Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/PgUlWXe-dmnvsLS4L3Q_22iPDqk.roa
File: PgUlWXe-dmnvsLS4L3Q_22iPDqk.roa (raw, json)
Hash identifier: CbAaOa++OetoU7wn9uv6ZIjkqUc0hMiHbkNWUK+1AXc=
Subject key identifier: 3E:05:25:59:77:BE:76:69:EF:B0:B4:B8:2F:74:3F:DB:68:8F:0E:A9
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 08DE
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/PgUlWXe-dmnvsLS4L3Q_22iPDqk.roa
Signing time: Tue 29 Sep 2020 10:01:11 +0000
ROA not before: Tue 29 Sep 2020 10:01:11 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24154
IP address blocks: 210.200.4.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2270 (0x8de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:11 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3E05255977BE7669EFB0B4B82F743FDB688F0EA9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:6e:34:28:2e:01:f4:a4:7e:05:81:6f:b3:d7:
81:25:49:34:fb:06:9b:b2:33:b8:9d:b4:af:73:df:
ab:b9:01:8d:79:e5:6b:05:4b:8b:4e:90:ea:3b:bd:
1a:f2:3b:d4:00:cf:b1:27:53:a8:9a:c2:62:01:e1:
73:67:55:74:bd:e3:a1:59:85:71:15:47:c4:d8:68:
fa:0b:f5:10:a5:1d:52:7e:d6:df:fa:7e:06:09:a4:
c9:bf:10:de:fc:24:5b:10:66:d2:e4:30:e9:15:9a:
74:1d:d0:c1:ca:24:30:6c:0b:ed:14:ec:39:be:c4:
85:a4:22:55:75:b3:98:23:1c:90:79:af:f2:df:dc:
c9:bb:6a:be:7d:77:95:59:33:8e:90:ce:9b:9d:d3:
ea:d0:c8:fb:6e:f0:19:c6:05:9b:41:5f:2d:f4:61:
c5:9d:3f:a4:43:a2:1d:0f:d1:f5:c2:d9:2b:14:46:
ed:39:9e:f6:e4:f3:86:ea:84:55:1f:cb:db:77:31:
47:6e:bf:78:84:e4:88:c0:4e:61:02:24:42:8b:68:
e9:d0:bb:b5:92:f1:4a:81:c8:52:33:18:07:c7:3e:
78:d5:a9:1b:28:f6:ff:56:1e:dc:54:18:aa:67:ea:
0c:b7:dc:ae:54:a8:06:51:43:85:50:64:47:64:68:
88:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:05:25:59:77:BE:76:69:EF:B0:B4:B8:2F:74:3F:DB:68:8F:0E:A9
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/PgUlWXe-dmnvsLS4L3Q_22iPDqk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.4.0/22
Signature Algorithm: sha256WithRSAEncryption
19:60:76:fd:17:1a:8a:bd:56:6e:79:47:0e:8b:82:c4:d7:04:
76:f0:5a:36:e4:9e:57:85:6e:3f:45:7f:94:09:56:de:5e:d4:
9e:15:c8:6c:92:23:b8:cc:29:2e:3a:e5:7d:d4:4c:fe:ad:50:
33:84:0b:be:10:59:8b:12:e6:44:89:30:5e:0d:fd:8d:30:af:
a9:6f:2a:c0:c1:91:f5:7b:88:e6:80:67:4d:4e:d4:b3:08:5b:
a4:0c:46:7d:d0:03:b7:fb:0d:b0:5e:77:ef:26:f1:4f:ba:73:
47:09:de:e9:26:a7:3f:d8:af:8d:76:60:59:81:bf:c1:94:7f:
a4:ca:57:2a:bb:83:d9:be:c8:11:6e:d8:0b:0e:fd:0a:98:d6:
60:df:41:4b:49:8d:21:be:18:93:3e:a3:28:b4:4c:bd:b1:31:
a8:df:d6:65:fe:f4:36:6c:aa:a7:c4:0d:b1:57:e0:4e:a7:44:
37:f2:24:83:cc:59:62:40:63:d3:c1:26:c8:db:a5:d8:21:b4:
41:b0:fd:be:26:b2:fc:21:1b:40:5d:66:a4:6d:c8:ec:c8:2f:
ec:d7:de:7d:3c:d5:d9:dd:15:26:6d:c2:63:77:03:50:2f:aa:
e2:a1:1f:ad:c7:6b:b0:58:51:4e:c8:51:56:02:bd:f8:9e:7d:
a9:11:bb:53
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCN4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMDA5Mjkx
MDAxMTFaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDNFMDUyNTU5NzdCRTc2
NjlFRkIwQjRCODJGNzQzRkRCNjg4RjBFQTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDAbjQoLgH0pH4FgW+z14ElSTT7BpuyM7idtK9z36u5AY155WsF
S4tOkOo7vRryO9QAz7EnU6iawmIB4XNnVXS946FZhXEVR8TYaPoL9RClHVJ+1t/6
fgYJpMm/EN78JFsQZtLkMOkVmnQd0MHKJDBsC+0U7Dm+xIWkIlV1s5gjHJB5r/Lf
3Mm7ar59d5VZM46Qzpud0+rQyPtu8BnGBZtBXy30YcWdP6RDoh0P0fXC2SsURu05
nvbk84bqhFUfy9t3MUduv3iE5IjATmECJEKLaOnQu7WS8UqByFIzGAfHPnjVqRso
9v9WHtxUGKpn6gy33K5UqAZRQ4VQZEdkaIglAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUPgUlWXe+dmnvsLS4L3Q/22iPDqkwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvUGdVbFdYZS1kbW52c0xTNEwzUV8y
MmlQRHFrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAtLIBDAN
BgkqhkiG9w0BAQsFAAOCAQEAGWB2/Rcair1WbnlHDouCxNcEdvBaNuSeV4VuP0V/
lAlW3l7UnhXIbJIjuMwpLjrlfdRM/q1QM4QLvhBZixLmRIkwXg39jTCvqW8qwMGR
9XuI5oBnTU7UswhbpAxGfdADt/sNsF537ybxT7pzRwne6SanP9ivjXZgWYG/wZR/
pMpXKruD2b7IEW7YCw79CpjWYN9BS0mNIb4Ykz6jKLRMvbExqN/WZf70Nmyqp8QN
sVfgTqdEN/Ikg8xZYkBj08EmyNul2CG0QbD9viay/CEbQF1mpG3I7Mgv7NfefTzV
2d0VJm3CY3cDUC+q4qEfrcdrsFhRTshRVgK9+J59qRG7Uw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:44 2023 by rpki-client on console-ams.rpki-client.org