Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/OC9cMc_frUUtglL3e0CA8MWtmlI.roa
File: OC9cMc_frUUtglL3e0CA8MWtmlI.roa (raw, json)
Hash identifier: +jomsuuqFQtUtpFkOGk+/DVrPmanQtjWhxYrsHpYpnM=
Subject key identifier: 38:2F:5C:31:CF:DF:AD:45:2D:82:52:F7:7B:40:80:F0:C5:AD:9A:52
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0E39
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/OC9cMc_frUUtglL3e0CA8MWtmlI.roa
Signing time: Wed 29 Sep 2021 02:40:07 +0000
ROA not before: Wed 29 Sep 2021 02:40:07 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24154
IP address blocks: 210.63.192.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3641 (0xe39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:40:07 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=382F5C31CFDFAD452D8252F77B4080F0C5AD9A52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:8b:3a:c3:c1:77:9f:65:35:42:f2:e2:9f:8b:
72:f8:81:64:04:81:f8:71:7e:2f:1b:16:40:d4:29:
21:a5:d1:79:5a:e8:69:5d:3f:1d:62:f8:12:10:b4:
c0:54:b1:34:53:20:78:f4:06:43:dd:fa:30:28:20:
f5:30:b6:c1:9f:91:c0:e4:d4:17:49:ca:cc:62:f2:
18:33:e0:3a:9b:a1:e5:87:de:04:c1:c2:65:24:89:
58:72:12:ae:0e:b7:54:24:9d:79:a6:04:98:ad:91:
08:b2:0d:10:9f:97:2a:7b:88:64:31:38:88:ff:1b:
1e:aa:68:f1:e9:54:69:6b:c0:5a:77:9c:67:30:09:
92:a7:bc:8d:47:76:8d:e2:cd:0a:62:72:93:12:08:
71:a2:22:f6:2e:5d:53:e4:39:ec:ae:c3:16:ab:7c:
78:f8:3a:6d:f3:50:ac:88:4a:cb:98:13:ed:68:f7:
87:63:85:87:5e:1b:19:f0:f2:5f:07:ca:3f:9b:c2:
cc:10:9f:ae:02:39:07:ba:8a:b5:de:db:97:59:11:
9b:f8:6a:5e:18:1b:0d:01:34:f4:38:7d:c7:ce:11:
91:b3:f5:25:38:62:0a:d5:ea:13:89:0e:e1:89:6d:
ab:9e:27:d4:8c:7a:8f:a1:39:35:50:ed:c3:32:0b:
28:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:2F:5C:31:CF:DF:AD:45:2D:82:52:F7:7B:40:80:F0:C5:AD:9A:52
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/OC9cMc_frUUtglL3e0CA8MWtmlI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.192.0/19
Signature Algorithm: sha256WithRSAEncryption
12:8c:81:2f:d7:b7:c6:a2:11:09:4d:04:eb:72:5c:54:c6:6a:
2f:c2:09:5f:b6:5d:1d:26:6c:29:e2:70:da:d5:d1:89:32:9d:
9b:74:b9:f9:fe:2f:35:70:08:35:4f:04:67:9b:cd:b2:0a:20:
c5:cd:f9:ad:b6:7b:11:d5:65:4c:15:45:4a:55:72:43:f9:f6:
55:dd:c3:a1:93:e1:6d:86:8a:a0:10:05:3e:d8:ce:2a:0b:0f:
50:49:ac:ac:45:f2:34:34:b7:af:3a:94:3a:fc:17:15:07:9c:
07:3f:40:c2:2b:d2:82:b0:78:11:5f:0c:f9:2e:a5:bf:0d:b6:
aa:aa:58:55:e7:de:a2:db:d0:d3:e7:aa:c4:7d:58:f7:96:5c:
04:08:34:70:c3:e3:b9:77:ac:88:f1:81:d7:aa:c1:e8:2a:c9:
7b:5d:4b:03:a7:a9:c2:a7:74:61:a2:7b:d4:6d:7c:90:d2:d1:
e8:48:0c:66:9b:6c:72:cf:7c:55:47:ac:c5:5e:0d:47:10:ff:
e5:8e:db:e5:3c:de:64:96:82:85:e8:c4:6c:65:1f:ee:14:f2:
10:19:dc:ce:bb:93:b5:31:c3:b1:79:5c:a8:9a:da:b7:cd:55:
8c:1f:aa:77:b7:46:51:40:0a:6e:aa:33:6c:af:57:e8:6c:90:
ef:8e:25:90
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDjkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMTA5Mjkw
MjQwMDdaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDM4MkY1QzMxQ0ZERkFE
NDUyRDgyNTJGNzdCNDA4MEYwQzVBRDlBNTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC+izrDwXefZTVC8uKfi3L4gWQEgfhxfi8bFkDUKSGl0Xla6Gld
Px1i+BIQtMBUsTRTIHj0BkPd+jAoIPUwtsGfkcDk1BdJysxi8hgz4DqboeWH3gTB
wmUkiVhyEq4Ot1QknXmmBJitkQiyDRCflyp7iGQxOIj/Gx6qaPHpVGlrwFp3nGcw
CZKnvI1Hdo3izQpicpMSCHGiIvYuXVPkOeyuwxarfHj4Om3zUKyISsuYE+1o94dj
hYdeGxnw8l8Hyj+bwswQn64COQe6irXe25dZEZv4al4YGw0BNPQ4fcfOEZGz9SU4
YgrV6hOJDuGJbaueJ9SMeo+hOTVQ7cMyCyi5AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUOC9cMc/frUUtglL3e0CA8MWtmlIwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvT0M5Y01jX2ZyVVV0Z2xMM2UwQ0E4
TVd0bWxJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBdI/wDAN
BgkqhkiG9w0BAQsFAAOCAQEAEoyBL9e3xqIRCU0E63JcVMZqL8IJX7ZdHSZsKeJw
2tXRiTKdm3S5+f4vNXAINU8EZ5vNsgogxc35rbZ7EdVlTBVFSlVyQ/n2Vd3DoZPh
bYaKoBAFPtjOKgsPUEmsrEXyNDS3rzqUOvwXFQecBz9AwivSgrB4EV8M+S6lvw22
qqpYVefeotvQ0+eqxH1Y95ZcBAg0cMPjuXesiPGB16rB6CrJe11LA6epwqd0YaJ7
1G18kNLR6EgMZptscs98VUesxV4NRxD/5Y7b5TzeZJaChejEbGUf7hTyEBnczruT
tTHDsXlcqJrat81VjB+qd7dGUUAKbqozbK9X6GyQ744lkA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:55 2023 by rpki-client on console-fra.rpki-client.org