Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/kdXevMglB0Lc8LBdLN3bEXTvRs8.roa
File: kdXevMglB0Lc8LBdLN3bEXTvRs8.roa (raw, json)
Hash identifier: O6z+D5fNTQ4/ha0vGQ3WL1155RRIxTl8mKyvMrV1YI4=
Subject key identifier: 91:D5:DE:BC:C8:25:07:42:DC:F0:B0:5D:2C:DD:DB:11:74:EF:46:CF
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 16E7
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/kdXevMglB0Lc8LBdLN3bEXTvRs8.roa
Signing time: Sun 07 Feb 2021 12:15:13 +0000
ROA not before: Sun 07 Feb 2021 12:15:13 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 118.232.24.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5863 (0x16e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 12:15:13 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=91D5DEBCC8250742DCF0B05D2CDDDB1174EF46CF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:5c:47:d7:9b:c5:5f:31:21:95:96:d1:41:6d:
1f:5d:96:6d:1d:01:77:c3:7f:30:49:17:23:6f:5b:
97:ed:b0:bc:23:ba:5b:ad:d2:fa:84:d3:70:2a:66:
e6:29:58:51:2b:14:68:3c:bd:75:f1:97:39:e5:97:
91:13:61:7d:81:c8:b0:38:f4:63:75:b8:9f:e3:24:
2b:da:0e:50:99:dc:d1:89:72:8b:49:22:b4:b1:0b:
55:52:18:1a:8f:ba:04:37:b8:05:fb:8b:1a:52:74:
89:94:67:6f:79:7f:01:b5:72:64:b2:4b:87:e5:de:
be:cf:ec:13:fb:31:d1:c3:26:18:b3:a1:82:9b:83:
ba:0b:d6:92:1d:b7:54:21:36:16:2d:12:5f:e3:34:
71:7e:aa:ed:56:82:d9:9e:f4:7f:41:5c:82:52:e9:
43:9e:4b:a0:b6:d8:7e:32:a8:b6:32:27:c7:e2:5d:
2f:05:f8:66:e1:f5:d4:1d:bf:1c:d6:77:7f:2a:3d:
02:7c:cd:e8:cd:e6:04:6e:2e:f5:1d:25:20:aa:e8:
14:27:f8:3c:c2:e5:56:15:c6:24:e1:7f:7e:85:0a:
4a:06:80:2a:32:a7:58:0a:9b:4f:51:e5:d3:68:4a:
3e:96:52:6f:91:cd:e0:33:4f:d3:08:36:7d:46:20:
83:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:D5:DE:BC:C8:25:07:42:DC:F0:B0:5D:2C:DD:DB:11:74:EF:46:CF
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/kdXevMglB0Lc8LBdLN3bEXTvRs8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.24.0/21
Signature Algorithm: sha256WithRSAEncryption
3d:f0:66:60:c8:f7:67:24:59:a2:bc:30:dd:24:b4:32:73:10:
3c:61:ac:f0:59:be:01:85:53:93:00:63:8b:92:4c:b2:6d:e1:
ea:e3:68:13:b0:e0:c9:67:ed:6d:af:75:37:2e:f0:8f:75:77:
5d:d2:d5:76:a1:f6:74:d1:f7:a7:b6:f0:57:e5:80:79:e3:30:
3e:c7:7d:7c:64:b7:3e:4f:69:aa:c9:4e:12:21:8a:af:64:cd:
ad:ba:8e:c7:08:9a:8d:ec:16:bf:76:2d:fe:75:54:a0:17:06:
e5:f5:f7:80:56:0f:a0:b1:9b:10:9b:42:e5:2c:18:2e:1a:e7:
3b:cc:4c:f2:a6:d6:10:da:d1:a4:d8:25:03:06:5e:d3:9a:5e:
da:04:de:7e:96:90:bd:c9:ad:19:e2:b2:1a:36:c1:a7:18:dd:
62:18:a8:de:a0:5a:80:2f:4d:ca:a0:91:6d:16:94:41:a5:ef:
8b:5d:03:bc:65:c6:7e:65:f5:f5:d6:6c:36:11:3f:7f:28:b1:
55:1b:eb:84:b8:63:43:b8:38:de:11:36:b6:fc:4b:01:7f:24:
b1:ea:28:d3:c3:4c:2f:03:68:0c:98:64:1c:a3:57:84:96:a0:
bf:ea:5d:33:23:b7:c4:28:ba:12:13:f5:5d:73:90:6e:47:41:
5c:de:2e:b0
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICFucwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMTAyMDcx
MjE1MTNaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDkxRDVERUJDQzgyNTA3
NDJEQ0YwQjA1RDJDREREQjExNzRFRjQ2Q0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDoXEfXm8VfMSGVltFBbR9dlm0dAXfDfzBJFyNvW5ftsLwjulut
0vqE03AqZuYpWFErFGg8vXXxlznll5ETYX2ByLA49GN1uJ/jJCvaDlCZ3NGJcotJ
IrSxC1VSGBqPugQ3uAX7ixpSdImUZ295fwG1cmSyS4fl3r7P7BP7MdHDJhizoYKb
g7oL1pIdt1QhNhYtEl/jNHF+qu1Wgtme9H9BXIJS6UOeS6C22H4yqLYyJ8fiXS8F
+Gbh9dQdvxzWd38qPQJ8zejN5gRuLvUdJSCq6BQn+DzC5VYVxiThf36FCkoGgCoy
p1gKm09R5dNoSj6WUm+RzeAzT9MINn1GIIN/AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUkdXevMglB0Lc8LBdLN3bEXTvRs8wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2tkWGV2TWdsQjBMYzhMQmRM
TjNiRVhUdlJzOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN2
6BgwDQYJKoZIhvcNAQELBQADggEBAD3wZmDI92ckWaK8MN0ktDJzEDxhrPBZvgGF
U5MAY4uSTLJt4erjaBOw4Mln7W2vdTcu8I91d13S1Xah9nTR96e28FflgHnjMD7H
fXxktz5PaarJThIhiq9kza26jscImo3sFr92Lf51VKAXBuX194BWD6CxmxCbQuUs
GC4a5zvMTPKm1hDa0aTYJQMGXtOaXtoE3n6WkL3JrRnisho2wacY3WIYqN6gWoAv
TcqgkW0WlEGl74tdA7xlxn5l9fXWbDYRP38osVUb64S4Y0O4ON4RNrb8SwF/JLHq
KNPDTC8DaAyYZByjV4SWoL/qXTMjt8QouhIT9V1zkG5HQVzeLrA=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:38 2023 by rpki-client on console-fra.rpki-client.org