Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/pw2lhaUGYSpGs0aceqDRx7Y2aXw.roa
File: pw2lhaUGYSpGs0aceqDRx7Y2aXw.roa (raw, json)
Hash identifier: p4yWmFwanmFivu5DEABZmkSiXXAmNPFvUToIfgcC8R0=
Subject key identifier: A7:0D:A5:85:A5:06:61:2A:46:B3:46:9C:7A:A0:D1:C7:B6:36:69:7C
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 14B1
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/pw2lhaUGYSpGs0aceqDRx7Y2aXw.roa
Signing time: Sun 07 Feb 2021 11:59:41 +0000
ROA not before: Sun 07 Feb 2021 11:59:41 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 123.192.148.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5297 (0x14b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 11:59:41 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A70DA585A506612A46B3469C7AA0D1C7B636697C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:19:26:16:52:72:e6:f1:56:d6:ba:ce:96:db:
84:0a:22:85:27:b5:e2:f9:ef:b5:23:25:ca:46:a3:
68:55:0d:98:aa:66:da:83:32:20:7a:ed:66:88:72:
e7:8b:ac:f0:e3:2e:0d:ab:7c:c1:c4:a8:41:b0:ed:
7f:09:25:4a:db:34:10:0f:1e:b9:18:17:2e:2f:1f:
b7:52:51:d1:88:77:e4:6e:4b:a3:17:c4:a1:68:79:
8d:30:a2:79:36:7e:47:fb:46:91:ef:34:7a:88:0e:
b5:d8:85:1f:6d:81:5a:75:c7:d4:0d:b1:b9:7d:84:
5a:52:94:42:37:0f:d0:bb:f5:40:45:62:70:af:98:
e7:1c:4e:3d:b5:e5:7a:ef:ef:bb:7e:fb:03:c2:ed:
6f:38:02:74:98:5f:90:41:3f:e1:ab:26:b2:1a:fa:
b2:d9:67:4d:c4:a5:b6:f7:5c:64:16:27:4b:fb:c1:
ff:e4:76:d0:5c:5b:09:b7:6e:b8:3b:f0:19:dd:7e:
6c:25:d6:55:7b:8a:b5:4c:82:42:a1:0e:58:d6:08:
dd:f1:74:1b:5f:96:a4:27:b0:3f:d8:c4:3d:b6:8a:
e2:b1:aa:82:51:0a:1e:c0:a7:bf:bb:45:37:bf:81:
eb:fd:fd:dc:33:b1:7b:77:f6:b2:a4:44:44:eb:5d:
a3:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:0D:A5:85:A5:06:61:2A:46:B3:46:9C:7A:A0:D1:C7:B6:36:69:7C
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/pw2lhaUGYSpGs0aceqDRx7Y2aXw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.192.148.0/22
Signature Algorithm: sha256WithRSAEncryption
b8:3b:bf:53:6f:fb:cc:2a:52:c4:7e:79:f5:20:ae:ac:b8:80:
a1:a9:94:ea:ac:0c:d8:d3:8b:d9:8c:04:3d:7e:73:f6:3b:34:
cd:41:8e:3a:1f:c3:8a:82:01:b5:a7:02:c4:2a:b8:55:68:26:
ce:0f:47:60:5d:42:b3:59:43:af:5f:51:0b:b7:fa:b7:cd:33:
6a:8e:de:5d:3d:b3:88:aa:b5:03:da:00:a4:6d:80:f1:fe:3a:
bb:87:11:20:70:c8:e5:ac:d1:14:5b:1c:7e:1e:77:48:12:73:
8a:16:63:dd:6c:d2:93:ca:da:c5:14:58:58:eb:91:1a:19:f3:
5b:46:a4:45:08:54:10:70:68:5d:f8:56:59:b8:25:e8:1d:58:
26:f6:8b:db:6f:9f:c6:e7:51:7f:74:c2:f5:eb:6f:f7:eb:4c:
ca:ba:ca:d7:a6:a8:cf:a7:47:17:98:87:b1:4b:24:9f:3b:c5:
b5:0a:c6:98:ee:c6:c5:1b:b7:01:3c:2e:64:d8:3a:ed:ad:17:
7b:8d:d0:83:69:26:7c:b0:54:a8:df:56:f6:a2:5e:56:7c:ce:
66:fc:1c:b5:1a:a4:8e:23:76:22:fe:27:14:05:4f:5b:d6:fb:
a8:e7:36:69:0a:bc:6d:bb:78:39:2b:9b:f2:93:fd:2f:5d:5e:
3e:ba:ff:c2
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICFLEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMTAyMDcx
MTU5NDFaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEE3MERBNTg1QTUwNjYx
MkE0NkIzNDY5QzdBQTBEMUM3QjYzNjY5N0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC1GSYWUnLm8VbWus6W24QKIoUnteL577UjJcpGo2hVDZiqZtqD
MiB67WaIcueLrPDjLg2rfMHEqEGw7X8JJUrbNBAPHrkYFy4vH7dSUdGId+RuS6MX
xKFoeY0wonk2fkf7RpHvNHqIDrXYhR9tgVp1x9QNsbl9hFpSlEI3D9C79UBFYnCv
mOccTj215Xrv77t++wPC7W84AnSYX5BBP+GrJrIa+rLZZ03Epbb3XGQWJ0v7wf/k
dtBcWwm3brg78Bndfmwl1lV7irVMgkKhDljWCN3xdBtflqQnsD/YxD22iuKxqoJR
Ch7Ap7+7RTe/gev9/dwzsXt39rKkRETrXaNlAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUpw2lhaUGYSpGs0aceqDRx7Y2aXwwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3B3MmxoYVVHWVNwR3MwYWNl
cURSeDdZMmFYdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7
wJQwDQYJKoZIhvcNAQELBQADggEBALg7v1Nv+8wqUsR+efUgrqy4gKGplOqsDNjT
i9mMBD1+c/Y7NM1Bjjofw4qCAbWnAsQquFVoJs4PR2BdQrNZQ69fUQu3+rfNM2qO
3l09s4iqtQPaAKRtgPH+OruHESBwyOWs0RRbHH4ed0gSc4oWY91s0pPK2sUUWFjr
kRoZ81tGpEUIVBBwaF34Vlm4JegdWCb2i9tvn8bnUX90wvXrb/frTMq6ytemqM+n
RxeYh7FLJJ87xbUKxpjuxsUbtwE8LmTYOu2tF3uN0INpJnywVKjfVvaiXlZ8zmb8
HLUapI4jdiL+JxQFT1vW+6jnNmkKvG27eDkrm/KT/S9dXj66/8I=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:40 2023 by rpki-client on console-fra.rpki-client.org