Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/zVFIUGH_hVtUbMqOmmfQ18-vyYc.roa
File: zVFIUGH_hVtUbMqOmmfQ18-vyYc.roa (raw, json)
Hash identifier: dg2LFeZbhgGPKEnXAuVIA9E9mCDOF/n26GDLwk5JXJY=
Subject key identifier: CD:51:48:50:61:FF:85:5B:54:6C:CA:8E:9A:67:D0:D7:CF:AF:C9:87
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2027
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/zVFIUGH_hVtUbMqOmmfQ18-vyYc.roa
Signing time: Fri 25 Nov 2022 04:38:23 +0000
ROA not before: Fri 25 Nov 2022 04:38:23 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 118.232.168.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8231 (0x2027)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:38:23 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=CD51485061FF855B546CCA8E9A67D0D7CFAFC987
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:a2:55:10:f3:60:c8:d4:a9:03:d1:0c:83:43:
a1:e8:f8:10:f9:d1:44:67:b6:3f:8b:41:79:3d:71:
b6:81:d9:dc:bc:39:9b:2e:6c:a0:79:2a:73:6e:5e:
dd:d3:e1:fd:2e:8b:fb:cb:0b:b6:8d:00:f7:bb:fd:
2c:69:bb:95:98:5d:7f:c0:05:5f:42:e1:59:c9:b1:
71:45:f6:54:01:07:4b:24:64:8e:77:c6:e5:ca:e3:
5f:29:cf:5e:5c:1d:c4:d5:65:a3:22:a6:ef:68:3d:
cb:f7:39:4b:3e:65:ea:e2:c4:5f:66:1d:20:f9:2e:
8a:ad:cc:20:b2:c3:e7:52:12:bb:83:21:b5:73:fe:
44:4e:e4:3c:ee:66:45:21:af:18:9a:11:d3:25:aa:
55:c0:a3:5c:e5:6d:d4:e5:5f:a5:62:0f:ab:a8:bd:
90:07:be:80:61:57:88:5e:cf:a5:f5:49:1c:ff:cf:
40:b0:05:3a:e0:87:6f:55:01:86:d0:8e:a8:9d:3c:
ab:ff:07:38:53:c9:7e:e4:ba:e4:a8:27:a6:d5:6a:
2b:a8:92:6d:6e:04:d4:86:8d:1a:85:8e:81:60:66:
8d:77:9c:b1:ac:44:4d:1a:89:55:cb:1a:a9:bb:ef:
8d:ce:c0:f2:c7:e9:ef:66:f3:5c:fe:f5:90:53:ae:
28:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:51:48:50:61:FF:85:5B:54:6C:CA:8E:9A:67:D0:D7:CF:AF:C9:87
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/zVFIUGH_hVtUbMqOmmfQ18-vyYc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.168.0/21
Signature Algorithm: sha256WithRSAEncryption
4d:5d:c2:bd:0f:88:0d:08:6d:77:e3:56:f0:00:87:5c:b1:25:
6a:16:a5:1e:62:8d:dd:55:8b:3c:69:a1:69:4d:dc:4b:b1:65:
c0:91:5a:ae:f1:6a:de:89:3a:4f:89:eb:bf:b9:a6:c1:a7:f8:
e6:1e:d0:4d:f2:fa:99:38:4c:8c:3f:00:fe:fe:67:4d:78:a8:
d3:dc:43:82:5f:c7:5a:25:99:f5:cc:ea:89:3c:6c:09:43:d9:
33:4e:95:04:69:b9:73:81:c9:ef:92:96:a0:e4:08:3d:78:55:
24:fd:3d:78:10:de:1f:bc:53:a1:ff:12:15:1a:b5:15:3a:14:
7a:3a:88:51:ed:01:c6:f5:5c:55:7a:3c:d6:6b:4f:47:0c:d7:
c6:42:f9:9f:cf:0c:b8:4a:59:be:cc:54:7d:55:78:cb:31:ec:
0a:50:e3:10:5e:59:19:de:20:ee:46:84:2f:ad:f5:9a:21:e6:
d8:ab:30:7b:66:87:6f:89:f4:72:c1:01:7d:68:c2:40:f7:1b:
79:ff:af:5a:76:97:b7:1e:dc:63:91:1b:a8:d2:dd:e0:62:48:
0f:e4:cd:96:d7:89:1b:0c:c7:fb:34:f1:01:5c:b0:6d:3c:f1:
65:ec:4d:6f:57:42:13:41:06:7a:8e:ad:05:82:a3:b6:ab:ee:
a0:69:5f:eb
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICICcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMjExMjUw
NDM4MjNaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKENENTE0ODUwNjFGRjg1
NUI1NDZDQ0E4RTlBNjdEMEQ3Q0ZBRkM5ODcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCqolUQ82DI1KkD0QyDQ6Ho+BD50URntj+LQXk9cbaB2dy8OZsu
bKB5KnNuXt3T4f0ui/vLC7aNAPe7/Sxpu5WYXX/ABV9C4VnJsXFF9lQBB0skZI53
xuXK418pz15cHcTVZaMipu9oPcv3OUs+ZerixF9mHSD5LoqtzCCyw+dSEruDIbVz
/kRO5DzuZkUhrxiaEdMlqlXAo1zlbdTlX6ViD6uovZAHvoBhV4hez6X1SRz/z0Cw
BTrgh29VAYbQjqidPKv/BzhTyX7kuuSoJ6bVaiuokm1uBNSGjRqFjoFgZo13nLGs
RE0aiVXLGqm7743OwPLH6e9m81z+9ZBTriibAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUzVFIUGH/hVtUbMqOmmfQ18+vyYcwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3pWRklVR0hfaFZ0VWJNcU9t
bWZRMTgtdnlZYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN2
6KgwDQYJKoZIhvcNAQELBQADggEBAE1dwr0PiA0IbXfjVvAAh1yxJWoWpR5ijd1V
izxpoWlN3EuxZcCRWq7xat6JOk+J67+5psGn+OYe0E3y+pk4TIw/AP7+Z014qNPc
Q4Jfx1olmfXM6ok8bAlD2TNOlQRpuXOBye+SlqDkCD14VST9PXgQ3h+8U6H/EhUa
tRU6FHo6iFHtAcb1XFV6PNZrT0cM18ZC+Z/PDLhKWb7MVH1VeMsx7ApQ4xBeWRne
IO5GhC+t9Zoh5tirMHtmh2+J9HLBAX1owkD3G3n/r1p2l7ce3GORG6jS3eBiSA/k
zZbXiRsMx/s08QFcsG088WXsTW9XQhNBBnqOrQWCo7ar7qBpX+s=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:36:20 2025 by rpki-client