Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/rCbAaiU8j0nwomt7mYPezy9IFLs.roa
File: rCbAaiU8j0nwomt7mYPezy9IFLs.roa (raw, json)
Hash identifier: 1GT2uMNSIOb0oADknqGP0ep5XoFxuifB1073otbxx6g=
Subject key identifier: AC:26:C0:6A:25:3C:8F:49:F0:A2:6B:7B:99:83:DE:CF:2F:48:14:BB
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 21CB
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/rCbAaiU8j0nwomt7mYPezy9IFLs.roa
Signing time: Fri 25 Nov 2022 04:40:25 +0000
ROA not before: Fri 25 Nov 2022 04:40:25 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.194.112.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8651 (0x21cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:40:25 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=AC26C06A253C8F49F0A26B7B9983DECF2F4814BB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:fc:77:7e:29:70:8c:52:05:d4:3b:ac:b5:ae:
0a:99:e2:2a:a3:1c:54:53:e0:14:b4:37:58:bf:97:
cf:67:22:53:d8:cf:41:b5:59:72:44:1c:ef:66:3a:
8a:9a:73:b6:92:27:e8:1e:bf:c7:d1:76:59:32:74:
b9:f9:16:ba:5f:8b:08:07:c3:df:b2:2a:45:cc:77:
6d:2e:cf:f6:3b:13:90:ee:f8:65:95:ff:75:aa:46:
a1:61:6a:77:28:e9:ec:b3:e7:1c:d2:ae:0b:b8:c0:
e4:9c:be:bf:d5:c6:16:53:ce:9c:e4:69:69:45:e9:
b1:b1:8b:e7:d9:93:3e:c4:ea:b4:52:dd:8f:09:ae:
73:d9:58:bd:f9:19:94:7c:c6:5f:65:4c:2e:29:2b:
ea:96:d9:3c:c3:4c:30:b8:55:40:64:a2:f9:c7:4c:
ef:1e:57:8c:54:b1:bc:fd:b2:26:a3:f5:15:fb:8a:
b5:ae:31:db:87:6e:82:ee:6a:68:7d:2e:01:c7:a3:
94:61:e6:7f:a3:ff:88:17:37:13:83:32:e1:85:c4:
07:bc:09:19:0a:33:a9:0e:90:0b:4a:16:f5:57:25:
68:f2:48:bc:2e:ec:37:e5:23:b2:4d:1c:29:23:cf:
fe:4c:fc:87:c1:9c:c1:66:be:f6:77:af:d2:a8:49:
d5:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:26:C0:6A:25:3C:8F:49:F0:A2:6B:7B:99:83:DE:CF:2F:48:14:BB
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/rCbAaiU8j0nwomt7mYPezy9IFLs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.112.0/21
Signature Algorithm: sha256WithRSAEncryption
7a:05:07:08:c2:11:17:4e:78:79:26:59:c6:64:e5:da:ee:9c:
b1:1e:8b:8e:c2:89:b8:6c:80:89:56:30:97:65:59:0b:4b:84:
0d:fe:18:1b:21:70:3c:7a:9a:73:d9:fd:9f:2c:ce:0f:01:40:
37:a9:e5:aa:0a:b5:00:f8:b0:27:21:06:c0:45:e5:ab:e2:0a:
e6:86:9b:b8:d9:ff:76:1f:18:d8:9b:fb:6d:1b:bb:d2:99:6d:
80:4f:d9:25:25:be:3d:2c:94:33:7d:dd:8f:10:b5:c6:b1:fd:
b8:97:ab:e3:f5:b4:4a:30:ab:32:eb:6f:05:91:76:ff:99:44:
44:f1:5b:c1:88:3a:d8:56:4f:79:37:a4:7e:54:5d:ad:53:bf:
d1:2d:5c:09:70:af:60:50:bb:49:a2:41:12:9e:b9:a2:cc:e3:
23:cd:b6:2d:ff:5f:80:ef:ea:99:95:36:48:1b:45:4c:91:e9:
ca:1f:d8:f9:49:ac:f8:00:c8:85:ef:61:a6:eb:57:e9:a4:fb:
2b:bb:19:34:85:5c:4b:98:9a:89:01:98:93:f6:3b:38:4d:fb:
ce:59:04:90:1a:14:fb:27:41:3e:e2:b2:2b:03:24:3e:6c:f3:
d0:9e:56:9c:b7:c6:bb:40:86:b7:ed:40:99:22:cd:ac:ad:2a:
89:23:17:90
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICIcswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMjExMjUw
NDQwMjVaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEFDMjZDMDZBMjUzQzhG
NDlGMEEyNkI3Qjk5ODNERUNGMkY0ODE0QkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC9/Hd+KXCMUgXUO6y1rgqZ4iqjHFRT4BS0N1i/l89nIlPYz0G1
WXJEHO9mOoqac7aSJ+gev8fRdlkydLn5FrpfiwgHw9+yKkXMd20uz/Y7E5Du+GWV
/3WqRqFhanco6eyz5xzSrgu4wOScvr/VxhZTzpzkaWlF6bGxi+fZkz7E6rRS3Y8J
rnPZWL35GZR8xl9lTC4pK+qW2TzDTDC4VUBkovnHTO8eV4xUsbz9siaj9RX7irWu
MduHboLuamh9LgHHo5Rh5n+j/4gXNxODMuGFxAe8CRkKM6kOkAtKFvVXJWjySLwu
7DflI7JNHCkjz/5M/IfBnMFmvvZ3r9KoSdUbAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUrCbAaiU8j0nwomt7mYPezy9IFLswHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3JDYkFhaVU4ajBud29tdDdt
WVBlenk5SUZMcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7
wnAwDQYJKoZIhvcNAQELBQADggEBAHoFBwjCERdOeHkmWcZk5drunLEei47Cibhs
gIlWMJdlWQtLhA3+GBshcDx6mnPZ/Z8szg8BQDep5aoKtQD4sCchBsBF5aviCuaG
m7jZ/3YfGNib+20bu9KZbYBP2SUlvj0slDN93Y8Qtcax/biXq+P1tEowqzLrbwWR
dv+ZRETxW8GIOthWT3k3pH5UXa1Tv9EtXAlwr2BQu0miQRKeuaLM4yPNti3/X4Dv
6pmVNkgbRUyR6cof2PlJrPgAyIXvYabrV+mk+yu7GTSFXEuYmokBmJP2OzhN+85Z
BJAaFPsnQT7isisDJD5s89CeVpy3xrtAhrftQJkizaytKokjF5A=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:12:04 2025 by rpki-client