Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/pXa1Sl8GYk5t_vgbFdtDw_KNYYw.roa
File: pXa1Sl8GYk5t_vgbFdtDw_KNYYw.roa (raw, json)
Hash identifier: Ogu241gt1bQJM0LLLzpYBkjxDxSMWSB8ZnCPD2z4iTw=
Subject key identifier: A5:76:B5:4A:5F:06:62:4E:6D:FE:F8:1B:15:DB:43:C3:F2:8D:61:8C
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/pXa1Sl8GYk5t_vgbFdtDw_KNYYw.roa
Signing time: Thu 15 Sep 2022 02:44:40 +0000
ROA not before: Thu 15 Sep 2022 02:44:40 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 106.1.108.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8096 (0x1fa0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:44:40 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A576B54A5F06624E6DFEF81B15DB43C3F28D618C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:70:48:93:c3:56:f2:d5:b6:a9:3a:44:16:c8:
9a:f7:d4:83:37:e3:f8:17:db:28:56:e7:7f:49:a0:
5e:94:6b:c3:bc:4a:a7:79:3f:44:fb:89:8a:cc:be:
cc:99:db:9e:44:83:c1:cb:69:70:79:86:a1:c1:d2:
22:c2:0c:b2:73:1f:c6:30:7c:47:0e:53:fd:5b:f0:
60:15:4c:fb:3e:6f:00:7b:21:2e:3a:0a:9a:78:6f:
74:12:d5:34:be:9f:b8:ee:44:3c:a0:f5:8e:e4:89:
e0:b7:d5:7c:6a:90:3f:02:b9:c9:e4:9f:10:bd:9c:
a8:7d:74:ef:aa:2c:0c:f2:f8:72:b9:d3:13:0f:dc:
40:27:cb:0c:1e:f7:e8:b9:9c:f4:47:d0:64:05:ac:
b8:8e:37:19:df:fb:6f:4d:e5:2f:fa:e1:48:1f:13:
8a:a0:c5:81:fc:aa:50:91:34:1f:01:98:9b:27:fb:
45:98:b7:83:22:99:25:d8:6a:ab:06:2b:0e:67:56:
7b:9d:be:fb:a1:78:53:3b:7a:29:d5:68:04:bb:b5:
28:62:e1:8a:cf:2f:b6:49:18:28:7c:22:cc:97:7a:
5e:f4:a5:38:e7:59:e4:f6:fc:17:82:00:f0:1b:33:
1f:69:c0:a1:15:c8:f5:2e:56:b3:8e:4e:18:dd:31:
f4:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:76:B5:4A:5F:06:62:4E:6D:FE:F8:1B:15:DB:43:C3:F2:8D:61:8C
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/pXa1Sl8GYk5t_vgbFdtDw_KNYYw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.108.0/22
Signature Algorithm: sha256WithRSAEncryption
6d:ee:4b:6b:96:2e:e5:52:97:08:48:e8:bf:00:f0:da:22:d3:
c9:8e:32:c1:d2:a4:b5:e3:60:58:cf:c1:0e:05:d4:b5:23:36:
c0:56:69:71:df:c2:f6:39:6e:bb:43:6c:c1:95:ce:46:4c:c6:
a8:e0:c4:30:93:33:b2:07:7b:7c:bb:67:90:cd:b0:7e:4a:74:
cb:da:f1:d3:0f:d9:43:b6:9d:68:b6:d3:c8:cb:74:17:6f:8b:
ac:b3:a1:a2:b6:90:fb:b2:0a:51:3a:59:a4:e5:01:e5:c8:36:
0c:4e:0f:d3:dd:50:a0:4a:3a:cd:e2:25:5d:e4:4a:cb:93:aa:
f8:b0:a4:e9:c6:ca:92:e0:ee:12:fc:4c:41:4a:87:b8:1b:44:
6d:7e:c5:90:e7:1a:ba:74:b1:48:3a:f6:91:76:c0:33:9b:bb:
b4:ec:62:ce:9e:5b:cd:14:99:f2:c8:f9:91:f1:58:39:44:dc:
75:3c:d1:8e:4e:17:6c:6e:99:b2:03:83:e2:5d:57:90:bf:ad:
a7:32:bd:05:7c:14:fc:8d:2a:13:8a:fb:9b:08:37:65:54:eb:
06:79:ba:b6:e4:9b:6e:76:e6:50:10:f9:ad:ef:78:e6:8f:b7:
20:9b:fb:67:5b:c6:0e:7d:44:6d:fb:d7:5b:62:5d:b2:d6:a1:
f3:78:ca:ff
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICH6AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMjA5MTUw
MjQ0NDBaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEE1NzZCNTRBNUYwNjYy
NEU2REZFRjgxQjE1REI0M0MzRjI4RDYxOEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDtcEiTw1by1bapOkQWyJr31IM34/gX2yhW539JoF6Ua8O8Sqd5
P0T7iYrMvsyZ255Eg8HLaXB5hqHB0iLCDLJzH8YwfEcOU/1b8GAVTPs+bwB7IS46
Cpp4b3QS1TS+n7juRDyg9Y7kieC31XxqkD8CucnknxC9nKh9dO+qLAzy+HK50xMP
3EAnywwe9+i5nPRH0GQFrLiONxnf+29N5S/64UgfE4qgxYH8qlCRNB8BmJsn+0WY
t4MimSXYaqsGKw5nVnudvvuheFM7einVaAS7tShi4YrPL7ZJGCh8IsyXel70pTjn
WeT2/BeCAPAbMx9pwKEVyPUuVrOOThjdMfRbAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUpXa1Sl8GYk5t/vgbFdtDw/KNYYwwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3BYYTFTbDhHWWs1dF92Z2JG
ZHREd19LTllZdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJq
AWwwDQYJKoZIhvcNAQELBQADggEBAG3uS2uWLuVSlwhI6L8A8Noi08mOMsHSpLXj
YFjPwQ4F1LUjNsBWaXHfwvY5brtDbMGVzkZMxqjgxDCTM7IHe3y7Z5DNsH5KdMva
8dMP2UO2nWi208jLdBdvi6yzoaK2kPuyClE6WaTlAeXINgxOD9PdUKBKOs3iJV3k
SsuTqviwpOnGypLg7hL8TEFKh7gbRG1+xZDnGrp0sUg69pF2wDObu7TsYs6eW80U
mfLI+ZHxWDlE3HU80Y5OF2xumbIDg+JdV5C/racyvQV8FPyNKhOK+5sIN2VU6wZ5
urbkm2525lAQ+a3veOaPtyCb+2dbxg59RG3711tiXbLWofN4yv8=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:58 2024 by rpki-client on console-fra.rpki-client.org