Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/WsIs1hCScxOSmuQXrsoIhJTTPHQ.roa
File: WsIs1hCScxOSmuQXrsoIhJTTPHQ.roa (raw, json)
Hash identifier: Up2bQ8o4gmOFEfbxOyS1v7sXpOMsSmC6UE8LLW/zYwo=
Subject key identifier: 5A:C2:2C:D6:10:92:73:13:92:9A:E4:17:AE:CA:08:84:94:D3:3C:74
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 08EC
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/WsIs1hCScxOSmuQXrsoIhJTTPHQ.roa
Signing time: Tue 29 Sep 2020 10:01:15 +0000
ROA not before: Tue 29 Sep 2020 10:01:15 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9311
IP address blocks: 222.156.247.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2284 (0x8ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:15 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5AC22CD610927313929AE417AECA088494D33C74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:1a:34:91:cb:b7:80:b8:1a:38:c5:b7:a2:40:
56:2b:08:5b:21:b9:8e:fd:ad:89:65:e5:b1:69:a7:
e0:49:86:49:39:96:a8:e4:c8:dd:8b:28:4b:41:07:
16:9f:aa:49:c3:34:c7:f9:ed:ec:e6:e5:37:85:08:
48:8c:54:01:79:93:a9:8e:39:eb:13:28:17:ac:ae:
4e:57:43:4c:8a:27:df:75:5c:08:0f:3b:d5:d1:c3:
4f:85:75:42:e8:50:a5:eb:ee:82:05:a7:b4:93:7f:
c1:c6:be:17:33:78:1a:e3:1b:13:a7:0b:2b:7f:cb:
1a:68:04:a8:1e:64:5f:ed:37:83:19:35:2e:c5:28:
6f:09:27:00:a1:31:a1:1f:a0:2e:ca:04:87:ed:0b:
fb:9b:6a:fb:f2:5f:0e:ac:0d:62:16:0b:af:70:ed:
bf:3f:50:86:c4:29:71:0e:58:bb:65:41:b3:c7:60:
62:e3:65:2a:ff:81:48:0b:c7:cf:5b:b3:45:52:f4:
90:03:56:41:a9:41:e5:83:ea:48:95:02:32:54:2d:
c4:fb:b7:e3:52:d6:f7:f2:18:c6:0d:6c:c0:77:f2:
11:1b:a5:40:b0:88:1a:f1:3c:51:97:95:11:e8:56:
2a:14:04:b8:41:7a:cf:ec:9f:2f:d1:f1:9c:ac:22:
c1:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:C2:2C:D6:10:92:73:13:92:9A:E4:17:AE:CA:08:84:94:D3:3C:74
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/WsIs1hCScxOSmuQXrsoIhJTTPHQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
222.156.247.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:68:2c:00:55:04:11:23:1e:0c:dd:69:1f:9c:0c:a5:7e:e8:
0d:1f:e8:8a:87:81:90:a1:b8:b5:2b:7f:4f:07:1b:71:1c:ba:
21:11:df:75:b2:99:3c:03:43:29:96:37:11:be:80:fd:b1:8d:
72:9d:b4:06:3e:30:32:f9:3b:14:70:93:08:9b:b7:32:19:c4:
b9:03:c3:af:b2:34:ec:96:2e:7c:fc:ed:60:cd:8f:cc:a4:fb:
0d:a0:33:4a:75:15:7f:d6:c3:97:fa:70:cd:d5:ee:34:d2:24:
c9:8b:e8:ef:92:ab:40:1e:74:11:ae:da:71:c0:f1:42:3c:a9:
af:90:22:22:00:16:93:9c:a1:10:5e:92:c9:0b:5c:d8:c9:e8:
1a:24:89:59:39:8f:26:56:f1:f0:c6:8e:3d:4d:e2:5f:6c:90:
0f:47:9b:50:a1:6f:8e:2d:ff:52:64:4b:28:4b:05:d7:cc:94:
97:e8:49:50:c4:2f:f8:fb:15:88:d2:23:10:b9:21:93:16:23:
97:89:6b:d9:0b:73:9c:81:ea:50:21:ba:d3:a0:07:fd:28:d2:
0e:78:7e:4a:4f:c5:30:35:a9:49:cd:5c:03:a3:a7:55:b4:12:
04:8b:6f:56:3f:4c:1a:62:e7:01:52:ff:fc:cf:ed:b6:9b:55:
51:66:2a:ef
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCOwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMDA5Mjkx
MDAxMTVaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDVBQzIyQ0Q2MTA5Mjcz
MTM5MjlBRTQxN0FFQ0EwODg0OTREMzNDNzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDHGjSRy7eAuBo4xbeiQFYrCFshuY79rYll5bFpp+BJhkk5lqjk
yN2LKEtBBxafqknDNMf57ezm5TeFCEiMVAF5k6mOOesTKBesrk5XQ0yKJ991XAgP
O9XRw0+FdULoUKXr7oIFp7STf8HGvhczeBrjGxOnCyt/yxpoBKgeZF/tN4MZNS7F
KG8JJwChMaEfoC7KBIftC/ubavvyXw6sDWIWC69w7b8/UIbEKXEOWLtlQbPHYGLj
ZSr/gUgLx89bs0VS9JADVkGpQeWD6kiVAjJULcT7t+NS1vfyGMYNbMB38hEbpUCw
iBrxPFGXlRHoVioUBLhBes/sny/R8ZysIsFJAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUWsIs1hCScxOSmuQXrsoIhJTTPHQwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvV3NJczFoQ1NjeE9TbXVRWHJzb0lo
SlRUUEhRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAN6c9zAN
BgkqhkiG9w0BAQsFAAOCAQEAqGgsAFUEESMeDN1pH5wMpX7oDR/oioeBkKG4tSt/
TwcbcRy6IRHfdbKZPANDKZY3Eb6A/bGNcp20Bj4wMvk7FHCTCJu3MhnEuQPDr7I0
7JYufPztYM2PzKT7DaAzSnUVf9bDl/pwzdXuNNIkyYvo75KrQB50Ea7accDxQjyp
r5AiIgAWk5yhEF6SyQtc2MnoGiSJWTmPJlbx8MaOPU3iX2yQD0ebUKFvji3/UmRL
KEsF18yUl+hJUMQv+PsViNIjELkhkxYjl4lr2QtznIHqUCG606AH/SjSDnh+Sk/F
MDWpSc1cA6OnVbQSBItvVj9MGmLnAVL//M/ttptVUWYq7w==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:45 2023 by rpki-client on console-ams.rpki-client.org