Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/zPhaTvzY099mROGxsnVm5wpBzkc.roa
File: zPhaTvzY099mROGxsnVm5wpBzkc.roa (raw, json)
Hash identifier: kTKIqszFanYkstoa3IkYoiCmGHHloIYgFldSWKW+TYA=
Subject key identifier: CC:F8:5A:4E:FC:D8:D3:DF:66:44:E1:B1:B2:75:66:E7:0A:41:CE:47
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1AF8
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/zPhaTvzY099mROGxsnVm5wpBzkc.roa
Signing time: Wed 29 Sep 2021 02:45:58 +0000
ROA not before: Wed 29 Sep 2021 02:45:58 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 123.192.144.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6904 (0x1af8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:45:58 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=CCF85A4EFCD8D3DF6644E1B1B27566E70A41CE47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:a7:c7:0c:b5:e5:e5:b6:ed:43:f2:70:41:df:
6d:7a:d5:dc:3c:c1:71:b2:dc:b2:b4:d8:74:26:e7:
a2:66:ce:14:62:70:92:77:6f:9a:f0:1c:b1:16:29:
0b:5a:34:d6:95:cc:31:02:96:93:2b:1a:c9:27:f8:
84:01:d6:15:34:a1:be:19:f3:43:8b:ce:3a:4b:85:
1f:07:be:90:8f:02:bc:77:64:cf:84:0f:ba:27:4f:
27:3b:14:61:37:71:5d:e3:0d:bd:7c:47:80:6c:b3:
28:a1:23:74:47:e5:6c:d9:76:2d:ae:b3:8a:51:c1:
bd:41:6a:fa:93:a0:6e:e5:74:a7:96:b9:f7:de:38:
65:aa:b1:11:15:73:1d:f6:43:62:06:65:bd:5d:cf:
7c:99:0e:d8:32:ae:6e:33:73:d6:99:b9:40:1c:af:
3a:45:05:37:b8:53:de:78:82:24:20:fb:6b:75:7d:
32:66:ed:a0:ca:6c:25:b2:e1:d6:7d:fe:49:eb:f9:
e4:bd:84:37:03:e3:d9:5c:7a:39:4e:77:ff:d6:32:
ca:21:50:3f:fd:46:55:f5:bd:b2:c8:66:d6:f1:39:
10:c2:0f:13:4c:1f:c5:33:e4:41:ed:cf:a3:dc:9b:
91:a1:e3:ca:43:bb:89:1f:2e:55:20:ad:64:d1:64:
e8:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:F8:5A:4E:FC:D8:D3:DF:66:44:E1:B1:B2:75:66:E7:0A:41:CE:47
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/zPhaTvzY099mROGxsnVm5wpBzkc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.192.144.0/21
Signature Algorithm: sha256WithRSAEncryption
2c:c3:f8:f7:ac:82:50:a6:01:c9:33:e3:be:88:ae:56:f4:21:
e5:ad:9c:bd:d0:5b:08:75:f9:58:22:2a:5f:fc:1b:16:44:0d:
7a:24:b4:59:92:a0:65:51:2a:ff:06:17:29:9b:3a:d6:62:40:
42:77:0d:1f:e7:3a:6a:2a:0d:4c:21:12:f0:06:48:ad:91:e9:
78:69:e0:2e:60:5d:41:34:00:ba:e4:dc:bf:bc:db:73:01:38:
68:b9:eb:9f:fb:45:16:55:29:bc:5b:ec:d8:d9:cb:a4:4c:54:
a3:af:4b:d8:70:76:c8:fa:d0:d6:6d:aa:5f:f3:fa:c3:a6:00:
45:60:f8:a1:5a:6c:d9:3a:c6:fa:4b:1f:00:a2:17:38:04:37:
d9:08:b3:12:a7:83:8e:d2:80:92:e3:83:f6:59:26:e3:20:9c:
e7:2e:d7:6b:23:1f:28:b5:7d:91:92:77:1d:9c:e2:ef:09:2f:
01:85:45:23:f6:0d:4d:86:fc:87:03:76:14:38:d0:df:b7:3d:
4d:a0:bf:ed:1e:e9:dd:f3:34:1f:eb:53:3b:fd:d4:d0:61:62:
97:35:eb:64:7e:36:5e:59:f7:37:b8:3f:a8:47:b8:b1:f2:0b:
b4:59:01:80:a4:a4:08:5d:26:d9:7c:36:f8:5f:a2:d5:7e:64:
8f:ca:85:1d
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICGvgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMTA5Mjkw
MjQ1NThaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKENDRjg1QTRFRkNEOEQz
REY2NjQ0RTFCMUIyNzU2NkU3MEE0MUNFNDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDPp8cMteXltu1D8nBB32161dw8wXGy3LK02HQm56JmzhRicJJ3
b5rwHLEWKQtaNNaVzDEClpMrGskn+IQB1hU0ob4Z80OLzjpLhR8HvpCPArx3ZM+E
D7onTyc7FGE3cV3jDb18R4BssyihI3RH5WzZdi2us4pRwb1BavqToG7ldKeWuffe
OGWqsREVcx32Q2IGZb1dz3yZDtgyrm4zc9aZuUAcrzpFBTe4U954giQg+2t1fTJm
7aDKbCWy4dZ9/knr+eS9hDcD49lcejlOd//WMsohUD/9RlX1vbLIZtbxORDCDxNM
H8Uz5EHtz6Pcm5Gh48pDu4kfLlUgrWTRZOgFAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUzPhaTvzY099mROGxsnVm5wpBzkcwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3pQaGFUdnpZMDk5bVJPR3hz
blZtNXdwQnprYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7
wJAwDQYJKoZIhvcNAQELBQADggEBACzD+PesglCmAckz476Irlb0IeWtnL3QWwh1
+VgiKl/8GxZEDXoktFmSoGVRKv8GFymbOtZiQEJ3DR/nOmoqDUwhEvAGSK2R6Xhp
4C5gXUE0ALrk3L+823MBOGi565/7RRZVKbxb7NjZy6RMVKOvS9hwdsj60NZtql/z
+sOmAEVg+KFabNk6xvpLHwCiFzgEN9kIsxKng47SgJLjg/ZZJuMgnOcu12sjHyi1
fZGSdx2c4u8JLwGFRSP2DU2G/IcDdhQ40N+3PU2gv+0e6d3zNB/rUzv91NBhYpc1
62R+Nl5Z9ze4P6hHuLHyC7RZAYCkpAhdJtl8NvhfotV+ZI/KhR0=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:43 2024 by rpki-client on console-ams.rpki-client.org