Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/3mDGUdFrAS_FJrL-M9V0S3oM_s4.roa
File: 3mDGUdFrAS_FJrL-M9V0S3oM_s4.roa (raw, json)
Hash identifier: pIHPfJQ55+l4fJFD2mGIzgmGbv6fSVAwkB11imb5Uvs=
Subject key identifier: DE:60:C6:51:D1:6B:01:2F:C5:26:B2:FE:33:D5:74:4B:7A:0C:FE:CE
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 090F
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/3mDGUdFrAS_FJrL-M9V0S3oM_s4.roa
Signing time: Tue 29 Sep 2020 10:01:25 +0000
ROA not before: Tue 29 Sep 2020 10:01:25 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131142
IP address blocks: 203.79.204.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2319 (0x90f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:25 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=DE60C651D16B012FC526B2FE33D5744B7A0CFECE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:d2:bd:5d:b4:41:4d:0b:f6:66:e0:f7:de:b7:
55:ee:9a:9e:b8:eb:a5:a7:5b:f8:b2:6f:b9:7c:98:
1d:da:11:50:8a:bd:88:a9:c5:56:06:48:75:4d:4c:
7f:5b:31:2e:3b:8b:be:a6:00:df:66:8c:6d:c7:3a:
75:75:e8:a9:58:6f:3e:27:57:39:19:04:91:da:66:
11:f6:6f:4b:8c:41:18:52:29:b2:9c:55:af:77:83:
46:15:f5:08:23:b0:f5:e6:c1:04:ea:1d:06:6a:45:
a3:b1:c9:88:64:31:3a:e0:57:cd:4b:22:ff:13:08:
f7:7a:dc:20:02:f5:a9:32:2d:df:09:5b:01:9b:53:
58:5f:09:36:97:aa:9e:af:4d:94:72:d2:6c:c7:98:
a1:75:cd:44:e7:c9:86:68:b5:67:b8:b6:93:f3:51:
b9:93:12:70:db:2a:1e:42:2d:72:e5:35:83:f2:0d:
95:2e:1f:72:56:11:ea:ea:b2:ae:0c:98:2d:7b:47:
77:9c:60:28:0f:a1:09:90:9d:df:09:1c:ed:09:25:
ec:2f:62:93:15:05:ea:62:35:59:52:f6:5c:f7:33:
d4:95:4d:50:da:4c:ab:ee:4d:d2:03:a7:a1:29:3d:
80:c6:2a:17:a0:f4:e8:58:67:fe:d6:e6:41:69:be:
3d:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:60:C6:51:D1:6B:01:2F:C5:26:B2:FE:33:D5:74:4B:7A:0C:FE:CE
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/3mDGUdFrAS_FJrL-M9V0S3oM_s4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.204.0/23
Signature Algorithm: sha256WithRSAEncryption
3d:96:e5:7e:b3:fe:f6:f1:de:75:34:14:dd:76:a8:15:93:02:
2b:55:ad:80:c7:6f:f1:4d:d1:ea:a6:06:19:ba:95:70:4d:de:
63:09:2c:54:23:06:eb:82:6a:5d:ac:71:01:7b:c4:8b:44:d8:
d5:06:05:f4:e4:17:20:e4:08:0b:26:15:29:82:43:83:dd:62:
a3:2b:97:5d:8d:1a:6a:a5:fa:e3:b0:a2:1b:a3:d6:84:69:75:
67:3d:85:f6:02:87:d8:c0:fe:df:62:cb:cd:75:f8:bd:84:5c:
75:9a:d8:d9:48:48:0a:e6:b1:5f:19:f2:8b:0a:e7:7f:24:8c:
7f:9f:f2:59:61:25:a2:ba:9a:14:07:05:05:1b:9a:b3:15:a0:
5d:3e:26:91:2f:72:0b:96:69:77:f2:2d:ce:96:09:04:0b:88:
eb:60:bd:32:36:1e:8a:66:bb:00:eb:a8:31:2b:17:ac:da:a0:
ae:a1:64:1f:ad:29:61:31:b4:4c:f1:f6:81:4e:e3:38:51:66:
86:b2:e9:b3:18:f4:99:e0:38:17:d3:39:8c:e8:01:1a:54:eb:
57:9a:00:28:7e:72:ac:20:1f:fc:36:47:79:9d:0e:3c:0d:17:
db:d7:4c:36:91:cd:22:3b:e0:e9:7d:0e:7f:80:89:bf:b5:fc:
f0:2d:e3:34
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCQ8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMDA5Mjkx
MDAxMjVaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKERFNjBDNjUxRDE2QjAx
MkZDNTI2QjJGRTMzRDU3NDRCN0EwQ0ZFQ0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDg0r1dtEFNC/Zm4Pfet1Xump6466WnW/iyb7l8mB3aEVCKvYip
xVYGSHVNTH9bMS47i76mAN9mjG3HOnV16KlYbz4nVzkZBJHaZhH2b0uMQRhSKbKc
Va93g0YV9QgjsPXmwQTqHQZqRaOxyYhkMTrgV81LIv8TCPd63CAC9akyLd8JWwGb
U1hfCTaXqp6vTZRy0mzHmKF1zUTnyYZotWe4tpPzUbmTEnDbKh5CLXLlNYPyDZUu
H3JWEerqsq4MmC17R3ecYCgPoQmQnd8JHO0JJewvYpMVBepiNVlS9lz3M9SVTVDa
TKvuTdIDp6EpPYDGKheg9OhYZ/7W5kFpvj3VAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQU3mDGUdFrAS/FJrL+M9V0S3oM/s4wHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvM21ER1VkRnJBU19GSnJMLU05VjBT
M29NX3M0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEActPzDAN
BgkqhkiG9w0BAQsFAAOCAQEAPZblfrP+9vHedTQU3XaoFZMCK1WtgMdv8U3R6qYG
GbqVcE3eYwksVCMG64JqXaxxAXvEi0TY1QYF9OQXIOQICyYVKYJDg91ioyuXXY0a
aqX647CiG6PWhGl1Zz2F9gKH2MD+32LLzXX4vYRcdZrY2UhICuaxXxnyiwrnfySM
f5/yWWElorqaFAcFBRuasxWgXT4mkS9yC5Zpd/ItzpYJBAuI62C9MjYeima7AOuo
MSsXrNqgrqFkH60pYTG0TPH2gU7jOFFmhrLpsxj0meA4F9M5jOgBGlTrV5oAKH5y
rCAf/DZHeZ0OPA0X29dMNpHNIjvg6X0Of4CJv7X88C3jNA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:43 2023 by rpki-client on console-ams.rpki-client.org