Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/EyQrh6o5KOSx23_BjFcy6W4e3v0.roa
File: EyQrh6o5KOSx23_BjFcy6W4e3v0.roa (raw, json)
Hash identifier: UFBsn598DL+sRNJBXMVyeTxLQ5p+6xfgftmQIBgJqTg=
Subject key identifier: 13:24:2B:87:AA:39:28:E4:B1:DB:7F:C1:8C:57:32:E9:6E:1E:DE:FD
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0E36
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/EyQrh6o5KOSx23_BjFcy6W4e3v0.roa
Signing time: Wed 29 Sep 2021 02:40:06 +0000
ROA not before: Wed 29 Sep 2021 02:40:06 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131627
IP address blocks: 210.58.128.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3638 (0xe36)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:40:06 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=13242B87AA3928E4B1DB7FC18C5732E96E1EDEFD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:25:ac:df:c1:88:40:c5:ab:d5:a8:cb:6e:a2:
bf:aa:83:27:90:08:46:4c:33:d7:fb:09:76:0f:b6:
74:43:ed:10:34:b5:ad:12:74:7c:fb:da:55:20:04:
e6:82:e5:f2:8a:3b:93:6e:b6:34:02:63:41:47:da:
26:a6:22:a4:1c:11:0f:5c:41:3b:35:02:77:4f:6d:
55:9f:b1:27:fb:36:99:13:0e:60:a1:ff:04:e7:99:
fb:79:8c:84:ac:c6:21:8c:0f:ee:ca:e8:39:b8:6e:
93:ee:ec:5c:6e:87:b8:32:ee:31:47:5e:3b:63:0c:
bd:04:1a:5b:ac:43:ba:5b:0f:6d:c8:43:92:07:87:
00:9f:5c:46:ad:9b:31:43:19:ff:c6:cc:42:11:a0:
06:90:0c:da:b8:f5:b6:aa:1e:1f:a6:83:05:53:d9:
64:b3:b1:ac:29:17:47:27:cd:12:15:1d:36:52:d8:
34:7c:63:2c:a0:4a:3f:7f:73:74:1c:ca:38:50:bd:
61:b9:72:c7:33:62:44:3a:c9:bf:7c:ab:66:79:f8:
3e:c0:c7:0e:42:2f:7b:bb:18:f7:d5:cc:06:4f:5e:
f6:af:39:9e:93:5b:7b:ca:b8:e1:57:b4:24:0e:a5:
16:b4:80:8d:f1:85:76:8e:02:06:3e:9b:b1:60:82:
ae:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:24:2B:87:AA:39:28:E4:B1:DB:7F:C1:8C:57:32:E9:6E:1E:DE:FD
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/EyQrh6o5KOSx23_BjFcy6W4e3v0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.58.128.0/19
Signature Algorithm: sha256WithRSAEncryption
3e:48:26:13:f0:5a:c7:7f:62:de:4a:25:19:f4:18:95:4e:24:
0c:57:88:00:65:3c:cf:34:84:04:1f:0e:c6:12:94:ef:6b:13:
c2:c1:8a:23:a3:55:d3:1b:7c:7e:82:a1:ce:17:23:3e:67:c1:
94:fc:12:bf:4c:5e:d6:02:04:6f:dc:ac:97:19:d5:fe:c5:c3:
57:da:1f:30:eb:89:e5:1e:56:41:5f:6b:16:06:49:85:45:66:
fc:8e:53:06:df:04:4b:4a:8e:cf:46:10:53:d3:9b:09:99:82:
87:19:39:6a:03:06:c3:41:94:49:a6:ad:14:fb:61:40:54:d3:
65:60:d2:f6:53:b3:d9:66:b9:51:1d:17:66:51:50:dd:ae:63:
4b:68:cd:55:90:c1:4c:f7:fb:34:cd:bf:fd:6c:9d:bf:69:e6:
6f:02:9c:af:c3:d1:a8:42:b5:9b:5f:c4:00:9b:5b:88:60:81:
e5:5f:92:1c:91:26:eb:69:40:26:a6:9f:bb:69:b1:d9:ad:20:
85:35:9f:09:2c:b7:87:e0:b3:19:f1:c0:ae:f9:64:9c:a8:64:
38:2b:e0:02:7b:bf:ac:42:dd:a5:90:16:d4:af:3d:1a:ad:79:
38:d6:01:84:27:96:7b:16:b4:0a:cd:39:28:8c:14:ca:db:1a:
5c:02:80:48
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDjYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMTA5Mjkw
MjQwMDZaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDEzMjQyQjg3QUEzOTI4
RTRCMURCN0ZDMThDNTczMkU5NkUxRURFRkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDFJazfwYhAxavVqMtuor+qgyeQCEZMM9f7CXYPtnRD7RA0ta0S
dHz72lUgBOaC5fKKO5NutjQCY0FH2iamIqQcEQ9cQTs1AndPbVWfsSf7NpkTDmCh
/wTnmft5jISsxiGMD+7K6Dm4bpPu7Fxuh7gy7jFHXjtjDL0EGlusQ7pbD23IQ5IH
hwCfXEatmzFDGf/GzEIRoAaQDNq49baqHh+mgwVT2WSzsawpF0cnzRIVHTZS2DR8
YyygSj9/c3QcyjhQvWG5csczYkQ6yb98q2Z5+D7Axw5CL3u7GPfVzAZPXvavOZ6T
W3vKuOFXtCQOpRa0gI3xhXaOAgY+m7Fggq5bAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUEyQrh6o5KOSx23/BjFcy6W4e3v0wHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvRXlRcmg2bzVLT1N4MjNfQmpGY3k2
VzRlM3YwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBdI6gDAN
BgkqhkiG9w0BAQsFAAOCAQEAPkgmE/Bax39i3kolGfQYlU4kDFeIAGU8zzSEBB8O
xhKU72sTwsGKI6NV0xt8foKhzhcjPmfBlPwSv0xe1gIEb9yslxnV/sXDV9ofMOuJ
5R5WQV9rFgZJhUVm/I5TBt8ES0qOz0YQU9ObCZmChxk5agMGw0GUSaatFPthQFTT
ZWDS9lOz2Wa5UR0XZlFQ3a5jS2jNVZDBTPf7NM2//Wydv2nmbwKcr8PRqEK1m1/E
AJtbiGCB5V+SHJEm62lAJqafu2mx2a0ghTWfCSy3h+CzGfHArvlknKhkOCvgAnu/
rELdpZAW1K89Gq15ONYBhCeWexa0Cs05KIwUytsaXAKASA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:44 2023 by rpki-client on console-ams.rpki-client.org