Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/EUFMhSXZjYC3cTkyaJckcaW78Ck.roa
File: EUFMhSXZjYC3cTkyaJckcaW78Ck.roa (raw, json)
Hash identifier: eMbcQmfAyOcFYOw/zjk3sazF9Cm8NNWsL2dnZOyw+jQ=
Subject key identifier: 11:41:4C:85:25:D9:8D:80:B7:71:39:32:68:97:24:71:A5:BB:F0:29
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0C9D
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/EUFMhSXZjYC3cTkyaJckcaW78Ck.roa
Signing time: Sun 07 Feb 2021 11:47:08 +0000
ROA not before: Sun 07 Feb 2021 11:47:08 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17709
IP address blocks: 101.136.0.0/14 maxlen: 14
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3229 (0xc9d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:47:08 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=11414C8525D98D80B771393268972471A5BBF029
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:44:a6:2c:e2:db:85:0f:e6:ca:d3:aa:53:fd:
b1:cb:4d:fa:9b:2e:44:1c:df:13:bb:ff:c4:7a:29:
3d:de:28:d8:50:ac:b7:66:2d:d8:ab:e0:6f:59:e9:
29:2d:e8:f2:bc:96:55:5b:13:54:01:e8:50:d7:45:
30:5f:d8:1e:55:41:00:dd:b2:f5:dd:97:e8:36:94:
0d:69:a8:aa:28:46:af:74:ad:33:ce:b7:e4:35:ae:
52:1b:7c:f2:a2:eb:61:52:4d:ca:59:67:cf:f2:b5:
a3:ca:a0:39:c1:7a:9b:82:79:3f:32:42:b8:37:6d:
43:fe:4e:86:46:a1:07:70:6b:5d:4f:fc:0c:db:93:
9d:f0:70:f9:af:ee:3b:69:22:2d:ab:99:79:28:76:
e5:4f:fa:74:9c:01:fa:64:18:07:7f:92:56:59:92:
f4:46:f7:ba:b9:4c:69:8b:cd:91:f5:71:0a:56:44:
98:de:dc:4e:f3:12:7f:dd:c9:64:d6:aa:d4:ef:40:
1c:94:3d:8d:7b:97:d6:df:02:4d:28:e8:f6:41:d0:
f0:f5:67:c5:8c:23:bd:3c:30:a2:97:01:c9:2f:ff:
49:8c:a5:35:f6:96:d0:c2:85:f4:2f:7e:f4:a5:fe:
66:55:17:93:81:8e:0c:77:4d:4d:5b:9f:cc:23:a2:
92:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:41:4C:85:25:D9:8D:80:B7:71:39:32:68:97:24:71:A5:BB:F0:29
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/EUFMhSXZjYC3cTkyaJckcaW78Ck.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.136.0.0/14
Signature Algorithm: sha256WithRSAEncryption
7d:d3:bf:19:b2:18:80:d0:be:1a:d8:20:8c:13:71:16:6d:63:
00:a5:28:3c:7d:be:bb:b7:e8:ef:0c:df:f2:79:77:49:34:a0:
20:32:0e:4b:ba:03:9e:60:8a:b1:73:47:84:9b:49:29:db:02:
ff:6d:d3:59:39:9b:55:48:62:98:fb:a9:be:98:cc:f0:4b:04:
df:2e:52:32:99:8d:04:02:72:a9:e7:3a:41:2b:f7:ac:63:fc:
e4:bc:62:ed:33:5d:a9:03:19:f5:ab:05:c3:1e:37:0d:cd:66:
85:00:1b:14:df:4e:9c:c7:57:91:64:23:87:e6:86:bf:77:5f:
81:56:bf:e3:c9:14:ab:b4:1a:30:ad:e9:7d:40:b4:d9:97:82:
4c:ca:95:b4:47:70:09:75:ef:59:da:e0:5d:62:3b:28:89:8b:
bb:fd:3f:63:b2:77:6b:13:99:e5:75:7f:57:28:d0:9c:a9:0b:
a2:d0:43:e9:b3:b8:9d:b5:b5:44:20:1c:a9:63:60:7c:d9:0a:
fd:16:3a:db:8f:a6:e7:c1:a2:6e:ea:98:8c:8e:a5:02:4d:ec:
14:02:52:80:bd:c8:6d:b5:31:13:9b:9f:de:5c:30:7c:8d:88:
db:bf:1f:c0:3b:63:a2:90:65:50:af:e0:e2:93:3d:80:6d:9f:
88:f2:20:26
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICDJ0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMTAyMDcx
MTQ3MDhaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDExNDE0Qzg1MjVEOThE
ODBCNzcxMzkzMjY4OTcyNDcxQTVCQkYwMjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDjRKYs4tuFD+bK06pT/bHLTfqbLkQc3xO7/8R6KT3eKNhQrLdm
Ldir4G9Z6Skt6PK8llVbE1QB6FDXRTBf2B5VQQDdsvXdl+g2lA1pqKooRq90rTPO
t+Q1rlIbfPKi62FSTcpZZ8/ytaPKoDnBepuCeT8yQrg3bUP+ToZGoQdwa11P/Azb
k53wcPmv7jtpIi2rmXkoduVP+nScAfpkGAd/klZZkvRG97q5TGmLzZH1cQpWRJje
3E7zEn/dyWTWqtTvQByUPY17l9bfAk0o6PZB0PD1Z8WMI708MKKXAckv/0mMpTX2
ltDChfQvfvSl/mZVF5OBjgx3TU1bn8wjopJpAgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQUEUFMhSXZjYC3cTkyaJckcaW78CkwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvRVVGTWhTWFpqWUMzY1RreWFKY2tj
YVc3OENrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAmWIMA0G
CSqGSIb3DQEBCwUAA4IBAQB9078ZshiA0L4a2CCME3EWbWMApSg8fb67t+jvDN/y
eXdJNKAgMg5LugOeYIqxc0eEm0kp2wL/bdNZOZtVSGKY+6m+mMzwSwTfLlIymY0E
AnKp5zpBK/esY/zkvGLtM12pAxn1qwXDHjcNzWaFABsU306cx1eRZCOH5oa/d1+B
Vr/jyRSrtBowrel9QLTZl4JMypW0R3AJde9Z2uBdYjsoiYu7/T9jsndrE5nldX9X
KNCcqQui0EPps7idtbVEIBypY2B82Qr9Fjrbj6bnwaJu6piMjqUCTewUAlKAvcht
tTETm5/eXDB8jYjbvx/AO2OikGVQr+Dikz2AbZ+I8iAm
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:44 2023 by rpki-client on console-ams.rpki-client.org