Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/iEJbc-vH6fvYbzPlK2NlepfyFoc.roa
File: iEJbc-vH6fvYbzPlK2NlepfyFoc.roa (raw, json)
Hash identifier: IfV7ziKntm3WShVGfqnTPyJXvqMSxzhbeyivdIpawq0=
Subject key identifier: 88:42:5B:73:EB:C7:E9:FB:D8:6F:33:E5:2B:63:65:7A:97:F2:16:87
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1DD8
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/iEJbc-vH6fvYbzPlK2NlepfyFoc.roa
Signing time: Thu 09 Dec 2021 01:24:11 +0000
ROA not before: Thu 09 Dec 2021 01:24:11 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 2407:4d00::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7640 (0x1dd8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Dec 9 01:24:11 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=88425B73EBC7E9FBD86F33E52B63657A97F21687
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:c1:e3:8b:d9:3c:6a:e9:d8:64:e3:ee:89:b1:
36:bf:d2:6b:2f:7d:4a:8c:d4:fb:b3:de:b9:37:cc:
7f:14:ad:d3:6b:34:5f:3e:d3:38:93:35:43:4a:cc:
b6:60:f8:88:08:42:ad:f0:9d:e7:79:e3:74:15:c4:
13:d0:d0:40:17:1a:d5:a1:27:61:02:a1:c0:9a:80:
62:b6:a5:3f:30:c3:16:46:cd:a5:47:81:39:b7:e1:
08:a5:7c:49:da:50:51:88:18:b2:ae:77:53:54:0a:
88:0d:c0:4d:7d:94:29:4a:8e:59:f8:c3:32:c1:5a:
05:36:80:29:6c:a7:6f:4f:65:cc:a1:50:c9:11:bc:
75:75:42:c7:da:71:c6:b1:31:29:a5:bb:02:2a:c1:
16:22:c0:ca:1e:30:ac:de:70:5c:ae:0d:87:bf:bd:
f1:2b:d3:7b:50:d2:eb:5d:a2:f4:33:0d:14:18:9a:
c8:17:06:ee:50:4a:33:e8:e3:88:e1:16:09:99:f1:
a1:f7:ff:52:86:2e:ea:26:3f:51:70:a8:2f:7a:c3:
0f:0b:71:b2:2a:d9:2e:04:c0:71:d9:c4:39:b1:ec:
94:95:a0:d8:4a:26:82:d5:b6:df:3e:d5:63:22:25:
14:57:b3:24:eb:5e:fc:7d:82:44:54:a5:a3:02:13:
34:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:42:5B:73:EB:C7:E9:FB:D8:6F:33:E5:2B:63:65:7A:97:F2:16:87
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/iEJbc-vH6fvYbzPlK2NlepfyFoc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2407:4d00::/32
Signature Algorithm: sha256WithRSAEncryption
b3:99:33:dd:96:0d:38:74:c3:f4:45:c1:35:c0:71:76:d8:e2:
e7:0a:6c:09:b3:60:f7:f2:fc:02:b0:b8:40:66:af:30:be:f3:
6e:ee:01:ae:80:98:4a:a0:00:bc:01:ce:fd:14:72:80:13:58:
d4:bd:cd:b9:d2:55:5e:d4:5b:dd:0e:2d:e0:71:94:53:d8:48:
6d:17:75:4a:98:9b:42:c2:9a:34:ce:eb:04:7a:cf:1e:91:cf:
9b:d3:7a:11:09:d1:91:31:44:cb:7a:bb:88:5f:ba:a9:8c:fa:
48:0c:6c:4c:64:58:3a:2f:ab:6c:f4:35:9c:3c:7c:d4:b3:76:
7f:1b:f5:ef:0d:5d:94:9f:4b:ca:f1:d6:1b:61:aa:1e:12:08:
b0:76:90:cb:24:25:7c:cd:a0:94:65:7c:c1:14:42:65:00:68:
41:15:3e:9a:07:6b:62:53:93:39:14:5b:91:6d:ec:c4:3e:11:
ad:bd:30:85:18:e4:50:4c:0f:47:3f:09:02:cd:ab:0d:59:fe:
63:3a:6f:d9:23:66:63:cb:86:b0:90:40:f1:18:49:bc:60:90:
ab:61:29:dd:24:54:c8:29:06:c4:6d:73:87:4c:0d:b0:7d:20:
f9:5a:70:fb:e8:22:d4:68:74:76:5e:f0:90:27:66:a9:6b:f4:
9b:5d:94:7c
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgICHdgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMTEyMDkw
MTI0MTFaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDg4NDI1QjczRUJDN0U5
RkJEODZGMzNFNTJCNjM2NTdBOTdGMjE2ODcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC2weOL2Txq6dhk4+6JsTa/0msvfUqM1Puz3rk3zH8UrdNrNF8+
0ziTNUNKzLZg+IgIQq3wned543QVxBPQ0EAXGtWhJ2ECocCagGK2pT8wwxZGzaVH
gTm34QilfEnaUFGIGLKud1NUCogNwE19lClKjln4wzLBWgU2gClsp29PZcyhUMkR
vHV1QsfaccaxMSmluwIqwRYiwMoeMKzecFyuDYe/vfEr03tQ0utdovQzDRQYmsgX
Bu5QSjPo44jhFgmZ8aH3/1KGLuomP1FwqC96ww8LcbIq2S4EwHHZxDmx7JSVoNhK
JoLVtt8+1WMiJRRXsyTrXvx9gkRUpaMCEzSxAgMBAAGjggHvMIIB6zAdBgNVHQ4E
FgQUiEJbc+vH6fvYbzPlK2NlepfyFocwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2lFSmJjLXZINmZ2WWJ6UGxL
Mk5sZXBmeUZvYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAk
B00AMA0GCSqGSIb3DQEBCwUAA4IBAQCzmTPdlg04dMP0RcE1wHF22OLnCmwJs2D3
8vwCsLhAZq8wvvNu7gGugJhKoAC8Ac79FHKAE1jUvc250lVe1FvdDi3gcZRT2Eht
F3VKmJtCwpo0zusEes8ekc+b03oRCdGRMUTLeruIX7qpjPpIDGxMZFg6L6ts9DWc
PHzUs3Z/G/XvDV2Un0vK8dYbYaoeEgiwdpDLJCV8zaCUZXzBFEJlAGhBFT6aB2ti
U5M5FFuRbezEPhGtvTCFGORQTA9HPwkCzasNWf5jOm/ZI2Zjy4awkEDxGEm8YJCr
YSndJFTIKQbEbXOHTA2wfSD5WnD76CLUaHR2XvCQJ2apa/SbXZR8
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:26 2023 by rpki-client on console-ams.rpki-client.org