Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/8tdPvMzT4bE9PeHI2zsakybk6bA.roa
File: 8tdPvMzT4bE9PeHI2zsakybk6bA.roa (raw, json)
Hash identifier: gER89aluo+P+wAmbCPqGFHJ1FhGb+Y6tUDonylhCGj4=
Subject key identifier: F2:D7:4F:BC:CC:D3:E1:B1:3D:3D:E1:C8:DB:3B:1A:93:26:E4:E9:B0
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0C27
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/8tdPvMzT4bE9PeHI2zsakybk6bA.roa
Signing time: Sun 07 Feb 2021 11:35:04 +0000
ROA not before: Sun 07 Feb 2021 11:35:04 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 7482
IP address blocks: 210.203.64.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3111 (0xc27)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:35:04 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F2D74FBCCCD3E1B13D3DE1C8DB3B1A9326E4E9B0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:6a:73:d1:40:14:9c:4e:7a:8f:66:ef:31:82:
f5:c9:fc:b0:3b:8b:94:74:16:f1:8f:4b:a6:fb:b9:
39:11:f9:13:a8:46:06:34:3f:7c:f6:0d:bf:1a:60:
93:ee:15:1c:11:e5:93:d5:fa:9b:60:4c:8f:84:93:
ab:28:67:7e:96:4d:e0:0f:af:a6:c9:96:8c:29:61:
2b:f0:9b:4d:94:d6:70:fc:5d:74:d4:57:9f:87:0d:
dd:05:08:60:99:47:ef:3a:e1:ad:9c:e4:f0:47:54:
99:89:f0:64:df:b2:67:7f:d3:d7:9a:7e:c7:dc:c3:
21:35:08:13:7f:02:a8:c6:09:ae:e0:e4:02:c0:6b:
a0:58:6b:0f:78:58:59:89:29:68:f7:f1:e4:63:06:
82:91:bd:d4:ea:32:fc:d1:b4:8b:04:b6:39:49:73:
01:b7:56:b9:b1:32:16:b1:0b:81:0b:a8:e2:81:d5:
e7:c1:9c:7d:5e:e4:4b:18:75:15:56:16:c2:a4:67:
fb:b9:b3:8c:d1:a7:c6:5f:57:05:05:60:bd:82:39:
df:be:bb:97:4f:e5:06:94:5d:f6:5d:3c:a9:c6:3c:
9f:68:ae:b2:ad:49:54:80:3c:88:eb:4f:29:d2:61:
fb:4a:b2:1a:02:a2:0f:c8:59:fa:05:39:53:a6:f1:
42:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:D7:4F:BC:CC:D3:E1:B1:3D:3D:E1:C8:DB:3B:1A:93:26:E4:E9:B0
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/8tdPvMzT4bE9PeHI2zsakybk6bA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.203.64.0/18
Signature Algorithm: sha256WithRSAEncryption
2e:68:e5:d6:a8:46:73:23:fb:ff:38:34:42:f8:56:d8:5a:b3:
e6:73:4f:58:c6:92:05:e8:57:f5:ac:87:fc:e9:ec:cb:16:14:
56:75:c3:32:23:d0:dc:c8:28:0f:fa:d0:c6:f2:ab:66:a9:e1:
62:02:3f:ca:04:08:15:25:15:5b:91:1d:b5:f2:9a:14:c2:69:
3d:f2:ac:bf:92:a1:67:dc:3b:05:82:bc:c5:26:18:9f:42:39:
2e:6e:c8:3c:37:ed:c9:c8:b2:00:b6:0a:3d:b7:d6:3d:8c:73:
f9:1f:8f:97:80:84:a8:e2:34:0b:ff:4a:90:17:8e:61:80:d4:
71:25:d0:3c:59:3b:39:5a:d4:61:37:ca:43:1d:07:22:41:2b:
92:e4:65:68:d1:f7:bd:75:99:af:1e:c9:91:22:2c:68:80:d2:
fe:e0:00:86:fe:96:8f:82:b0:62:2c:77:e4:69:32:a1:24:85:
3e:dd:d7:d8:ed:7e:e6:a0:ec:ec:67:03:4d:4d:eb:0c:65:7a:
0e:54:e9:38:a3:8e:01:18:42:30:a0:5a:d3:41:27:33:38:b8:
c6:1c:f8:fe:fa:1b:da:8d:74:1d:0b:50:5d:b1:90:a1:da:73:
af:45:a1:a3:ce:3f:22:c3:47:71:2a:04:62:76:a2:20:3a:83:
c4:55:57:89
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDCcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMTAyMDcx
MTM1MDRaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEYyRDc0RkJDQ0NEM0Ux
QjEzRDNERTFDOERCM0IxQTkzMjZFNEU5QjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC1anPRQBScTnqPZu8xgvXJ/LA7i5R0FvGPS6b7uTkR+ROoRgY0
P3z2Db8aYJPuFRwR5ZPV+ptgTI+Ek6soZ36WTeAPr6bJlowpYSvwm02U1nD8XXTU
V5+HDd0FCGCZR+864a2c5PBHVJmJ8GTfsmd/09eafsfcwyE1CBN/AqjGCa7g5ALA
a6BYaw94WFmJKWj38eRjBoKRvdTqMvzRtIsEtjlJcwG3VrmxMhaxC4ELqOKB1efB
nH1e5EsYdRVWFsKkZ/u5s4zRp8ZfVwUFYL2COd++u5dP5QaUXfZdPKnGPJ9orrKt
SVSAPIjrTynSYftKshoCog/IWfoFOVOm8UL3AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQU8tdPvMzT4bE9PeHI2zsakybk6bAwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvOHRkUHZNelQ0YkU5UGVISTJ6c2Fr
eWJrNmJBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBtLLQDAN
BgkqhkiG9w0BAQsFAAOCAQEALmjl1qhGcyP7/zg0QvhW2Fqz5nNPWMaSBehX9ayH
/OnsyxYUVnXDMiPQ3MgoD/rQxvKrZqnhYgI/ygQIFSUVW5EdtfKaFMJpPfKsv5Kh
Z9w7BYK8xSYYn0I5Lm7IPDftyciyALYKPbfWPYxz+R+Pl4CEqOI0C/9KkBeOYYDU
cSXQPFk7OVrUYTfKQx0HIkErkuRlaNH3vXWZrx7JkSIsaIDS/uAAhv6Wj4KwYix3
5GkyoSSFPt3X2O1+5qDs7GcDTU3rDGV6DlTpOKOOARhCMKBa00EnMzi4xhz4/vob
2o10HQtQXbGQodpzr0Who84/IsNHcSoEYnaiIDqDxFVXiQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:54 2023 by rpki-client on console-fra.rpki-client.org