Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/9e3otWirkVFDBptsidXu23-4Neo.roa
File: 9e3otWirkVFDBptsidXu23-4Neo.roa (raw, json)
Hash identifier: j6ZXr66P3M9xhIHlI38xcPkPuh46L3teV2zhRnhI5Qk=
Subject key identifier: F5:ED:E8:B5:68:AB:91:51:43:06:9B:6C:89:D5:EE:DB:7F:B8:35:EA
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0DE7
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/9e3otWirkVFDBptsidXu23-4Neo.roa
Signing time: Wed 29 Sep 2021 02:39:43 +0000
ROA not before: Wed 29 Sep 2021 02:39:43 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24154
IP address blocks: 210.202.0.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3559 (0xde7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:39:43 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=F5EDE8B568AB915143069B6C89D5EEDB7FB835EA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:e0:37:92:98:85:c1:6c:d1:2f:d8:3d:70:fc:
c4:bf:32:49:e2:5c:0d:f8:09:e7:ef:1b:8f:78:90:
1c:3f:83:a8:91:1b:d2:91:48:dc:d1:1a:78:24:30:
a9:f0:54:46:c6:f2:e1:a6:a7:71:c6:99:9e:da:d8:
7f:b4:02:c7:45:34:f1:80:3e:e5:87:22:d0:1f:7a:
1f:b0:3e:7d:3e:ff:d5:ee:d4:9a:b2:8f:d9:e4:4a:
04:1f:ff:5a:e7:aa:53:bf:25:cd:7a:13:f6:fe:5d:
b5:ee:4f:cf:ec:5f:7a:30:31:19:7a:dd:13:f6:8f:
00:f8:87:f1:ca:d2:e6:0a:3a:c6:3c:b2:40:f9:f7:
6e:91:70:47:3b:fd:dd:c4:07:ae:d6:e7:3f:c8:a8:
e1:67:6d:78:a6:54:6b:c5:61:91:c9:e6:fa:6f:9e:
3c:1a:f9:35:82:3d:25:1e:c5:24:c5:92:21:16:8c:
46:64:1e:70:0a:96:7e:42:01:ac:c5:cd:05:c8:53:
9a:c0:bb:26:e9:04:62:55:c4:e4:5d:a8:53:e9:5d:
8f:f4:50:56:39:d8:8e:a0:e7:f2:d5:b5:de:d0:fc:
7b:40:a3:35:de:c8:d6:f5:52:38:5b:03:e5:42:be:
ec:61:8f:f9:6c:c8:bd:c4:79:c2:2c:bf:e9:4a:0f:
4e:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:ED:E8:B5:68:AB:91:51:43:06:9B:6C:89:D5:EE:DB:7F:B8:35:EA
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/9e3otWirkVFDBptsidXu23-4Neo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.202.0.0/19
Signature Algorithm: sha256WithRSAEncryption
3a:1b:94:7d:e8:65:80:bb:19:ce:67:71:ab:7f:c8:e1:94:8e:
d1:34:38:0c:91:ed:e1:3a:8f:bb:b6:4b:89:ef:62:b1:d2:1f:
4c:bc:5c:ef:f6:55:33:a3:f8:b1:3d:05:a9:14:ed:01:2e:8e:
0b:70:8d:55:af:bc:f6:c5:f3:18:24:93:50:47:17:1d:76:95:
0a:06:cd:1e:23:91:10:5f:28:3b:ca:e3:93:7c:a1:a9:78:d2:
a3:6e:c2:46:83:d3:d3:da:fc:2f:fa:d3:2a:40:bc:1e:a4:a5:
af:4c:57:45:d3:cd:d8:5d:9f:b5:e5:fb:ba:2d:0a:7e:7b:f1:
87:10:6c:11:f6:69:89:4c:ba:e2:3f:c6:d3:4a:cc:8c:43:69:
14:5e:68:ee:de:12:af:1c:e4:89:c5:9c:47:9b:63:c9:eb:f8:
1a:77:93:c2:75:e3:55:22:4e:e4:5b:c0:fc:ca:e2:f2:79:83:
3b:b6:88:f9:06:3d:0e:91:df:fb:c7:a5:af:99:28:6a:9b:1a:
c7:b7:b7:1f:c9:33:cb:c6:f0:3d:ba:59:c2:ce:8e:4b:f4:66:
b3:5b:07:46:05:bb:22:26:dd:87:61:2a:26:71:79:4b:df:ee:
97:cc:92:df:0a:f0:9e:f4:09:34:10:02:a4:95:05:81:a9:98:
c5:fd:ed:5d
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDecwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMTA5Mjkw
MjM5NDNaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEY1RURFOEI1NjhBQjkx
NTE0MzA2OUI2Qzg5RDVFRURCN0ZCODM1RUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC24DeSmIXBbNEv2D1w/MS/MkniXA34CefvG494kBw/g6iRG9KR
SNzRGngkMKnwVEbG8uGmp3HGmZ7a2H+0AsdFNPGAPuWHItAfeh+wPn0+/9Xu1Jqy
j9nkSgQf/1rnqlO/Jc16E/b+XbXuT8/sX3owMRl63RP2jwD4h/HK0uYKOsY8skD5
926RcEc7/d3EB67W5z/IqOFnbXimVGvFYZHJ5vpvnjwa+TWCPSUexSTFkiEWjEZk
HnAKln5CAazFzQXIU5rAuybpBGJVxORdqFPpXY/0UFY52I6g5/LVtd7Q/HtAozXe
yNb1UjhbA+VCvuxhj/lsyL3EecIsv+lKD07fAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQU9e3otWirkVFDBptsidXu23+4NeowHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvOWUzb3RXaXJrVkZEQnB0c2lkWHUy
My00TmVvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBdLKADAN
BgkqhkiG9w0BAQsFAAOCAQEAOhuUfehlgLsZzmdxq3/I4ZSO0TQ4DJHt4TqPu7ZL
ie9isdIfTLxc7/ZVM6P4sT0FqRTtAS6OC3CNVa+89sXzGCSTUEcXHXaVCgbNHiOR
EF8oO8rjk3yhqXjSo27CRoPT09r8L/rTKkC8HqSlr0xXRdPN2F2fteX7ui0Kfnvx
hxBsEfZpiUy64j/G00rMjENpFF5o7t4SrxzkicWcR5tjyev4GneTwnXjVSJO5FvA
/Mri8nmDO7aI+QY9DpHf+8elr5koapsax7e3H8kzy8bwPbpZws6OS/Rms1sHRgW7
Iibdh2EqJnF5S9/ul8yS3wrwnvQJNBACpJUFgamYxf3tXQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:54 2023 by rpki-client on console-fra.rpki-client.org