Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/7rABDnPcKNkZIpKV2ea00U1L3Po.roa
File: 7rABDnPcKNkZIpKV2ea00U1L3Po.roa (raw, json)
Hash identifier: BBrsYeQtyX6S9swS6UWot2FqkRaI2x9QMkEfSPFP5cQ=
Subject key identifier: EE:B0:01:0E:73:DC:28:D9:19:22:92:95:D9:E6:B4:D1:4D:4B:DC:FA
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 08F4
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/7rABDnPcKNkZIpKV2ea00U1L3Po.roa
Signing time: Tue 29 Sep 2020 10:01:17 +0000
ROA not before: Tue 29 Sep 2020 10:01:17 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 7482
IP address blocks: 210.58.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2292 (0x8f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:17 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=EEB0010E73DC28D919229295D9E6B4D14D4BDCFA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:a1:ef:98:6f:2d:0d:ec:2a:b6:97:2c:5a:0c:
06:a4:e8:a6:cf:d6:69:4b:de:fb:f3:f0:f0:8f:f2:
4f:07:85:ef:40:f4:56:2f:e5:11:d1:fc:21:56:a4:
f4:e3:eb:b5:6b:fb:05:a3:55:cd:8c:9c:97:16:42:
2b:26:df:37:57:d2:97:69:27:ba:e2:67:dc:45:28:
af:1e:58:99:2c:72:11:6f:00:f1:01:ca:99:8c:aa:
a1:4f:f6:b3:78:8b:5f:31:cc:a4:bc:fb:91:17:bf:
74:29:ae:bd:04:10:b1:d8:c6:7b:94:d2:08:8d:44:
ff:9b:81:00:a0:b9:4f:13:da:3f:2e:85:e4:0e:09:
8b:aa:9b:33:1d:2c:32:3a:49:b5:d2:34:0b:99:0b:
cc:6d:9b:34:ae:4c:b8:cf:ca:db:18:06:a4:a1:b7:
4c:74:f6:7a:ef:c6:ee:8c:7a:d9:eb:11:fc:68:8b:
d6:ad:31:8f:5b:b5:c1:ce:6d:45:23:98:bc:70:b9:
f7:24:9d:38:75:3e:1e:1f:af:7a:7d:dd:e3:00:e2:
31:dd:a9:c6:d2:91:2e:de:18:db:3f:f1:de:a2:46:
6d:79:fe:75:92:15:3f:ea:74:53:9a:19:c9:d0:c5:
ab:51:ca:37:d4:b7:b9:d0:bb:6a:b5:92:c5:9d:e7:
e9:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:B0:01:0E:73:DC:28:D9:19:22:92:95:D9:E6:B4:D1:4D:4B:DC:FA
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/7rABDnPcKNkZIpKV2ea00U1L3Po.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.58.0.0/16
Signature Algorithm: sha256WithRSAEncryption
02:0d:4a:b8:00:7d:a0:71:f2:08:c5:f7:9b:34:ca:9a:91:6f:
c3:4f:b9:7e:6a:e1:ac:27:f2:a9:4a:75:44:5f:8b:b1:b7:8d:
db:7d:ef:71:12:b7:66:61:56:ac:65:89:07:d8:2e:ef:e6:e8:
5a:fb:32:b8:b0:23:f5:a4:2f:88:a4:48:70:d4:92:83:17:4d:
9f:24:63:a9:b3:76:3b:25:03:73:85:23:85:e0:bf:0f:cd:1e:
c1:0a:8a:cd:86:4c:70:15:e0:1f:62:e2:1d:66:57:67:bc:c9:
be:b7:91:7c:6a:d3:83:0b:04:60:ad:28:95:d6:2e:7d:83:82:
e8:ed:2b:1e:57:7c:f5:43:80:9c:ae:7f:53:34:17:2b:f0:2d:
81:a6:8b:4a:5f:d8:69:37:38:72:5d:f5:34:ee:32:79:b1:cd:
25:c8:ad:33:08:2d:0f:15:42:78:60:ba:36:ac:11:a0:b8:3d:
9a:8b:a4:80:dc:33:9c:6a:08:af:07:0f:0f:57:d0:30:61:91:
4a:27:a6:97:72:86:31:ce:c4:4f:0c:78:80:02:d0:7c:25:ad:
da:14:9e:32:33:73:41:04:11:7f:69:54:a2:ae:fb:2f:74:1f:
f2:4c:a0:30:b6:49:22:2c:7f:f2:11:27:83:c5:6b:08:a3:e6:
b1:0a:a3:34
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICCPQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMDA5Mjkx
MDAxMTdaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEVFQjAwMTBFNzNEQzI4
RDkxOTIyOTI5NUQ5RTZCNEQxNEQ0QkRDRkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDgoe+Yby0N7Cq2lyxaDAak6KbP1mlL3vvz8PCP8k8Hhe9A9FYv
5RHR/CFWpPTj67Vr+wWjVc2MnJcWQism3zdX0pdpJ7riZ9xFKK8eWJkschFvAPEB
ypmMqqFP9rN4i18xzKS8+5EXv3Qprr0EELHYxnuU0giNRP+bgQCguU8T2j8uheQO
CYuqmzMdLDI6SbXSNAuZC8xtmzSuTLjPytsYBqSht0x09nrvxu6MetnrEfxoi9at
MY9btcHObUUjmLxwufcknTh1Ph4fr3p93eMA4jHdqcbSkS7eGNs/8d6iRm15/nWS
FT/qdFOaGcnQxatRyjfUt7nQu2q1ksWd5+mTAgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQU7rABDnPcKNkZIpKV2ea00U1L3PowHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvN3JBQkRuUGNLTmtaSXBLVjJlYTAw
VTFMM1BvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDANI6MA0G
CSqGSIb3DQEBCwUAA4IBAQACDUq4AH2gcfIIxfebNMqakW/DT7l+auGsJ/KpSnVE
X4uxt43bfe9xErdmYVasZYkH2C7v5uha+zK4sCP1pC+IpEhw1JKDF02fJGOps3Y7
JQNzhSOF4L8PzR7BCorNhkxwFeAfYuIdZldnvMm+t5F8atODCwRgrSiV1i59g4Lo
7SseV3z1Q4Ccrn9TNBcr8C2BpotKX9hpNzhyXfU07jJ5sc0lyK0zCC0PFUJ4YLo2
rBGguD2ai6SA3DOcagivBw8PV9AwYZFKJ6aXcoYxzsRPDHiAAtB8Ja3aFJ4yM3NB
BBF/aVSirvsvdB/yTKAwtkkiLH/yESeDxWsIo+axCqM0
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:54 2023 by rpki-client on console-fra.rpki-client.org