Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/nqMYIgON5KnGBV2EEriaSWtqyuo.roa
File: nqMYIgON5KnGBV2EEriaSWtqyuo.roa (raw, json)
Hash identifier: IAqvV/8i1N0qXQJLaUODZ/cYxI8MIK/20leogrd8pg0=
Subject key identifier: 9E:A3:18:22:03:8D:E4:A9:C6:05:5D:84:12:B8:9A:49:6B:6A:CA:EA
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1B3D
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/nqMYIgON5KnGBV2EEriaSWtqyuo.roa
Signing time: Wed 29 Sep 2021 02:46:20 +0000
ROA not before: Wed 29 Sep 2021 02:46:20 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 123.194.192.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6973 (0x1b3d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:46:20 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=9EA31822038DE4A9C6055D8412B89A496B6ACAEA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:ef:35:ba:57:c6:9f:f6:00:49:4a:ac:b8:37:
c0:a9:75:8a:fa:17:33:ab:c9:31:f2:1c:d9:a2:27:
4d:e0:bd:29:c2:04:56:cc:8b:87:3e:25:a2:22:52:
49:10:db:d2:3f:d3:29:89:2f:4f:bb:ce:2f:1d:cb:
83:d6:04:a0:12:37:61:51:6f:bd:a8:15:de:1c:bb:
c2:fb:53:67:de:3c:9f:fb:29:05:e6:06:db:4b:c5:
d6:dd:3e:f5:a3:1f:5d:84:74:a2:b4:27:58:0b:58:
ef:c0:35:74:d9:5c:bb:58:d3:d1:84:e8:da:3a:01:
ca:37:e4:ee:f4:2c:e2:f3:b3:c6:ee:ae:b3:be:c1:
b1:a8:7f:da:ae:57:b2:ab:4f:59:d4:ca:0e:81:9a:
cc:5c:ed:60:42:3f:02:61:d5:ea:9c:d9:b1:1a:d6:
61:1e:31:33:6f:aa:4a:b2:bd:dc:41:d0:57:83:c9:
cc:81:0c:9e:69:d5:4f:ad:16:e1:80:10:e1:f8:5f:
38:fe:1f:75:a2:b5:b7:25:21:3c:a8:5b:8f:d9:b5:
5f:e0:f2:84:4e:da:50:13:18:2a:64:19:ff:80:c3:
33:f4:32:46:f9:c8:74:48:79:4b:77:94:14:c0:71:
26:19:8e:41:1d:45:8a:be:90:ba:c0:3a:b5:9e:11:
b4:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:A3:18:22:03:8D:E4:A9:C6:05:5D:84:12:B8:9A:49:6B:6A:CA:EA
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/nqMYIgON5KnGBV2EEriaSWtqyuo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.192.0/22
Signature Algorithm: sha256WithRSAEncryption
38:ae:ee:07:24:74:5a:d3:9a:8e:9f:6a:79:6f:97:60:da:b3:
ee:c7:dc:f2:b6:88:be:4c:93:df:00:75:e5:24:8f:1c:38:bc:
a9:25:a8:35:23:e1:b9:0f:a3:be:9b:9b:53:17:4b:9d:a2:60:
c0:f6:cd:00:04:1f:da:79:5c:a1:2e:b9:cc:c0:72:e4:94:e1:
42:58:3a:6e:99:c3:83:93:f8:be:ae:3e:3c:9a:11:63:ae:f9:
5c:d7:ec:a3:4f:a1:37:9c:57:8d:cd:11:b5:0e:44:26:1b:78:
c6:7a:0d:da:d3:ed:8d:c6:89:24:e3:6c:ac:4a:fc:dc:99:61:
4c:5f:8c:c7:92:93:20:6c:b7:a0:98:96:b3:a7:a9:6c:e5:3f:
47:53:c5:81:72:c2:c7:74:5c:31:44:0a:00:5a:72:91:54:83:
a1:59:0f:6b:a8:a9:ba:c9:5b:63:34:48:02:27:55:f2:05:f0:
d0:90:cc:b7:8a:4d:c3:9d:c0:2e:80:48:36:79:df:eb:82:2f:
90:7b:e0:36:41:1f:12:59:6d:54:40:e9:c4:3a:f1:9b:42:9e:
9a:9b:8c:c8:67:8a:71:66:6c:28:48:64:a0:ab:23:de:e4:cd:
72:de:62:9f:8a:d6:c7:a4:31:43:61:0f:3d:dd:7a:3f:68:39:
ca:73:b7:11
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICGz0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMTA5Mjkw
MjQ2MjBaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDlFQTMxODIyMDM4REU0
QTlDNjA1NUQ4NDEyQjg5QTQ5NkI2QUNBRUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDY7zW6V8af9gBJSqy4N8CpdYr6FzOryTHyHNmiJ03gvSnCBFbM
i4c+JaIiUkkQ29I/0ymJL0+7zi8dy4PWBKASN2FRb72oFd4cu8L7U2fePJ/7KQXm
BttLxdbdPvWjH12EdKK0J1gLWO/ANXTZXLtY09GE6No6Aco35O70LOLzs8burrO+
wbGof9quV7KrT1nUyg6Bmsxc7WBCPwJh1eqc2bEa1mEeMTNvqkqyvdxB0FeDycyB
DJ5p1U+tFuGAEOH4Xzj+H3WitbclITyoW4/ZtV/g8oRO2lATGCpkGf+AwzP0Mkb5
yHRIeUt3lBTAcSYZjkEdRYq+kLrAOrWeEbQ/AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUnqMYIgON5KnGBV2EEriaSWtqyuowHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL25xTVlJZ09ONUtuR0JWMkVF
cmlhU1d0cXl1by5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7
wsAwDQYJKoZIhvcNAQELBQADggEBADiu7gckdFrTmo6fanlvl2Das+7H3PK2iL5M
k98AdeUkjxw4vKklqDUj4bkPo76bm1MXS52iYMD2zQAEH9p5XKEuuczAcuSU4UJY
Om6Zw4OT+L6uPjyaEWOu+VzX7KNPoTecV43NEbUORCYbeMZ6DdrT7Y3GiSTjbKxK
/NyZYUxfjMeSkyBst6CYlrOnqWzlP0dTxYFywsd0XDFECgBacpFUg6FZD2uoqbrJ
W2M0SAInVfIF8NCQzLeKTcOdwC6ASDZ53+uCL5B74DZBHxJZbVRA6cQ68ZtCnpqb
jMhninFmbChIZKCrI97kzXLeYp+K1sekMUNhDz3dej9oOcpztxE=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:28 2023 by rpki-client on console-ams.rpki-client.org