Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/pJCrSeitYilrTTNHxiVVUvsFY0A.roa
File: pJCrSeitYilrTTNHxiVVUvsFY0A.roa (raw, json)
Hash identifier: KZYcIgkN+uMnwkN1revOoRtZOqBBc3KmCDI4euMdcLY=
Subject key identifier: A4:90:AB:49:E8:AD:62:29:6B:4D:33:47:C6:25:55:52:FB:05:63:40
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1ED9
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/pJCrSeitYilrTTNHxiVVUvsFY0A.roa
Signing time: Thu 26 May 2022 03:32:56 +0000
ROA not before: Thu 26 May 2022 03:32:56 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 180.176.144.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7897 (0x1ed9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: May 26 03:32:56 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=A490AB49E8AD62296B4D3347C6255552FB056340
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:fb:7e:9a:5b:ab:c7:3c:fd:3f:d0:e3:90:dd:
49:61:40:3c:8d:65:8e:e1:d2:b3:82:28:6c:7e:f8:
de:fd:51:b0:51:23:be:3b:a2:28:d9:85:6d:9f:ad:
ec:6a:bf:89:35:df:f0:f0:40:a2:ed:b7:cb:c2:51:
f6:0b:5e:42:d5:67:21:9e:6f:b7:55:77:9e:9e:18:
ad:eb:f4:05:b4:29:67:c7:58:57:4b:00:5a:84:98:
59:ca:f2:24:9c:d4:da:d4:65:91:f9:88:34:9e:45:
53:14:50:08:95:97:18:60:d8:fa:44:db:79:95:3f:
0d:c4:9a:00:3a:69:2d:41:cd:0d:75:29:c7:41:49:
58:ed:27:08:e9:c9:14:4d:19:dd:74:39:bc:87:81:
f8:5d:01:0a:6f:18:a4:5d:a8:80:1e:56:09:f0:89:
f3:f1:d6:a9:4b:05:86:35:fd:45:99:9f:a0:76:40:
9d:38:f4:27:bd:16:76:40:73:f5:41:59:eb:29:6c:
6d:90:c6:14:ef:76:0e:26:de:8b:c0:93:0b:8f:6f:
0b:00:37:fe:38:1d:49:f8:ed:b0:1d:34:8e:d4:e6:
77:33:85:0a:db:d9:26:33:91:ba:ea:85:ee:ff:bf:
ec:c5:ab:81:ca:4e:e8:2a:e5:5a:0e:94:a2:6c:7b:
c9:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:90:AB:49:E8:AD:62:29:6B:4D:33:47:C6:25:55:52:FB:05:63:40
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/pJCrSeitYilrTTNHxiVVUvsFY0A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.176.144.0/21
Signature Algorithm: sha256WithRSAEncryption
4c:5d:e7:db:c6:de:3e:11:3e:00:be:d3:af:99:a9:75:bf:5b:
db:11:8b:a4:98:76:fd:d2:03:fd:0b:b5:1b:ca:57:fc:09:29:
91:06:f1:20:f9:9d:e1:7c:da:20:a3:ca:25:7b:81:d8:c7:45:
30:1e:1e:82:49:99:ca:bd:64:27:18:7e:25:45:5c:2c:be:d7:
2a:72:4b:b0:fd:bb:fb:b4:77:5f:f3:aa:4b:88:b6:f6:a6:7e:
42:fd:99:8e:df:9e:ea:75:17:ca:b9:98:78:6b:a7:8d:1e:79:
ca:6d:0f:d4:39:61:81:4b:48:3a:c8:09:3c:fc:bb:ec:5b:ec:
3e:76:5d:d4:01:d3:66:c6:07:bc:b7:5a:8b:49:dc:e6:df:4b:
71:dd:b7:dd:59:70:92:12:37:f6:70:c3:4a:2a:d5:4f:dc:8b:
be:14:59:3b:4f:e8:b5:17:61:50:a1:6a:7a:36:6c:e1:8a:0f:
3c:a1:2d:5c:12:4f:ad:cf:88:9c:8a:11:7a:6c:d7:4c:e2:16:
ee:43:f5:40:5c:38:d7:4e:33:d9:0c:1c:b5:14:d2:57:0c:ab:
0f:2b:5e:be:d0:39:ad:23:1f:b6:2c:3b:51:2a:db:61:cf:8e:
6f:16:c6:a7:61:94:b5:8f:38:9f:54:b8:ca:d6:78:cf:ec:26:
cd:e9:f4:90
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICHtkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMjA1MjYw
MzMyNTZaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEE0OTBBQjQ5RThBRDYy
Mjk2QjREMzM0N0M2MjU1NTUyRkIwNTYzNDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDD+36aW6vHPP0/0OOQ3UlhQDyNZY7h0rOCKGx++N79UbBRI747
oijZhW2frexqv4k13/DwQKLtt8vCUfYLXkLVZyGeb7dVd56eGK3r9AW0KWfHWFdL
AFqEmFnK8iSc1NrUZZH5iDSeRVMUUAiVlxhg2PpE23mVPw3EmgA6aS1BzQ11KcdB
SVjtJwjpyRRNGd10ObyHgfhdAQpvGKRdqIAeVgnwifPx1qlLBYY1/UWZn6B2QJ04
9Ce9FnZAc/VBWespbG2QxhTvdg4m3ovAkwuPbwsAN/44HUn47bAdNI7U5nczhQrb
2SYzkbrqhe7/v+zFq4HKTugq5VoOlKJse8nVAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUpJCrSeitYilrTTNHxiVVUvsFY0AwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3BKQ3JTZWl0WWlsclRUTkh4
aVZWVXZzRlkwQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0
sJAwDQYJKoZIhvcNAQELBQADggEBAExd59vG3j4RPgC+06+ZqXW/W9sRi6SYdv3S
A/0LtRvKV/wJKZEG8SD5neF82iCjyiV7gdjHRTAeHoJJmcq9ZCcYfiVFXCy+1ypy
S7D9u/u0d1/zqkuItvamfkL9mY7fnup1F8q5mHhrp40eecptD9Q5YYFLSDrICTz8
u+xb7D52XdQB02bGB7y3WotJ3ObfS3Hdt91ZcJISN/Zww0oq1U/ci74UWTtP6LUX
YVChano2bOGKDzyhLVwST63PiJyKEXps10ziFu5D9UBcONdOM9kMHLUU0lcMqw8r
Xr7QOa0jH7YsO1Eq22HPjm8WxqdhlLWPOJ9UuMrWeM/sJs3p9JA=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:58 2024 by rpki-client on console-fra.rpki-client.org