Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/u1IbBBnhjv0iSNJruFZC-UXuuNM.roa
File: u1IbBBnhjv0iSNJruFZC-UXuuNM.roa (raw, json)
Hash identifier: dPgQVPYWn+GNxKUpqhKOiPqeWcBqRPr7gi4Ta8PH/7o=
Subject key identifier: BB:52:1B:04:19:E1:8E:FD:22:48:D2:6B:B8:56:42:F9:45:EE:B8:D3
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 0DC8
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/u1IbBBnhjv0iSNJruFZC-UXuuNM.roa
Signing time: Tue 29 Sep 2020 09:54:59 +0000
ROA not before: Tue 29 Sep 2020 09:54:59 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 123.194.216.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3528 (0xdc8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 09:54:59 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=BB521B0419E18EFD2248D26BB85642F945EEB8D3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:3d:36:32:e7:fd:01:aa:00:17:97:81:16:26:
10:f4:41:ce:e2:97:79:2d:81:f9:f7:e9:71:85:36:
12:64:ac:bb:2f:f3:a1:b4:8c:6c:bc:9f:bd:98:37:
44:af:30:2d:fd:1c:8b:20:cf:66:a6:b4:d2:56:5c:
0b:2c:46:8a:b3:f9:93:f4:cf:ea:aa:aa:d2:e2:08:
58:df:4a:b2:57:58:ea:5a:89:0e:32:fd:d0:17:28:
5b:e1:d7:3c:8c:f9:1d:b2:ce:39:19:96:b9:59:24:
a3:5f:22:fb:f5:d4:2a:e6:64:b1:22:cf:9a:aa:10:
ca:2d:1f:3b:5c:42:09:98:2d:a8:ed:cd:6d:46:c3:
35:fa:1f:35:65:9d:44:08:26:1a:78:8d:86:ec:0f:
53:6f:36:3a:00:06:0f:cc:e9:59:29:13:f4:8c:5a:
05:5b:83:15:98:b2:9d:aa:9a:d0:25:7d:f0:a8:6f:
82:41:f5:15:84:96:81:8b:37:02:bf:bc:59:c2:62:
18:8f:e3:da:a9:e5:6c:fa:aa:b1:7f:c4:cd:27:40:
42:22:0d:32:b1:7a:86:60:9f:0d:cb:3a:72:2c:c2:
1a:05:3a:42:d5:1e:18:75:d9:12:9f:9a:83:0e:cf:
a8:2a:57:c7:d4:7d:83:a1:67:3e:39:a6:8a:ba:ff:
d1:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:52:1B:04:19:E1:8E:FD:22:48:D2:6B:B8:56:42:F9:45:EE:B8:D3
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/u1IbBBnhjv0iSNJruFZC-UXuuNM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.216.0/21
Signature Algorithm: sha256WithRSAEncryption
b9:99:11:2f:1c:9b:17:42:d3:1d:0e:14:c9:0f:43:9b:50:a5:
ce:58:9e:7d:62:37:7a:e0:04:ed:b9:2e:47:73:d9:2b:ac:c7:
e2:7e:92:75:90:1a:82:1a:1d:dd:28:26:f6:1c:5c:cc:53:9a:
73:28:cc:2a:1f:36:4a:c0:93:26:5a:39:86:20:4a:d5:92:94:
06:1f:e9:a7:9e:6a:63:29:5f:e4:53:4a:af:3a:70:e8:62:29:
e1:22:8d:53:69:a0:11:a4:ea:2e:94:d8:23:cc:32:73:bb:02:
54:b1:ba:d2:e4:5f:db:70:97:8c:4b:3a:f5:11:20:80:33:04:
26:b7:38:98:86:87:97:3e:27:c3:91:ed:e5:b2:f3:76:43:85:
8f:fa:6c:51:30:ea:d3:bc:fa:e5:f7:89:b7:ce:88:a5:2a:34:
d0:c6:41:0d:37:58:67:fb:32:44:24:e0:01:3a:b1:4d:71:6a:
e0:73:86:b1:20:1e:e8:f2:4b:74:d1:17:76:ce:8b:67:fa:09:
71:e3:b2:42:fb:ef:7f:8b:72:63:cb:21:e4:fe:b9:0d:98:a8:
38:b5:6b:a0:7d:05:fc:83:14:2a:fb:6e:70:ee:8d:2a:b5:e4:
d0:d6:5e:5f:a8:da:21:73:1b:5d:96:09:c3:6a:96:0c:58:61:
a1:b1:8d:4e
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICDcgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMDA5Mjkw
OTU0NTlaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEJCNTIxQjA0MTlFMThF
RkQyMjQ4RDI2QkI4NTY0MkY5NDVFRUI4RDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDePTYy5/0BqgAXl4EWJhD0Qc7il3ktgfn36XGFNhJkrLsv86G0
jGy8n72YN0SvMC39HIsgz2amtNJWXAssRoqz+ZP0z+qqqtLiCFjfSrJXWOpaiQ4y
/dAXKFvh1zyM+R2yzjkZlrlZJKNfIvv11CrmZLEiz5qqEMotHztcQgmYLajtzW1G
wzX6HzVlnUQIJhp4jYbsD1NvNjoABg/M6VkpE/SMWgVbgxWYsp2qmtAlffCob4JB
9RWEloGLNwK/vFnCYhiP49qp5Wz6qrF/xM0nQEIiDTKxeoZgnw3LOnIswhoFOkLV
Hhh12RKfmoMOz6gqV8fUfYOhZz45poq6/9GVAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUu1IbBBnhjv0iSNJruFZC+UXuuNMwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3UxSWJCQm5oanYwaVNOSnJ1
RlpDLVVYdXVOTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7
wtgwDQYJKoZIhvcNAQELBQADggEBALmZES8cmxdC0x0OFMkPQ5tQpc5Ynn1iN3rg
BO25Lkdz2Susx+J+knWQGoIaHd0oJvYcXMxTmnMozCofNkrAkyZaOYYgStWSlAYf
6aeeamMpX+RTSq86cOhiKeEijVNpoBGk6i6U2CPMMnO7AlSxutLkX9twl4xLOvUR
IIAzBCa3OJiGh5c+J8OR7eWy83ZDhY/6bFEw6tO8+uX3ibfOiKUqNNDGQQ03WGf7
MkQk4AE6sU1xauBzhrEgHujyS3TRF3bOi2f6CXHjskL773+LcmPLIeT+uQ2YqDi1
a6B9BfyDFCr7bnDujSq15NDWXl+o2iFzG12WCcNqlgxYYaGxjU4=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:59 2024 by rpki-client on console-fra.rpki-client.org