:be:e5:f3:d0:1d:fe:5a:
19:84:17:35:05:a0:26:19:af:06:02:bb:d4:62:38:ae:ce:ed:
b9:da:8a:7b:03:17:d1:3d:33:e9:f7:7d:8e:1f:2e:b3:48:00:
57:ba:94:a7:e4:28:ee:32:c8:65:38:84:ea:83:dc:9c:93:12:
2f:d1:fb:68:81:85:52:74:28:a4:a7:7b:0d:c1:23:fd:34:51:
70:00:a2:07:67:35:26:be:92:8b:f7:0a:cb:14:eb:0a:e7:8e:
d1:d6:b0:a3:7c:8e:9a:3f:d7:3e:67:09:bc:f8:14:ac:a0:0b:
06:a7:09:68:12:d2:9d:4c:e6:36:fd:07:8c:cf:43:0e:a0:96:
a0:ff:3a:d6:89:9b:50:a5:03:e8:8b:aa:cf:d7:17:a0:a4:ff:
3a:50:38:9c:95:27:7e:7c:c7:74:2c:24:d6:57:b5:03:0c:25:
7a:a6:f2:fa:3b:53:ad:ad:ae:51:7f:de:ed:cc:52:cf:e2:bf:
61:af:80:d7:f3:fe:f0:d6:a4:ed:bb:84:70:3b:15:f3:13:13:
e2:f4:cb:18
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICJAIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA2MDYw
ODA3NTNaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDhCN0YyOTY4MTkxQTcz
Njg5RDMxRjQ3RkU1QjhFOTU4QjIzNTVFMTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCzj6yo22Dc5uxwK1geIFxKICs87oyg27K6sLpKsVI1UmYlO9rX
Qz1Jx6EqDl52abE12pHL+3BO4bX0PH6GUekHHhW2vBoJiUJOfRLhlhltCnMrWwhL
w84R/FITzYFgm4nMIQcmHpElWB6WpeDeX8kfP1vwnaKaxFaM/yppea3soePFDtfl
tbI8VAMv4NvnnmXHplORsnif/ldTD6JBMFtCzVyuVaLpv79kDl564dpUMta3aWh4
x870siN0/HA244riPRwIKifRY6Qi2lG9zZ+dXnHo3ZA5H0xFS5U6x/O39ZUomFhL
dyatKnbxPO3w8LDJzsTvT/sixqTSHW+4kG4dAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUi38paBkac2idMfR/5bjpWLI1XhUwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2kzOHBhQmthYzJpZE1mUl81
YmpwV0xJMVhoVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIt
QBwwDQYJKoZIhvcNAQELBQADggEBAGXYWFGyw5p0aSpTkb0yPZ0bR+TN+dULZjSU
wfGEqpRRByyi9aj+SA8MPs6gq1+nvuXz0B3+WhmEFzUFoCYZrwYCu9RiOK7O7bna
insDF9E9M+n3fY4fLrNIAFe6lKfkKO4yyGU4hOqD3JyTEi/R+2iBhVJ0KKSnew3B
I/00UXAAogdnNSa+kov3CssU6wrnjtHWsKN8jpo/1z5nCbz4FKygCwanCWgS0p1M
5jb9B4zPQw6glqD/OtaJm1ClA+iLqs/XF6Ck/zpQOJyVJ358x3QsJNZXtQMMJXqm
8vo7U62trlF/3u3MUs/iv2GvgNfz/vDWpO27hHA7FfMTE+L0yxg=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:37 2024 by rpki-client on console-ams.rpki-client.org