Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lKOAXeNDN71aj-4IAHGYe5uQyFE.roa
File: lKOAXeNDN71aj-4IAHGYe5uQyFE.roa (raw, json)
Hash identifier: tJYaTFvEVYe4Qdm1ZyipkqGbxCvJBgd/8R/fPqIVXpA=
Subject key identifier: 94:A3:80:5D:E3:43:37:BD:5A:8F:EE:08:00:71:98:7B:9B:90:C8:51
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1C2E
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lKOAXeNDN71aj-4IAHGYe5uQyFE.roa
Signing time: Wed 29 Sep 2021 02:47:27 +0000
ROA not before: Wed 29 Sep 2021 02:47:27 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 118.233.216.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7214 (0x1c2e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:47:27 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=94A3805DE34337BD5A8FEE080071987B9B90C851
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:70:07:28:26:3b:ef:08:7c:bc:34:bd:38:c9:
c3:28:2f:92:45:98:cd:de:df:d8:1d:9c:f9:07:c2:
83:46:11:9e:fd:f5:ff:a8:8f:d9:c5:4b:af:e1:31:
e3:49:ac:1a:e0:f2:99:2b:ec:54:9c:da:72:54:36:
5e:eb:ca:89:f0:bf:e4:d4:2e:05:7b:fd:dd:91:8b:
b7:f5:63:f8:2f:8b:14:01:37:95:72:25:22:18:ca:
b1:97:ed:9d:a4:eb:df:cb:70:be:56:14:3f:e1:3b:
16:13:97:99:e9:52:09:2e:37:b0:ba:95:c4:1c:a6:
a7:db:9c:76:a7:0c:a3:e6:04:cf:4b:ad:8d:f9:4d:
af:a9:1b:2f:39:84:2e:1a:a5:3d:af:61:a5:44:db:
6a:37:e7:1c:70:c6:26:69:4b:ec:df:79:97:b0:5e:
9d:9c:ac:d2:78:9f:53:f2:d5:1d:76:5c:02:40:36:
b4:d0:6a:30:6b:03:ab:e6:ef:1c:c7:fb:35:78:55:
37:27:9f:7c:37:72:fb:3d:0d:e7:0f:a1:53:8b:a9:
0a:c0:95:4c:fb:cd:a8:20:40:6b:cf:54:98:7a:2d:
86:e8:52:33:43:3e:43:51:1c:db:ee:d0:cc:21:62:
de:3f:e9:7c:bf:a9:60:e6:12:93:3b:04:63:2c:31:
dc:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:A3:80:5D:E3:43:37:BD:5A:8F:EE:08:00:71:98:7B:9B:90:C8:51
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lKOAXeNDN71aj-4IAHGYe5uQyFE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.216.0/21
Signature Algorithm: sha256WithRSAEncryption
a2:26:05:3e:da:99:42:35:00:2d:a8:fe:90:a4:c8:07:74:0d:
ec:a4:02:d4:2f:f9:86:42:12:cc:16:28:e2:2f:64:a9:48:fe:
87:04:9a:3f:13:16:88:c1:8b:46:0f:fa:f5:5e:da:89:b0:ce:
83:97:7d:33:f6:44:b5:ce:7a:a6:4d:26:9c:00:4c:4e:d4:a6:
7d:cc:be:78:d4:88:b2:91:4b:56:2e:3e:c9:aa:82:a6:08:a0:
01:eb:79:58:3c:9e:fd:4e:67:08:f4:ca:5b:55:b2:93:b4:21:
70:a6:e0:0d:1b:1a:7a:65:c1:8f:14:eb:70:39:b9:30:21:35:
97:27:69:78:cd:ff:08:24:e9:75:6a:af:06:61:0a:5f:b5:4c:
61:28:a6:8c:63:92:6a:fe:75:5a:53:85:fe:e6:27:03:51:12:
17:49:df:16:bf:a9:75:fd:e0:ce:a7:c1:08:80:ea:1a:50:56:
b7:a3:c5:59:63:90:b1:ad:77:f3:1f:74:72:b0:bf:a4:7c:3e:
d8:64:df:06:25:48:36:85:d3:5f:81:e1:ec:98:98:05:c2:b5:
e2:c4:7d:fa:42:75:c8:fb:9a:08:66:b8:78:92:d7:5e:7e:4a:
f1:74:ac:2e:57:7e:2b:8d:01:91:71:8d:e0:b9:b7:ef:f6:07:
eb:25:79:10
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICHC4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMTA5Mjkw
MjQ3MjdaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDk0QTM4MDVERTM0MzM3
QkQ1QThGRUUwODAwNzE5ODdCOUI5MEM4NTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCucAcoJjvvCHy8NL04ycMoL5JFmM3e39gdnPkHwoNGEZ799f+o
j9nFS6/hMeNJrBrg8pkr7FSc2nJUNl7ryonwv+TULgV7/d2Ri7f1Y/gvixQBN5Vy
JSIYyrGX7Z2k69/LcL5WFD/hOxYTl5npUgkuN7C6lcQcpqfbnHanDKPmBM9LrY35
Ta+pGy85hC4apT2vYaVE22o35xxwxiZpS+zfeZewXp2crNJ4n1Py1R12XAJANrTQ
ajBrA6vm7xzH+zV4VTcnn3w3cvs9DecPoVOLqQrAlUz7zaggQGvPVJh6LYboUjND
PkNRHNvu0MwhYt4/6Xy/qWDmEpM7BGMsMdx/AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUlKOAXeNDN71aj+4IAHGYe5uQyFEwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2xLT0FYZU5ETjcxYWotNElB
SEdZZTV1UXlGRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN2
6dgwDQYJKoZIhvcNAQELBQADggEBAKImBT7amUI1AC2o/pCkyAd0DeykAtQv+YZC
EswWKOIvZKlI/ocEmj8TFojBi0YP+vVe2omwzoOXfTP2RLXOeqZNJpwATE7Upn3M
vnjUiLKRS1YuPsmqgqYIoAHreVg8nv1OZwj0yltVspO0IXCm4A0bGnplwY8U63A5
uTAhNZcnaXjN/wgk6XVqrwZhCl+1TGEopoxjkmr+dVpThf7mJwNREhdJ3xa/qXX9
4M6nwQiA6hpQVrejxVljkLGtd/MfdHKwv6R8Pthk3wYlSDaF01+B4eyYmAXCteLE
ffpCdcj7mghmuHiS115+SvF0rC5XfiuNAZFxjeC5t+/2B+sleRA=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:39 2024 by rpki-client on console-ams.rpki-client.org