Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/oVrCvJWcMzu-EvuBHsD_TD-ssJM.roa
File: oVrCvJWcMzu-EvuBHsD_TD-ssJM.roa (raw, json)
Hash identifier: 6MV5U0dea4mQivjcZQLar6iOEreCpaIpB8RiclLUBvw=
Subject key identifier: A1:5A:C2:BC:95:9C:33:3B:BE:12:FB:81:1E:C0:FF:4C:3F:AC:B0:93
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 13D5
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/oVrCvJWcMzu-EvuBHsD_TD-ssJM.roa
Signing time: Sun 07 Feb 2021 11:56:23 +0000
ROA not before: Sun 07 Feb 2021 11:56:23 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 118.233.88.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5077 (0x13d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 11:56:23 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A15AC2BC959C333BBE12FB811EC0FF4C3FACB093
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:ba:ae:e2:1f:53:43:29:7f:a1:8b:e0:8c:ab:
c8:43:c1:94:97:8c:7d:46:b8:f0:c6:71:16:43:84:
fd:89:fb:52:ab:44:89:b3:cc:e6:11:4e:60:a2:cc:
b1:cd:72:98:14:d4:85:e2:c8:9a:b4:4c:a1:1e:9d:
66:c0:ff:25:ca:db:47:6d:74:ec:31:e4:3a:6e:d0:
9b:73:47:98:b2:1b:f6:17:4f:fa:d7:5f:66:e2:d1:
ce:de:88:19:2d:61:f0:b3:65:f0:84:86:96:e0:61:
81:51:da:fa:e1:e7:bd:e1:38:bf:a7:3a:fa:c9:d8:
f4:de:25:f6:5c:cf:99:78:b6:87:b7:ca:89:4b:90:
8f:28:6b:1e:b7:70:a2:3b:b8:a7:d7:2b:f2:bb:f3:
8e:21:18:7a:51:a9:a1:8a:13:f2:fb:24:bd:8e:25:
f8:fd:22:7b:dc:96:e2:d1:5f:bb:35:73:7a:7f:d5:
f5:87:fe:26:60:a8:84:cc:78:ef:51:1e:84:bd:b2:
29:ee:a9:13:18:e5:e9:4c:5a:77:fd:67:d0:a4:80:
ba:01:a4:e1:45:a6:48:85:3e:33:b1:30:19:55:4c:
d8:90:a2:c9:94:7f:e5:fd:86:bb:5d:6a:f1:f3:c9:
b6:0a:c3:d3:c8:cd:c3:d5:e1:2d:47:dd:17:61:04:
f4:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:5A:C2:BC:95:9C:33:3B:BE:12:FB:81:1E:C0:FF:4C:3F:AC:B0:93
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/oVrCvJWcMzu-EvuBHsD_TD-ssJM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.88.0/21
Signature Algorithm: sha256WithRSAEncryption
4b:bb:c2:26:26:07:92:f6:ac:cc:35:bb:5f:5f:5d:6a:09:62:
4d:92:df:66:51:bf:b1:39:11:a7:66:4d:d3:aa:38:2e:f5:83:
22:a3:a1:7d:ac:af:91:56:ed:85:94:cd:b0:fd:52:13:a9:15:
26:8b:a8:f2:0e:ef:3f:98:dd:52:4a:ec:8f:68:81:31:11:82:
8f:ed:10:55:72:0e:0b:7e:5b:18:7f:4f:ae:f9:83:c4:65:fb:
a1:c5:f0:24:7a:6f:4b:5f:9a:8c:d1:75:4f:28:1e:45:f4:d9:
bd:9b:36:d3:7f:34:8f:07:5d:9b:1b:5a:4b:21:16:ab:14:21:
89:81:5d:ec:ef:d3:e7:1c:e6:5a:cb:5e:7d:8b:19:78:12:42:
3f:2f:76:ec:3f:4c:bc:3d:57:94:67:84:d8:69:77:d7:f6:a9:
8e:a4:69:31:e1:ec:7e:63:9a:8a:42:a9:ef:7b:eb:7a:1a:6d:
a8:62:45:c9:75:8e:3f:2d:03:9c:7d:57:48:19:b9:33:0b:ef:
8d:96:6d:83:d3:cf:ff:ab:49:1c:94:87:9c:d1:35:11:f7:32:
34:d9:00:d7:f5:c4:14:cc:be:13:34:12:66:09:6c:bb:db:29:
9b:cf:62:0c:87:5a:3e:70:6c:0e:13:40:82:75:26:a0:10:63:
5c:0e:b1:33
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICE9UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMTAyMDcx
MTU2MjNaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEExNUFDMkJDOTU5QzMz
M0JCRTEyRkI4MTFFQzBGRjRDM0ZBQ0IwOTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCiuq7iH1NDKX+hi+CMq8hDwZSXjH1GuPDGcRZDhP2J+1KrRImz
zOYRTmCizLHNcpgU1IXiyJq0TKEenWbA/yXK20dtdOwx5Dpu0JtzR5iyG/YXT/rX
X2bi0c7eiBktYfCzZfCEhpbgYYFR2vrh573hOL+nOvrJ2PTeJfZcz5l4toe3yolL
kI8oax63cKI7uKfXK/K7844hGHpRqaGKE/L7JL2OJfj9InvcluLRX7s1c3p/1fWH
/iZgqITMeO9RHoS9sinuqRMY5elMWnf9Z9CkgLoBpOFFpkiFPjOxMBlVTNiQosmU
f+X9hrtdavHzybYKw9PIzcPV4S1H3RdhBPTLAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUoVrCvJWcMzu+EvuBHsD/TD+ssJMwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL29WckN2SldjTXp1LUV2dUJI
c0RfVEQtc3NKTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN2
6VgwDQYJKoZIhvcNAQELBQADggEBAEu7wiYmB5L2rMw1u19fXWoJYk2S32ZRv7E5
EadmTdOqOC71gyKjoX2sr5FW7YWUzbD9UhOpFSaLqPIO7z+Y3VJK7I9ogTERgo/t
EFVyDgt+Wxh/T675g8Rl+6HF8CR6b0tfmozRdU8oHkX02b2bNtN/NI8HXZsbWksh
FqsUIYmBXezv0+cc5lrLXn2LGXgSQj8vduw/TLw9V5RnhNhpd9f2qY6kaTHh7H5j
mopCqe9763oabahiRcl1jj8tA5x9V0gZuTML742WbYPTz/+rSRyUh5zRNRH3MjTZ
ANf1xBTMvhM0EmYJbLvbKZvPYgyHWj5wbA4TQIJ1JqAQY1wOsTM=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:40 2024 by rpki-client on console-ams.rpki-client.org