Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/qfZdPD8b-OfCCXNtFBGgS59TyW8.roa
File: qfZdPD8b-OfCCXNtFBGgS59TyW8.roa (raw, json)
Hash identifier: Y3stROL0KW/LtNIZuhLXhZfNRdVTk5AG+plQY+i5VYs=
Subject key identifier: A9:F6:5D:3C:3F:1B:F8:E7:C2:09:73:6D:14:11:A0:4B:9F:53:C9:6F
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/qfZdPD8b-OfCCXNtFBGgS59TyW8.roa
Signing time: Thu 15 Sep 2022 02:53:58 +0000
ROA not before: Thu 15 Sep 2022 02:53:58 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 118.232.208.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8098 (0x1fa2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:53:58 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A9F65D3C3F1BF8E7C209736D1411A04B9F53C96F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:00:ac:eb:02:86:50:81:32:b7:62:b1:1d:07:
94:de:80:88:38:9b:2f:ce:4d:f2:f1:fe:73:fd:9c:
22:19:b5:86:23:e1:3e:b1:79:40:c3:6c:f3:a5:ca:
8f:e0:13:f3:b6:be:a7:ef:21:d1:9f:d3:5c:a0:75:
12:69:dc:45:9f:21:d3:f5:02:04:27:18:0e:94:ef:
39:12:24:69:38:49:f6:a5:3f:47:5e:65:f1:35:44:
a1:39:b2:78:6b:21:e8:1c:10:73:f5:e8:e9:66:ac:
61:a7:5e:45:6d:ab:a8:b0:6e:38:e7:34:5a:15:a9:
70:3a:c3:db:e4:8a:ee:01:f5:5b:8c:70:dc:b1:b1:
c8:c7:e3:6c:6f:2e:0b:aa:f1:40:3b:37:0b:ed:1a:
55:ba:c6:71:c9:38:ac:26:5b:1b:8d:ba:c5:03:45:
fc:1a:7b:7f:f9:92:c9:c6:35:39:c9:3a:09:34:81:
f1:d6:81:03:a4:ee:8e:44:c1:e3:51:12:b4:03:7c:
53:c9:f4:10:e6:9a:0e:ba:77:5a:d3:c9:01:3b:d1:
85:2f:29:41:4d:97:6a:4c:ba:01:11:f3:c4:4b:26:
3d:7a:8a:00:b0:21:e3:87:6e:ca:a4:b2:39:63:9f:
39:8b:45:8f:d0:8a:da:99:22:34:7e:e9:5c:7d:5b:
f6:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:F6:5D:3C:3F:1B:F8:E7:C2:09:73:6D:14:11:A0:4B:9F:53:C9:6F
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/qfZdPD8b-OfCCXNtFBGgS59TyW8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.208.0/21
Signature Algorithm: sha256WithRSAEncryption
54:7a:03:48:c2:c8:9b:8e:c1:bb:c1:f4:3c:67:a3:7b:eb:e3:
ee:3f:f0:ff:d3:d4:f9:05:4b:69:6b:c1:9e:51:74:99:83:a8:
d2:04:fa:f3:7f:0b:57:4c:e9:5c:cf:82:74:cf:ea:72:7c:8f:
b8:3a:c9:59:ef:3a:78:cc:1c:b9:35:0c:04:34:79:3c:fd:aa:
c0:86:9b:de:0a:e4:c2:d1:ee:cf:d9:75:48:d2:10:a9:d9:e5:
0c:a4:86:35:d4:53:14:be:38:92:68:fa:22:ba:39:e8:9e:7e:
62:7c:97:ad:00:e7:b9:24:60:af:b4:ed:66:e2:28:5a:b2:0c:
9c:25:78:04:b2:f4:df:da:f6:19:0c:87:7f:23:e9:17:5c:30:
5c:89:bd:2b:7e:2d:b0:9d:1b:86:2f:b6:ec:ca:2f:72:9a:b6:
90:2b:df:1c:0c:23:00:e0:12:92:db:59:87:7e:56:5a:54:84:
c5:63:e1:df:0b:a0:80:bc:dc:14:23:26:2a:3b:1f:e9:d5:5f:
19:2d:ee:e5:b5:5c:56:54:a1:e2:67:9c:0e:a9:f3:51:9e:0e:
83:f0:62:f0:48:cd:fb:fe:48:2d:80:31:6d:d8:1b:d6:63:e4:
bc:52:b0:a9:b7:69:55:0e:b0:1d:20:e7:b1:a7:f6:4f:ee:7b:
92:79:2e:5f
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICH6IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMjA5MTUw
MjUzNThaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEE5RjY1RDNDM0YxQkY4
RTdDMjA5NzM2RDE0MTFBMDRCOUY1M0M5NkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCvAKzrAoZQgTK3YrEdB5TegIg4my/OTfLx/nP9nCIZtYYj4T6x
eUDDbPOlyo/gE/O2vqfvIdGf01ygdRJp3EWfIdP1AgQnGA6U7zkSJGk4SfalP0de
ZfE1RKE5snhrIegcEHP16OlmrGGnXkVtq6iwbjjnNFoVqXA6w9vkiu4B9VuMcNyx
scjH42xvLguq8UA7NwvtGlW6xnHJOKwmWxuNusUDRfwae3/5ksnGNTnJOgk0gfHW
gQOk7o5EweNRErQDfFPJ9BDmmg66d1rTyQE70YUvKUFNl2pMugER88RLJj16igCw
IeOHbsqksjljnzmLRY/QitqZIjR+6Vx9W/YvAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUqfZdPD8b+OfCCXNtFBGgS59TyW8wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3FmWmRQRDhiLU9mQ0NYTnRG
QkdnUzU5VHlXOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN2
6NAwDQYJKoZIhvcNAQELBQADggEBAFR6A0jCyJuOwbvB9Dxno3vr4+4/8P/T1PkF
S2lrwZ5RdJmDqNIE+vN/C1dM6VzPgnTP6nJ8j7g6yVnvOnjMHLk1DAQ0eTz9qsCG
m94K5MLR7s/ZdUjSEKnZ5QykhjXUUxS+OJJo+iK6OeiefmJ8l60A57kkYK+07Wbi
KFqyDJwleASy9N/a9hkMh38j6RdcMFyJvSt+LbCdG4YvtuzKL3KatpAr3xwMIwDg
EpLbWYd+VlpUhMVj4d8LoIC83BQjJio7H+nVXxkt7uW1XFZUoeJnnA6p81GeDoPw
YvBIzfv+SC2AMW3YG9Zj5LxSsKm3aVUOsB0g57Gn9k/ue5J5Ll8=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:40 2024 by rpki-client on console-ams.rpki-client.org