Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/9LPEV6MzwPFRD9DK0ZJepo2IS8I.roa
File: 9LPEV6MzwPFRD9DK0ZJepo2IS8I.roa (raw, json)
Hash identifier: 3O/9rhJEobZwWjeGNSQMZ+/57zc5zjGY9DKaEXCy5AI=
Subject key identifier: F4:B3:C4:57:A3:33:C0:F1:51:0F:D0:CA:D1:92:5E:A6:8D:88:4B:C2
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0939
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/9LPEV6MzwPFRD9DK0ZJepo2IS8I.roa
Signing time: Tue 29 Sep 2020 10:01:36 +0000
ROA not before: Tue 29 Sep 2020 10:01:36 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9311
IP address blocks: 210.201.74.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2361 (0x939)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:36 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F4B3C457A333C0F1510FD0CAD1925EA68D884BC2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:b6:f0:24:c0:96:f9:26:65:b8:76:64:3b:a2:
d2:e8:c4:bc:8a:37:38:ee:79:2b:b6:e7:ac:c2:e0:
46:29:f7:fa:a3:d7:5b:70:24:36:87:ae:1f:f0:5d:
b1:52:98:70:a1:e9:42:93:f6:68:d2:6b:45:72:35:
54:e9:0e:fb:4e:0d:7c:97:07:4a:23:9b:36:b6:c7:
b3:6a:b5:25:a2:bf:d3:2c:76:d5:e1:f0:56:00:23:
26:86:1b:39:15:23:a2:ee:71:e8:50:f6:c9:11:ae:
f9:a7:ef:dd:12:16:85:94:28:6d:eb:e3:0a:e1:13:
ef:49:d5:3a:8d:18:dc:a4:85:22:e4:06:18:06:8b:
93:0e:47:9e:c5:62:c0:b4:3a:ee:83:b4:50:d2:67:
13:ab:13:a9:5b:bd:8f:6b:0c:62:10:01:6e:d3:22:
e0:d3:60:3a:6b:0b:7f:a6:bf:46:c2:55:91:2f:f8:
44:96:ec:47:bd:6e:92:7a:7c:a8:f1:b3:29:34:a2:
8b:73:6a:b8:b5:e7:e4:a2:89:21:5f:c1:cd:aa:b1:
d2:3f:42:f8:27:4f:c8:0c:a6:fd:5b:40:c9:0c:40:
8e:c7:aa:86:10:ee:ef:fe:f8:cd:e9:8f:0b:75:84:
7b:10:e5:7c:b4:0e:44:2e:7c:11:8a:82:0d:c1:b3:
ea:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:B3:C4:57:A3:33:C0:F1:51:0F:D0:CA:D1:92:5E:A6:8D:88:4B:C2
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/9LPEV6MzwPFRD9DK0ZJepo2IS8I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.201.74.0/23
Signature Algorithm: sha256WithRSAEncryption
09:e1:f0:1e:fc:3e:2b:a0:0f:2d:72:3a:96:0f:b6:a9:5f:b8:
4f:88:b8:5b:7a:fd:88:aa:cc:30:70:1c:d1:dd:2b:04:e0:d9:
0a:cb:4d:dc:4f:e1:60:41:3b:5e:7c:80:33:6b:fc:14:b7:92:
b9:8e:99:a2:d9:8c:34:e6:28:63:7c:b9:82:6a:e4:e2:ba:31:
0f:11:3f:18:bc:a3:2e:67:92:4e:61:d1:0d:15:a7:91:18:33:
87:9e:f8:9f:2d:b2:f3:39:74:3a:28:49:57:d4:a9:7c:27:0f:
ce:24:e3:8a:40:75:03:a4:ea:1d:ee:78:eb:98:c7:8f:1e:ea:
74:d4:15:21:91:b9:35:b1:8c:26:b1:16:6b:37:77:ba:89:d8:
1f:c0:1a:56:df:8f:1f:f1:9b:9b:fe:8b:c5:e8:3d:08:85:8e:
8c:54:f2:8f:f6:b9:82:3a:39:7c:4b:51:58:f1:41:b1:bc:a5:
27:1f:a2:2d:2e:48:77:86:a8:2b:80:ce:0e:04:be:c9:f4:44:
63:da:ca:3e:e4:67:e4:a9:e6:48:8b:7e:5f:66:e4:9c:ba:ec:
8e:8e:05:89:1b:7b:70:e9:c2:81:bc:32:e0:94:c3:e4:68:99:
c7:d3:96:2d:0d:7e:3c:b4:fb:30:14:51:c0:26:a1:a3:3a:81:
be:e0:c6:3e
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCTkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMDA5Mjkx
MDAxMzZaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEY0QjNDNDU3QTMzM0Mw
RjE1MTBGRDBDQUQxOTI1RUE2OEQ4ODRCQzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCqtvAkwJb5JmW4dmQ7otLoxLyKNzjueSu256zC4EYp9/qj11tw
JDaHrh/wXbFSmHCh6UKT9mjSa0VyNVTpDvtODXyXB0ojmza2x7NqtSWiv9MsdtXh
8FYAIyaGGzkVI6LucehQ9skRrvmn790SFoWUKG3r4wrhE+9J1TqNGNykhSLkBhgG
i5MOR57FYsC0Ou6DtFDSZxOrE6lbvY9rDGIQAW7TIuDTYDprC3+mv0bCVZEv+ESW
7Ee9bpJ6fKjxsyk0ootzari15+SiiSFfwc2qsdI/QvgnT8gMpv1bQMkMQI7HqoYQ
7u/++M3pjwt1hHsQ5Xy0DkQufBGKgg3Bs+p7AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQU9LPEV6MzwPFRD9DK0ZJepo2IS8IwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvOUxQRVY2TXp3UEZSRDlESzBaSmVw
bzJJUzhJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAdLJSjAN
BgkqhkiG9w0BAQsFAAOCAQEACeHwHvw+K6APLXI6lg+2qV+4T4i4W3r9iKrMMHAc
0d0rBODZCstN3E/hYEE7XnyAM2v8FLeSuY6ZotmMNOYoY3y5gmrk4roxDxE/GLyj
LmeSTmHRDRWnkRgzh574ny2y8zl0OihJV9SpfCcPziTjikB1A6TqHe5465jHjx7q
dNQVIZG5NbGMJrEWazd3uonYH8AaVt+PH/Gbm/6Lxeg9CIWOjFTyj/a5gjo5fEtR
WPFBsbylJx+iLS5Id4aoK4DODgS+yfREY9rKPuRn5KnmSIt+X2bknLrsjo4FiRt7
cOnCgbwy4JTD5GiZx9OWLQ1+PLT7MBRRwCahozqBvuDGPg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:44 2023 by rpki-client on console-ams.rpki-client.org