Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/sje72km8YXLAUVSkX_zc_WKnhRc.roa
File: sje72km8YXLAUVSkX_zc_WKnhRc.roa (raw, json)
Hash identifier: fohPT8JFDXDmhDYABwZEENrZOc6n8qSq1kp875P0RqQ=
Subject key identifier: B2:37:BB:DA:49:BC:61:72:C0:51:54:A4:5F:FC:DC:FD:62:A7:85:17
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1453
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/sje72km8YXLAUVSkX_zc_WKnhRc.roa
Signing time: Sun 07 Feb 2021 11:58:12 +0000
ROA not before: Sun 07 Feb 2021 11:58:12 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 123.193.216.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5203 (0x1453)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Feb 7 11:58:12 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B237BBDA49BC6172C05154A45FFCDCFD62A78517
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:2a:53:a3:ba:cf:7a:60:e6:c0:7f:06:ee:43:
1e:f6:88:08:2a:12:ae:e5:5c:26:01:ad:e6:61:82:
cf:58:d6:eb:a6:46:27:f7:5a:cd:17:9b:21:fd:fa:
73:c3:37:22:0d:84:38:e1:db:82:51:4b:20:a1:d2:
e7:3d:a1:0c:fe:f7:4a:fe:0e:3f:e7:ed:fa:b5:04:
8c:1f:75:32:68:96:f4:3b:36:fa:f5:da:b6:f7:0a:
34:e6:29:f8:1b:47:18:e4:7f:6c:45:3d:90:45:f9:
e5:5e:8e:12:0b:7a:07:f2:2c:25:ae:95:8c:07:74:
39:f5:0b:5d:b3:78:74:66:6a:9b:23:40:06:f2:17:
38:20:bf:85:4d:f2:48:c4:93:dc:eb:c3:5b:bc:07:
14:1d:12:a0:44:a7:1a:3a:89:f5:fb:db:b2:1d:0c:
e1:8b:b8:b8:09:2e:91:96:f5:3d:61:56:32:1a:38:
9d:18:b1:0f:88:4e:5f:bc:6a:02:50:dc:1d:20:4d:
b5:4d:e5:d2:15:98:0e:1d:d7:b4:87:ec:96:d1:9e:
9f:f0:7c:12:00:fc:b1:cc:e7:72:5e:53:79:72:c8:
46:59:82:fa:39:50:bc:f4:de:e6:55:32:75:c8:93:
17:2a:56:66:70:ff:89:e2:a4:cc:51:dd:db:8e:f1:
1e:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:37:BB:DA:49:BC:61:72:C0:51:54:A4:5F:FC:DC:FD:62:A7:85:17
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/sje72km8YXLAUVSkX_zc_WKnhRc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.216.0/21
Signature Algorithm: sha256WithRSAEncryption
a0:9c:3d:c6:52:4f:87:c0:7e:06:8c:84:ec:98:46:c7:1d:b2:
17:b4:32:ab:65:b7:94:5d:16:83:c6:31:04:18:a9:4b:d2:59:
65:d4:fd:3c:a4:54:af:2a:fb:21:87:5a:aa:b3:9b:74:fa:45:
5f:5a:8a:f0:62:db:d6:2e:8b:ac:32:6f:28:bd:80:5d:b9:65:
dd:38:fa:45:d0:76:10:4a:ab:8a:98:b9:ef:75:f5:fb:46:1a:
79:19:15:7a:b8:ee:a7:03:0e:c9:8e:c4:95:68:e9:26:c9:71:
74:d4:66:eb:39:22:d5:69:2e:d5:70:80:5d:2a:ce:21:60:e7:
d3:06:a6:d0:76:d9:e6:34:22:92:b5:03:a6:8d:0a:f5:64:3b:
54:09:db:c2:75:49:f5:1f:f1:66:e8:97:ac:f6:ac:a7:f0:8a:
16:eb:c6:e0:db:cb:fa:1c:90:f2:3f:e1:f5:42:e9:71:27:ce:
a1:1a:1b:f1:1e:50:a1:65:13:25:dd:2a:9f:22:bb:be:83:cd:
87:58:f3:4f:65:4b:37:9a:f4:7a:da:82:46:89:5d:11:0f:15:
7e:11:5d:ca:d9:5d:8e:2b:7b:fb:69:2e:99:e6:b0:5f:46:d0:
2a:e3:46:9a:58:ec:24:6a:93:9a:84:a5:6b:65:23:dc:8c:24:
9a:97:5a:69
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICFFMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMTAyMDcx
MTU4MTJaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEIyMzdCQkRBNDlCQzYx
NzJDMDUxNTRBNDVGRkNEQ0ZENjJBNzg1MTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCpKlOjus96YObAfwbuQx72iAgqEq7lXCYBreZhgs9Y1uumRif3
Ws0XmyH9+nPDNyINhDjh24JRSyCh0uc9oQz+90r+Dj/n7fq1BIwfdTJolvQ7Nvr1
2rb3CjTmKfgbRxjkf2xFPZBF+eVejhILegfyLCWulYwHdDn1C12zeHRmapsjQAby
Fzggv4VN8kjEk9zrw1u8BxQdEqBEpxo6ifX727IdDOGLuLgJLpGW9T1hVjIaOJ0Y
sQ+ITl+8agJQ3B0gTbVN5dIVmA4d17SH7JbRnp/wfBIA/LHM53JeU3lyyEZZgvo5
ULz03uZVMnXIkxcqVmZw/4nipMxR3duO8R6bAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUsje72km8YXLAUVSkX/zc/WKnhRcwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3NqZTcya204WVhMQVVWU2tY
X3pjX1dLbmhSYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7
wdgwDQYJKoZIhvcNAQELBQADggEBAKCcPcZST4fAfgaMhOyYRscdshe0Mqtlt5Rd
FoPGMQQYqUvSWWXU/TykVK8q+yGHWqqzm3T6RV9aivBi29Yui6wybyi9gF25Zd04
+kXQdhBKq4qYue919ftGGnkZFXq47qcDDsmOxJVo6SbJcXTUZus5ItVpLtVwgF0q
ziFg59MGptB22eY0IpK1A6aNCvVkO1QJ28J1SfUf8Wbol6z2rKfwihbrxuDby/oc
kPI/4fVC6XEnzqEaG/EeUKFlEyXdKp8iu76DzYdY809lSzea9HragkaJXREPFX4R
XcrZXY4re/tpLpnmsF9G0CrjRppY7CRqk5qEpWtlI9yMJJqXWmk=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:59 2024 by rpki-client on console-fra.rpki-client.org