Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/N7lIcb7doSp1WbHxF7dHBd_CcLw.roa
File: N7lIcb7doSp1WbHxF7dHBd_CcLw.roa (raw, json)
Hash identifier: hk78XoveLQZoBC74FqTS0Iz1gF1aVIrwctzF1DRtE8Q=
Subject key identifier: 37:B9:48:71:BE:DD:A1:2A:75:59:B1:F1:17:B7:47:05:DF:C2:70:BC
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0927
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/N7lIcb7doSp1WbHxF7dHBd_CcLw.roa
Signing time: Tue 29 Sep 2020 10:01:32 +0000
ROA not before: Tue 29 Sep 2020 10:01:32 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17709
IP address blocks: 210.203.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2343 (0x927)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:32 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=37B94871BEDDA12A7559B1F117B74705DFC270BC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:92:ba:04:0a:49:11:fb:3e:db:40:af:c5:62:
c0:ae:03:f7:65:86:f5:39:d7:87:54:8a:ee:eb:db:
33:21:73:a9:3a:3d:12:df:ea:1f:57:d1:66:16:bf:
33:4e:5f:7a:1a:2b:92:61:09:28:62:d1:33:6e:46:
23:c4:f4:85:6f:9c:b5:6f:54:b2:81:29:92:54:da:
ae:69:6f:0c:f1:87:45:71:60:0d:19:f9:5a:7f:41:
36:a3:ba:9a:c0:e3:09:83:67:4f:8a:da:78:e9:fb:
37:7b:5f:8a:76:cd:89:83:9a:82:96:d5:5c:bf:d5:
3b:5b:7d:0e:65:12:32:69:63:07:10:9b:28:53:d3:
d6:d6:83:2f:f9:37:b5:f2:9a:ec:e7:b1:91:88:21:
85:ca:2c:a2:ce:c8:af:28:72:3f:6a:e5:74:ad:3e:
12:7b:6a:25:b1:64:3b:f2:2d:85:bc:e5:40:e5:30:
23:dd:65:40:56:2c:17:70:79:05:6a:84:8a:e6:87:
9b:66:e3:db:e7:2e:d8:66:5f:5e:3f:f3:80:87:ec:
3f:bc:c0:39:51:d1:90:5d:aa:b5:e5:f3:70:50:ef:
76:e1:b4:5f:cf:3e:ee:5e:61:e8:7e:42:de:d8:dd:
7d:ba:bb:98:2d:18:ae:a3:40:02:41:f4:e5:07:1b:
dd:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:B9:48:71:BE:DD:A1:2A:75:59:B1:F1:17:B7:47:05:DF:C2:70:BC
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/N7lIcb7doSp1WbHxF7dHBd_CcLw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.203.0.0/17
Signature Algorithm: sha256WithRSAEncryption
6e:60:46:b0:2b:1b:03:9c:9b:d7:fc:5c:c7:71:b1:de:cc:94:
5c:3c:5b:79:a4:1e:12:c2:fe:f5:37:12:ca:7c:72:aa:dc:6e:
c1:77:28:f5:03:62:f5:ba:70:8b:1e:9f:45:b8:d4:b3:e9:32:
78:74:49:a1:43:17:91:1a:84:e5:55:16:bc:9f:08:82:c4:43:
77:0a:d9:b2:3b:97:16:42:fb:68:04:8b:bb:74:14:6a:2f:91:
d7:d2:e9:6b:c1:f5:a1:a3:01:8b:d6:51:cd:a6:6b:a1:ab:92:
1c:3c:6a:81:fb:20:6a:93:5d:7c:c4:87:83:f0:c3:9d:5f:e4:
58:61:6b:88:48:c4:68:59:62:09:c8:19:67:4c:57:20:44:01:
04:9e:bc:d9:88:11:9f:bb:1d:31:63:43:33:6f:ad:a1:ef:5b:
85:a9:87:06:9b:bc:dc:8c:fd:0d:38:c9:7e:a0:87:be:24:a4:
f0:08:c3:9b:10:46:eb:23:fd:db:a7:2c:8a:8a:66:93:12:1e:
5a:d7:fa:0c:20:87:5b:ab:2a:81:0f:0c:04:b1:5d:f3:24:e1:
9f:39:dc:4c:70:e5:60:53:c5:25:6d:36:9a:bb:ce:f1:8b:32:
ae:0b:5c:08:d8:f6:dc:75:f5:33:8e:27:2f:d8:05:c1:fd:77:
29:f6:cd:38
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCScwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMDA5Mjkx
MDAxMzJaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDM3Qjk0ODcxQkVEREEx
MkE3NTU5QjFGMTE3Qjc0NzA1REZDMjcwQkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDSkroECkkR+z7bQK/FYsCuA/dlhvU514dUiu7r2zMhc6k6PRLf
6h9X0WYWvzNOX3oaK5JhCShi0TNuRiPE9IVvnLVvVLKBKZJU2q5pbwzxh0VxYA0Z
+Vp/QTajuprA4wmDZ0+K2njp+zd7X4p2zYmDmoKW1Vy/1TtbfQ5lEjJpYwcQmyhT
09bWgy/5N7XymuznsZGIIYXKLKLOyK8ocj9q5XStPhJ7aiWxZDvyLYW85UDlMCPd
ZUBWLBdweQVqhIrmh5tm49vnLthmX14/84CH7D+8wDlR0ZBdqrXl83BQ73bhtF/P
Pu5eYeh+Qt7Y3X26u5gtGK6jQAJB9OUHG93PAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUN7lIcb7doSp1WbHxF7dHBd/CcLwwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvTjdsSWNiN2RvU3AxV2JIeEY3ZEhC
ZF9DY0x3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB9LLADAN
BgkqhkiG9w0BAQsFAAOCAQEAbmBGsCsbA5yb1/xcx3Gx3syUXDxbeaQeEsL+9TcS
ynxyqtxuwXco9QNi9bpwix6fRbjUs+kyeHRJoUMXkRqE5VUWvJ8IgsRDdwrZsjuX
FkL7aASLu3QUai+R19Lpa8H1oaMBi9ZRzaZroauSHDxqgfsgapNdfMSHg/DDnV/k
WGFriEjEaFliCcgZZ0xXIEQBBJ682YgRn7sdMWNDM2+toe9bhamHBpu83Iz9DTjJ
fqCHviSk8AjDmxBG6yP926csiopmkxIeWtf6DCCHW6sqgQ8MBLFd8yThnzncTHDl
YFPFJW02mrvO8YsyrgtcCNj23HX1M44nL9gFwf13KfbNOA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:44 2023 by rpki-client on console-ams.rpki-client.org