Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/6c45nUVBfE55ms3BvJW3uLMrvqw.roa
File: 6c45nUVBfE55ms3BvJW3uLMrvqw.roa (raw, json)
Hash identifier: wah3Ov9ART+F/9jSGIFGAyVQbus8wDfoqlsd3eGR7xA=
Subject key identifier: E9:CE:39:9D:45:41:7C:4E:79:9A:CD:C1:BC:95:B7:B8:B3:2B:BE:AC
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 096E
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/6c45nUVBfE55ms3BvJW3uLMrvqw.roa
Signing time: Tue 29 Sep 2020 10:01:49 +0000
ROA not before: Tue 29 Sep 2020 10:01:49 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9311
IP address blocks: 210.63.240.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2414 (0x96e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:49 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E9CE399D45417C4E799ACDC1BC95B7B8B32BBEAC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:6a:06:cd:fd:46:76:01:1e:8c:ea:b6:35:6b:
91:42:08:92:61:42:ae:1b:23:a6:46:a3:7e:6d:3f:
b8:9d:95:20:e9:13:f1:bd:4e:87:82:d6:68:80:89:
4d:dc:8e:97:6f:05:30:09:98:38:06:2f:59:3a:50:
e0:25:7b:14:5a:d4:4a:e3:81:67:21:ef:95:92:74:
a1:32:47:20:55:90:31:d0:e3:fc:6e:f1:3f:27:80:
01:57:85:b9:8b:43:9d:2e:c0:be:4f:2e:23:0a:a4:
7a:d9:8e:bf:b7:7b:a1:06:48:dc:77:09:93:2a:ee:
d8:c0:f9:92:b0:6b:80:18:ca:3e:4e:31:5e:55:27:
5d:7e:cf:3a:0a:76:f0:59:70:ba:fe:69:7b:7b:5f:
f0:73:56:a3:f5:93:cc:37:c7:e5:28:c6:3b:42:d3:
22:9d:52:d5:8c:c4:92:47:1a:ab:16:16:50:0d:31:
12:ca:56:05:06:85:7c:01:e2:e9:e0:d9:38:a2:0e:
7a:c5:0a:6f:ba:76:e2:27:3a:cd:8f:23:8e:f7:1c:
db:ae:53:ad:1d:b8:36:8c:c5:86:37:75:ff:ad:92:
86:2b:a1:5b:78:37:ad:f7:b5:50:49:1b:2d:e0:38:
f6:5b:29:d0:ad:02:42:47:35:70:92:97:46:20:14:
c8:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:CE:39:9D:45:41:7C:4E:79:9A:CD:C1:BC:95:B7:B8:B3:2B:BE:AC
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/6c45nUVBfE55ms3BvJW3uLMrvqw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.240.0/24
Signature Algorithm: sha256WithRSAEncryption
29:60:bf:55:e6:3f:5a:05:52:b2:6e:b1:cd:5d:02:55:c6:93:
dd:a4:4f:9e:8d:12:8c:58:bb:9a:7a:84:b4:9a:d7:8a:fb:7d:
0b:b1:d6:ad:79:a4:a2:ea:53:cc:92:d6:b0:1c:dd:a4:de:f7:
2f:d1:3c:3d:5f:d4:75:24:8c:fc:28:a8:37:a1:6e:d1:74:9e:
68:aa:c5:69:50:84:61:8e:12:ca:93:95:b8:e1:77:c2:64:87:
57:cf:88:60:4c:95:c4:ce:b3:02:3e:65:4c:8a:75:e9:d4:a4:
97:04:25:f9:79:08:3b:b4:56:ee:0d:d4:3f:af:5c:55:f2:94:
2a:c3:6f:57:72:94:25:cd:2d:3a:08:f2:81:ac:c3:8c:33:f1:
54:0b:e1:46:80:5f:6d:42:f8:8f:a9:77:77:c5:ec:31:01:78:
d5:03:26:b8:f6:20:f8:55:ab:ed:c7:7c:14:52:c8:df:28:57:
9f:4a:a2:6a:8b:8f:a2:4a:77:69:de:2b:d0:80:eb:2f:dc:98:
45:3b:9e:f0:19:cc:e8:b6:19:bf:f8:03:4f:32:68:b0:a3:89:
3f:24:c8:52:3b:b7:9e:72:ce:60:28:b1:be:e9:5f:9e:24:ec:
1a:9d:56:46:29:47:11:d4:4e:90:db:ae:18:7e:74:dd:80:a8:
4d:d7:a8:0d
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCW4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMDA5Mjkx
MDAxNDlaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEU5Q0UzOTlENDU0MTdD
NEU3OTlBQ0RDMUJDOTVCN0I4QjMyQkJFQUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDJagbN/UZ2AR6M6rY1a5FCCJJhQq4bI6ZGo35tP7idlSDpE/G9
ToeC1miAiU3cjpdvBTAJmDgGL1k6UOAlexRa1ErjgWch75WSdKEyRyBVkDHQ4/xu
8T8ngAFXhbmLQ50uwL5PLiMKpHrZjr+3e6EGSNx3CZMq7tjA+ZKwa4AYyj5OMV5V
J11+zzoKdvBZcLr+aXt7X/BzVqP1k8w3x+UoxjtC0yKdUtWMxJJHGqsWFlANMRLK
VgUGhXwB4ung2TiiDnrFCm+6duInOs2PI473HNuuU60duDaMxYY3df+tkoYroVt4
N633tVBJGy3gOPZbKdCtAkJHNXCSl0YgFMjTAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQU6c45nUVBfE55ms3BvJW3uLMrvqwwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvNmM0NW5VVkJmRTU1bXMzQnZKVzN1
TE1ydnF3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANI/8DAN
BgkqhkiG9w0BAQsFAAOCAQEAKWC/VeY/WgVSsm6xzV0CVcaT3aRPno0SjFi7mnqE
tJrXivt9C7HWrXmkoupTzJLWsBzdpN73L9E8PV/UdSSM/CioN6Fu0XSeaKrFaVCE
YY4SypOVuOF3wmSHV8+IYEyVxM6zAj5lTIp16dSklwQl+XkIO7RW7g3UP69cVfKU
KsNvV3KUJc0tOgjygazDjDPxVAvhRoBfbUL4j6l3d8XsMQF41QMmuPYg+FWr7cd8
FFLI3yhXn0qiaouPokp3ad4r0IDrL9yYRTue8BnM6LYZv/gDTzJosKOJPyTIUju3
nnLOYCixvulfniTsGp1WRilHEdROkNuuGH503YCoTdeoDQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:43 2023 by rpki-client on console-ams.rpki-client.org