Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/Jgdu-cFOE1MtmWhag91-3SiEeDw.roa
File: Jgdu-cFOE1MtmWhag91-3SiEeDw.roa (raw, json)
Hash identifier: 9AATs5NRW/EvXAe8jgmBiGSmut0wjn97hPabwzNTBGg=
Subject key identifier: 26:07:6E:F9:C1:4E:13:53:2D:99:68:5A:83:DD:7E:DD:28:84:78:3C
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0964
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Jgdu-cFOE1MtmWhag91-3SiEeDw.roa
Signing time: Tue 29 Sep 2020 10:01:47 +0000
ROA not before: Tue 29 Sep 2020 10:01:47 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131591
IP address blocks: 101.136.0.0/14 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2404 (0x964)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:47 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=26076EF9C14E13532D99685A83DD7EDD2884783C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:be:84:21:bc:42:95:71:fd:46:b1:06:f3:81:
57:89:85:84:40:3e:5f:4d:29:d0:43:58:da:b7:ab:
5c:ad:12:6d:70:ca:3d:e5:26:15:f5:ea:22:c1:e9:
25:f8:3d:d2:17:c2:f3:d8:92:c0:bc:60:8c:f9:f1:
ba:e9:2a:ea:2f:cd:99:e9:f6:b0:95:2d:8c:85:c0:
43:41:eb:65:e8:aa:3f:3b:3e:58:22:7e:1e:34:2c:
c5:9d:7a:a7:b1:33:f1:96:0f:7f:19:90:cb:35:61:
ee:89:0f:3f:14:d9:bb:8e:35:0d:2f:ce:f1:cd:08:
62:a5:47:fa:dc:e0:ce:08:86:ed:62:4c:d3:de:0e:
45:10:c2:eb:f7:b4:1f:d8:ca:06:07:9d:88:8c:f7:
72:f0:c5:df:ac:3b:53:b7:fa:5c:54:f5:ab:5a:77:
59:9c:0b:7e:b0:8a:26:f4:6c:8a:6a:48:2a:f6:85:
c0:9f:1d:1e:10:96:50:79:26:d7:97:bf:1e:57:fb:
dd:08:99:f0:14:cd:48:6d:17:75:9b:d9:f9:b8:94:
62:98:89:a1:99:71:c6:5a:cb:5d:96:f0:74:09:0e:
44:75:d8:16:91:dc:ba:c1:a6:7c:6e:e3:2d:61:c4:
a6:35:70:09:02:47:7f:54:6f:48:a0:1e:e5:8d:1f:
a0:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:07:6E:F9:C1:4E:13:53:2D:99:68:5A:83:DD:7E:DD:28:84:78:3C
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Jgdu-cFOE1MtmWhag91-3SiEeDw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.136.0.0/14
Signature Algorithm: sha256WithRSAEncryption
ae:30:ce:a2:8f:26:44:8a:77:3e:44:0f:f4:e8:0f:6c:b5:f1:
73:3a:ea:0b:ec:4f:79:dc:22:32:9b:c0:c7:ab:73:50:99:f4:
dc:a8:de:88:bf:91:7e:c1:1c:a6:62:86:74:19:3e:bf:93:ce:
7c:eb:2a:5e:9c:2b:01:fc:5e:e7:e1:15:13:da:0e:8b:91:42:
cf:a2:65:ad:48:92:7d:1b:33:08:52:3a:aa:61:37:12:65:63:
6b:4d:51:09:1d:d1:6d:6c:d2:4f:c2:5e:18:29:9b:df:cf:c4:
9c:7d:01:9d:71:3b:bb:bc:ab:80:30:31:32:6e:e4:8d:84:c7:
dd:39:a7:00:f6:30:4f:aa:d8:44:b8:9b:f2:d5:51:5a:b4:e2:
20:f0:f0:63:75:2d:54:99:6a:95:7c:2f:f8:b5:5a:64:94:a3:
53:d5:c5:0a:27:a8:47:ba:df:29:fe:3c:a6:aa:35:6b:84:ae:
e5:34:e0:5f:8d:0d:d1:8d:80:25:4e:cc:b6:ba:8e:f5:09:30:
98:11:86:0f:36:3b:a4:f4:80:14:9e:7d:14:4d:8d:c4:01:8b:
77:fa:c3:46:9d:4a:c4:83:24:bd:2c:98:19:50:7e:fd:7a:28:
71:7b:d1:f6:a8:72:e9:56:d7:95:30:7e:cb:51:58:79:36:cd:
0d:88:bb:12
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICCWQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMDA5Mjkx
MDAxNDdaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDI2MDc2RUY5QzE0RTEz
NTMyRDk5Njg1QTgzREQ3RUREMjg4NDc4M0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC7voQhvEKVcf1GsQbzgVeJhYRAPl9NKdBDWNq3q1ytEm1wyj3l
JhX16iLB6SX4PdIXwvPYksC8YIz58brpKuovzZnp9rCVLYyFwENB62Xoqj87Plgi
fh40LMWdeqexM/GWD38ZkMs1Ye6JDz8U2buONQ0vzvHNCGKlR/rc4M4Ihu1iTNPe
DkUQwuv3tB/YygYHnYiM93Lwxd+sO1O3+lxU9atad1mcC36wiib0bIpqSCr2hcCf
HR4QllB5JteXvx5X+90ImfAUzUhtF3Wb2fm4lGKYiaGZccZay12W8HQJDkR12BaR
3LrBpnxu4y1hxKY1cAkCR39Ub0igHuWNH6BNAgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQUJgdu+cFOE1MtmWhag91+3SiEeDwwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvSmdkdS1jRk9FMU10bVdoYWc5MS0z
U2lFZUR3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAmWIMA0G
CSqGSIb3DQEBCwUAA4IBAQCuMM6ijyZEinc+RA/06A9stfFzOuoL7E953CIym8DH
q3NQmfTcqN6Iv5F+wRymYoZ0GT6/k8586ypenCsB/F7n4RUT2g6LkULPomWtSJJ9
GzMIUjqqYTcSZWNrTVEJHdFtbNJPwl4YKZvfz8ScfQGdcTu7vKuAMDEybuSNhMfd
OacA9jBPqthEuJvy1VFatOIg8PBjdS1UmWqVfC/4tVpklKNT1cUKJ6hHut8p/jym
qjVrhK7lNOBfjQ3RjYAlTsy2uo71CTCYEYYPNjuk9IAUnn0UTY3EAYt3+sNGnUrE
gyS9LJgZUH79eihxe9H2qHLpVteVMH7LUVh5Ns0NiLsS
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:54 2023 by rpki-client on console-fra.rpki-client.org