Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ivEchYrgzhqzQUeublPRojrU0Wg.roa
File: ivEchYrgzhqzQUeublPRojrU0Wg.roa (raw, json)
Hash identifier: sqkxEWyFve9j+aGBeyFrLiqpv/MCrP1PGbmWsDBEVsg=
Subject key identifier: 8A:F1:1C:85:8A:E0:CE:1A:B3:41:47:AE:6E:53:D1:A2:3A:D4:D1:68
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ivEchYrgzhqzQUeublPRojrU0Wg.roa
Signing time: Thu 15 Sep 2022 02:53:54 +0000
ROA not before: Thu 15 Sep 2022 02:53:54 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.195.188.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8098 (0x1fa2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:53:54 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=8AF11C858AE0CE1AB34147AE6E53D1A23AD4D168
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:a7:52:bc:b8:49:b2:c8:dd:d4:1f:e8:10:f1:
da:19:ba:8b:00:6c:42:3d:4f:dc:d7:ad:f4:08:15:
d3:ce:22:a7:23:6e:48:3b:6f:eb:8a:37:a8:cb:db:
f8:f9:09:4e:49:d4:4a:4f:7f:c8:fd:80:bf:0a:7a:
66:4d:a4:26:e0:7f:24:f1:cd:25:1b:90:45:48:38:
c7:7d:8d:d3:bd:3b:be:25:4f:98:ae:43:33:d1:ea:
ff:4d:a4:84:4d:a6:a7:f3:34:0d:e6:ea:d8:4e:eb:
49:aa:75:40:f3:f1:ad:d5:cf:d9:18:1a:82:19:1c:
67:7b:b1:f1:e9:82:ad:4e:71:c1:6a:6f:ee:2d:9a:
bb:a8:90:df:9a:ae:c0:cc:8e:c0:1e:1c:5c:8d:b1:
d7:76:b3:8b:f6:8f:60:92:fd:9f:da:91:91:4a:ad:
43:2d:ce:f6:7e:89:ff:52:e5:1b:53:0f:0a:ca:0b:
ab:61:cb:78:cc:34:47:ca:2c:c5:5b:15:09:a0:e1:
05:4c:75:05:26:b0:0e:b9:8e:7d:2b:09:14:31:aa:
23:c6:23:dd:ec:2d:9d:14:a3:11:e4:c6:fe:1b:05:
be:23:05:80:3d:63:35:d5:33:0b:f2:5f:f6:bb:29:
52:d0:68:42:8d:f7:f6:10:b8:f1:e5:f5:0f:22:c6:
95:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:F1:1C:85:8A:E0:CE:1A:B3:41:47:AE:6E:53:D1:A2:3A:D4:D1:68
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ivEchYrgzhqzQUeublPRojrU0Wg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.188.0/22
Signature Algorithm: sha256WithRSAEncryption
68:7d:ec:11:ba:2d:18:3d:f8:e0:7c:aa:a4:bc:32:8e:b8:8a:
ee:93:5f:96:ac:08:e3:78:bd:7a:33:30:bf:0e:1f:d8:d6:f1:
3b:a2:f8:80:b9:08:3c:d2:fd:7a:22:5b:ed:99:bd:ec:f0:3b:
9c:c9:ec:0e:f6:f6:fa:5b:34:9a:93:ac:8d:28:98:72:8d:fa:
1a:89:df:80:d0:98:04:3d:d0:47:50:e6:f7:fa:a6:03:f9:ef:
62:26:22:a0:8d:7a:fb:1d:a1:37:5f:96:9e:77:5b:36:7b:d1:
bc:e0:be:2c:9e:b6:1f:31:59:e3:95:e0:9f:6b:01:4e:aa:0f:
ef:84:d0:b6:64:e3:cd:4c:34:32:82:b4:7a:37:b5:ee:b7:22:
da:e2:07:45:c7:ff:57:83:68:96:fc:5b:bc:93:bc:5a:82:11:
12:6b:0f:3e:ea:a4:2b:66:5d:4a:41:89:f5:02:df:7f:e6:8b:
13:c1:db:f2:a6:b2:77:0a:0f:aa:91:d9:7c:e9:fb:43:e3:8e:
e3:7d:a1:e3:43:58:61:fa:db:dc:55:fc:cf:4a:be:63:51:3c:
f6:17:06:4a:21:14:58:52:77:e5:1f:74:8f:8f:dd:90:68:cc:
20:34:fa:81:e0:0e:b1:08:8c:e3:71:6e:94:24:fb:e8:c7:09:
72:a9:60:c4
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICH6IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMjA5MTUw
MjUzNTRaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDhBRjExQzg1OEFFMENF
MUFCMzQxNDdBRTZFNTNEMUEyM0FENEQxNjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCyp1K8uEmyyN3UH+gQ8doZuosAbEI9T9zXrfQIFdPOIqcjbkg7
b+uKN6jL2/j5CU5J1EpPf8j9gL8KemZNpCbgfyTxzSUbkEVIOMd9jdO9O74lT5iu
QzPR6v9NpIRNpqfzNA3m6thO60mqdUDz8a3Vz9kYGoIZHGd7sfHpgq1OccFqb+4t
mruokN+arsDMjsAeHFyNsdd2s4v2j2CS/Z/akZFKrUMtzvZ+if9S5RtTDwrKC6th
y3jMNEfKLMVbFQmg4QVMdQUmsA65jn0rCRQxqiPGI93sLZ0UoxHkxv4bBb4jBYA9
YzXVMwvyX/a7KVLQaEKN9/YQuPHl9Q8ixpWdAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUivEchYrgzhqzQUeublPRojrU0WgwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2l2RWNoWXJnemhxelFVZXVi
bFBSb2pyVTBXZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7
w7wwDQYJKoZIhvcNAQELBQADggEBAGh97BG6LRg9+OB8qqS8Mo64iu6TX5asCON4
vXozML8OH9jW8Tui+IC5CDzS/XoiW+2ZvezwO5zJ7A729vpbNJqTrI0omHKN+hqJ
34DQmAQ90EdQ5vf6pgP572ImIqCNevsdoTdflp53WzZ70bzgviyeth8xWeOV4J9r
AU6qD++E0LZk481MNDKCtHo3te63ItriB0XH/1eDaJb8W7yTvFqCERJrDz7qpCtm
XUpBifUC33/mixPB2/KmsncKD6qR2Xzp+0PjjuN9oeNDWGH629xV/M9KvmNRPPYX
BkohFFhSd+UfdI+P3ZBozCA0+oHgDrEIjONxbpQk++jHCXKpYMQ=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:38 2024 by rpki-client on console-ams.rpki-client.org