Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ky48JXOw4CxHWiTRZR8cB0FsEdc.roa
File: ky48JXOw4CxHWiTRZR8cB0FsEdc.roa (raw, json)
Hash identifier: mfzod/EHNFgwReYnIAF/aChX7ToRlDn8VtUn/gebGRc=
Subject key identifier: 93:2E:3C:25:73:B0:E0:2C:47:5A:24:D1:65:1F:1C:07:41:6C:11:D7
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1D68
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ky48JXOw4CxHWiTRZR8cB0FsEdc.roa
Signing time: Wed 29 Sep 2021 02:48:59 +0000
ROA not before: Wed 29 Sep 2021 02:48:59 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 118.232.244.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7528 (0x1d68)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:48:59 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=932E3C2573B0E02C475A24D1651F1C07416C11D7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:91:7d:90:a9:4f:ce:b9:12:fb:1a:45:0c:91:
72:ae:0c:f3:d4:e9:32:fa:94:92:de:45:da:8f:50:
9d:1a:73:6f:eb:4e:2b:27:37:3f:ee:55:b8:7d:90:
36:e5:5b:40:cf:86:0a:41:f8:66:bb:ba:a7:cc:5f:
17:a9:0f:94:97:13:16:b1:36:81:34:07:80:5d:50:
d9:8c:a1:8a:12:49:ef:18:88:04:f4:5d:c1:d4:d7:
26:13:ec:c0:c9:5f:4f:c0:5f:d0:bd:d3:a0:34:98:
11:6e:72:e1:ee:07:5a:bb:18:ae:7d:3c:28:6a:c7:
3b:31:6f:f1:9a:7d:81:e9:90:b6:6b:d5:08:45:84:
bf:80:0b:ad:3f:80:21:b7:8f:f9:d6:af:2a:73:25:
7c:6f:c5:23:8f:29:86:1d:10:4e:c4:df:75:7b:44:
a0:e2:e8:81:f2:27:b6:ad:1d:ff:28:c4:30:e4:81:
2a:08:d5:0b:a8:9f:51:47:cc:92:98:b1:12:6e:00:
57:5c:bf:df:b0:ef:b0:e1:6e:80:5f:6c:de:dd:58:
30:27:be:17:b3:11:3c:54:64:b2:87:00:b1:59:99:
a8:04:54:c0:a1:a0:b3:11:1e:d4:e5:24:77:63:fb:
a7:9d:96:d5:c7:1e:4b:ae:13:f5:9e:71:61:11:9b:
03:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:2E:3C:25:73:B0:E0:2C:47:5A:24:D1:65:1F:1C:07:41:6C:11:D7
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ky48JXOw4CxHWiTRZR8cB0FsEdc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.244.0/22
Signature Algorithm: sha256WithRSAEncryption
7b:cf:f8:1d:4e:8c:9f:32:c5:d1:98:ac:6e:c5:af:2c:45:6d:
31:99:f9:5c:11:2a:a0:c5:70:4d:5f:20:42:f2:ac:6f:83:74:
e7:b0:5f:b9:dd:f6:2c:56:53:87:3f:50:f2:c7:c4:52:40:94:
90:e9:bd:d5:fa:a5:a0:4d:6d:c8:26:12:72:e7:a2:60:c7:1d:
17:7a:4b:e2:4b:cd:95:fa:6a:5c:61:9b:90:58:7a:df:ee:62:
b4:7a:71:6a:7f:28:b8:4d:3d:72:e0:4b:bd:2f:17:32:3f:66:
94:2f:f2:c0:85:42:71:d2:02:35:aa:a6:07:a0:bb:2a:3f:d8:
71:47:33:a6:b0:7e:39:e1:ce:eb:50:ea:15:a6:99:95:db:63:
63:92:bf:45:ad:14:37:06:e1:8b:62:c4:7f:dc:08:aa:05:82:
49:35:13:8d:e9:0d:b1:11:2b:8d:a9:c6:4e:c6:95:71:43:1c:
af:55:93:53:b8:5c:77:5d:9c:7d:5e:1a:a2:85:29:fe:bd:20:
68:d3:20:03:06:10:f0:9a:11:a0:4d:7b:52:88:1f:72:b7:83:
c8:30:a6:f1:3f:c8:2a:18:b5:9b:f7:e6:17:d8:90:25:1e:8f:
c9:a8:77:76:5d:bc:0f:eb:f4:11:02:2d:d2:ff:8d:d6:a6:84:
81:a1:e3:47
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICHWgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMTA5Mjkw
MjQ4NTlaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDkzMkUzQzI1NzNCMEUw
MkM0NzVBMjREMTY1MUYxQzA3NDE2QzExRDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDikX2QqU/OuRL7GkUMkXKuDPPU6TL6lJLeRdqPUJ0ac2/rTisn
Nz/uVbh9kDblW0DPhgpB+Ga7uqfMXxepD5SXExaxNoE0B4BdUNmMoYoSSe8YiAT0
XcHU1yYT7MDJX0/AX9C906A0mBFucuHuB1q7GK59PChqxzsxb/GafYHpkLZr1QhF
hL+AC60/gCG3j/nWrypzJXxvxSOPKYYdEE7E33V7RKDi6IHyJ7atHf8oxDDkgSoI
1Quon1FHzJKYsRJuAFdcv9+w77DhboBfbN7dWDAnvhezETxUZLKHALFZmagEVMCh
oLMRHtTlJHdj+6edltXHHkuuE/WecWERmwOzAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUky48JXOw4CxHWiTRZR8cB0FsEdcwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2t5NDhKWE93NEN4SFdpVFJa
UjhjQjBGc0VkYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2
6PQwDQYJKoZIhvcNAQELBQADggEBAHvP+B1OjJ8yxdGYrG7FryxFbTGZ+VwRKqDF
cE1fIELyrG+DdOewX7nd9ixWU4c/UPLHxFJAlJDpvdX6paBNbcgmEnLnomDHHRd6
S+JLzZX6alxhm5BYet/uYrR6cWp/KLhNPXLgS70vFzI/ZpQv8sCFQnHSAjWqpgeg
uyo/2HFHM6awfjnhzutQ6hWmmZXbY2OSv0WtFDcG4YtixH/cCKoFgkk1E43pDbER
K42pxk7GlXFDHK9Vk1O4XHddnH1eGqKFKf69IGjTIAMGEPCaEaBNe1KIH3K3g8gw
pvE/yCoYtZv35hfYkCUej8mod3ZdvA/r9BECLdL/jdamhIGh40c=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:27 2023 by rpki-client on console-ams.rpki-client.org