Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/phc7yckMKUaUKHYaCyyfpcAABCg.roa
File: phc7yckMKUaUKHYaCyyfpcAABCg.roa (raw, json)
Hash identifier: OykPSO315rw9Gq1O/0RAOsZ3u/1/67xSb5nYpBvWauE=
Subject key identifier: A6:17:3B:C9:C9:0C:29:46:94:28:76:1A:0B:2C:9F:A5:C0:00:04:28
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 13F9
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/phc7yckMKUaUKHYaCyyfpcAABCg.roa
Signing time: Sun 07 Feb 2021 11:56:53 +0000
ROA not before: Sun 07 Feb 2021 11:56:53 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 123.192.32.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5113 (0x13f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 11:56:53 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A6173BC9C90C29469428761A0B2C9FA5C0000428
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:51:62:4a:43:ed:a4:9a:cf:2a:0a:ab:90:ff:
4a:24:3a:cd:e5:d3:bb:8b:9d:d5:0d:f6:45:f3:97:
0b:80:49:7c:ad:6b:bf:c0:ff:46:ff:20:a6:e7:02:
a7:14:47:17:12:e6:26:69:6c:99:95:1f:a9:15:cf:
36:ee:16:1b:21:9f:55:10:a1:0d:d5:77:1f:04:7e:
f4:af:42:33:ec:92:42:a5:7f:68:98:22:62:fc:84:
a9:37:5d:02:27:dc:ee:79:15:3a:58:1a:b9:8e:36:
82:32:e8:77:0c:a5:7f:b3:2e:eb:6e:bc:46:57:1a:
e8:05:d9:dd:95:7e:74:98:3a:c5:35:48:0d:26:76:
01:d4:b4:22:90:f0:66:58:b3:ec:8a:2c:fe:ec:f1:
ec:b1:b2:1b:0e:13:31:33:9b:db:f1:ab:07:83:c1:
39:28:75:9b:eb:b5:89:de:f2:4c:6e:86:de:5f:0c:
28:e5:f4:7e:55:0e:75:c8:d9:4f:45:38:7d:ca:cb:
6e:ef:6e:bf:f6:ed:f4:a0:fe:3b:ca:af:fd:a7:e8:
ea:0a:2b:c1:c2:61:17:de:83:48:d7:28:d6:f9:fd:
6d:8b:05:75:b5:2a:95:7e:74:ad:b2:e4:d1:7d:22:
00:1b:c0:dd:69:f6:d4:a5:07:fc:bf:b5:a7:18:84:
8e:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:17:3B:C9:C9:0C:29:46:94:28:76:1A:0B:2C:9F:A5:C0:00:04:28
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/phc7yckMKUaUKHYaCyyfpcAABCg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.192.32.0/20
Signature Algorithm: sha256WithRSAEncryption
2d:f9:f7:9a:cc:03:06:b0:72:b8:ce:02:5c:73:ad:d0:d6:fc:
48:8a:03:bc:1f:56:0e:f9:15:ae:e8:8b:36:aa:08:0c:f5:fa:
2c:a3:09:f4:8c:a5:84:4f:f3:64:24:46:7c:59:20:ff:6a:4d:
85:21:91:c7:fe:14:42:a6:4e:13:f2:72:c5:96:bf:80:84:f7:
bd:3c:28:07:63:d7:86:02:a8:f3:3c:7e:c1:0b:5c:8e:7d:50:
62:8b:ed:3c:37:8f:dd:06:f7:0d:f9:a5:6c:81:eb:7c:8e:25:
be:f9:77:d1:19:85:c2:64:18:08:de:11:4b:af:6a:8b:8b:72:
84:83:81:2c:32:21:25:ff:9d:9b:8c:ea:f9:2a:c5:26:ab:8e:
ba:b4:df:3e:8c:24:69:ff:7f:fd:60:0c:9e:f0:54:ed:d4:9d:
60:4e:31:74:e5:71:4a:89:8f:fb:f0:bf:f5:8f:03:52:a7:e0:
b6:0e:36:70:29:70:42:23:e8:d9:07:24:4e:0b:a9:60:2c:df:
5a:9e:50:67:9f:77:da:54:e6:c6:8f:cd:70:c1:5f:85:f1:b4:
05:3f:fb:f4:94:e4:9a:fe:0a:b1:00:1f:51:bb:1c:10:4b:d0:
86:74:7e:88:f7:77:58:67:b7:ed:86:b2:38:07:c3:91:43:85:
7d:39:6e:35
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICE/kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMTAyMDcx
MTU2NTNaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEE2MTczQkM5QzkwQzI5
NDY5NDI4NzYxQTBCMkM5RkE1QzAwMDA0MjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCoUWJKQ+2kms8qCquQ/0okOs3l07uLndUN9kXzlwuASXyta7/A
/0b/IKbnAqcURxcS5iZpbJmVH6kVzzbuFhshn1UQoQ3Vdx8EfvSvQjPskkKlf2iY
ImL8hKk3XQIn3O55FTpYGrmONoIy6HcMpX+zLutuvEZXGugF2d2VfnSYOsU1SA0m
dgHUtCKQ8GZYs+yKLP7s8eyxshsOEzEzm9vxqweDwTkodZvrtYne8kxuht5fDCjl
9H5VDnXI2U9FOH3Ky27vbr/27fSg/jvKr/2n6OoKK8HCYRfeg0jXKNb5/W2LBXW1
KpV+dK2y5NF9IgAbwN1p9tSlB/y/tacYhI5nAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUphc7yckMKUaUKHYaCyyfpcAABCgwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3BoYzd5Y2tNS1VhVUtIWWFD
eXlmcGNBQUJDZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAR7
wCAwDQYJKoZIhvcNAQELBQADggEBAC3595rMAwawcrjOAlxzrdDW/EiKA7wfVg75
Fa7oizaqCAz1+iyjCfSMpYRP82QkRnxZIP9qTYUhkcf+FEKmThPycsWWv4CE9708
KAdj14YCqPM8fsELXI59UGKL7Tw3j90G9w35pWyB63yOJb75d9EZhcJkGAjeEUuv
aouLcoSDgSwyISX/nZuM6vkqxSarjrq03z6MJGn/f/1gDJ7wVO3UnWBOMXTlcUqJ
j/vwv/WPA1Kn4LYONnApcEIj6NkHJE4LqWAs31qeUGefd9pU5saPzXDBX4XxtAU/
+/SU5Jr+CrEAH1G7HBBL0IZ0foj3d1hnt+2GsjgHw5FDhX05bjU=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:58 2024 by rpki-client on console-fra.rpki-client.org