Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/ZLAOpyyy9Ra7F0dcvHc4BRHL7GA.roa
File: ZLAOpyyy9Ra7F0dcvHc4BRHL7GA.roa (raw, json)
Hash identifier: KUeonVCH7Rdib45qqVAE3T3Eev4JwOpYzoaTG3zhjIE=
Subject key identifier: 64:B0:0E:A7:2C:B2:F5:16:BB:17:47:5C:BC:77:38:05:11:CB:EC:60
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0C57
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/ZLAOpyyy9Ra7F0dcvHc4BRHL7GA.roa
Signing time: Sun 07 Feb 2021 11:35:46 +0000
ROA not before: Sun 07 Feb 2021 11:35:46 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17709
IP address blocks: 222.157.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3159 (0xc57)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:35:46 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=64B00EA72CB2F516BB17475CBC77380511CBEC60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:13:19:3d:2f:01:81:37:76:30:ff:04:92:08:
bf:7e:37:70:fe:f8:32:5a:65:49:d0:21:f7:1f:70:
8a:df:aa:69:8f:38:fc:dd:df:b4:70:ca:8f:54:64:
1d:74:dd:da:8f:16:aa:cb:bf:d6:56:26:0f:70:c8:
c5:aa:d8:75:86:19:9e:c5:c9:d7:00:e8:87:d9:b9:
3f:7e:69:0b:98:9d:46:44:3d:2b:96:84:ca:83:49:
c7:0c:ff:f2:d7:b4:e3:e5:3e:80:4a:dd:65:50:ca:
55:04:2e:b9:c0:ed:9e:c9:00:c6:90:ec:fe:c5:e1:
b4:0a:dc:1c:2a:31:1c:6c:23:c6:be:b4:b9:cc:61:
01:b6:30:59:24:d6:6d:f7:8c:11:30:25:a6:b1:08:
46:ac:04:50:ba:e5:83:da:9e:63:43:34:df:95:b9:
3f:84:9c:2a:95:68:0d:59:ea:1a:32:b5:f9:40:a2:
c0:37:3a:2f:65:38:05:68:57:b3:fc:c9:f2:6a:da:
5b:c6:cb:88:45:60:2d:d1:68:bc:b0:98:c3:fa:e4:
d7:cb:a8:2a:98:a2:78:09:45:5e:7d:c5:c9:a0:d4:
99:53:a6:14:a5:5b:03:8a:79:ad:1e:16:d1:c9:9b:
a9:42:2c:92:5f:71:56:47:08:b2:1b:cb:e0:8a:c3:
e8:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:B0:0E:A7:2C:B2:F5:16:BB:17:47:5C:BC:77:38:05:11:CB:EC:60
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/ZLAOpyyy9Ra7F0dcvHc4BRHL7GA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
222.157.0.0/16
Signature Algorithm: sha256WithRSAEncryption
46:4e:4e:12:08:04:08:3c:2a:4d:c7:dd:fd:22:f8:a1:27:81:
a6:9a:29:3a:9c:e8:20:67:40:f2:a8:bc:7a:c6:ad:cc:86:1f:
91:3d:04:6d:15:79:b4:30:e5:c5:ac:08:fa:4f:16:59:64:d2:
08:bf:b8:26:0f:96:aa:fc:5b:36:09:61:2d:38:d9:e6:26:b5:
fd:26:99:33:2c:dc:92:97:cb:d9:d1:d6:10:3e:23:e3:ed:35:
b7:59:de:14:95:c6:3d:93:c8:35:17:77:f2:6e:6a:c2:06:f8:
d6:b6:10:7c:13:02:36:06:71:d7:9a:29:93:29:88:48:49:7b:
1a:78:39:0d:92:7c:d8:c4:13:e4:0f:6f:b9:b5:7f:eb:26:70:
ad:67:9a:eb:73:f5:d1:af:c4:2c:1d:cd:a0:33:47:6c:3a:4b:
b0:1c:af:93:db:2d:11:8f:61:57:dd:a1:c6:96:5a:73:07:11:
0b:27:45:f1:06:6a:9c:bb:34:b3:c5:fb:3d:67:66:4a:f8:29:
1d:0c:e0:a0:31:7c:04:ca:d4:d3:31:2f:14:d7:be:47:79:be:
8a:b0:4e:82:ee:e6:38:b8:e1:fe:2c:03:70:10:98:37:3c:0d:
d9:dd:c2:c7:1c:3e:f4:4e:99:3d:33:0d:ba:a9:0c:0d:9e:b3:
34:41:46:5e
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICDFcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMTAyMDcx
MTM1NDZaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDY0QjAwRUE3MkNCMkY1
MTZCQjE3NDc1Q0JDNzczODA1MTFDQkVDNjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDDExk9LwGBN3Yw/wSSCL9+N3D++DJaZUnQIfcfcIrfqmmPOPzd
37Rwyo9UZB103dqPFqrLv9ZWJg9wyMWq2HWGGZ7FydcA6IfZuT9+aQuYnUZEPSuW
hMqDSccM//LXtOPlPoBK3WVQylUELrnA7Z7JAMaQ7P7F4bQK3BwqMRxsI8a+tLnM
YQG2MFkk1m33jBEwJaaxCEasBFC65YPanmNDNN+VuT+EnCqVaA1Z6hoytflAosA3
Oi9lOAVoV7P8yfJq2lvGy4hFYC3RaLywmMP65NfLqCqYongJRV59xcmg1JlTphSl
WwOKea0eFtHJm6lCLJJfcVZHCLIby+CKw+gtAgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQUZLAOpyyy9Ra7F0dcvHc4BRHL7GAwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvWkxBT3B5eXk5UmE3RjBkY3ZIYzRC
UkhMN0dBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAN6dMA0G
CSqGSIb3DQEBCwUAA4IBAQBGTk4SCAQIPCpNx939IvihJ4Gmmik6nOggZ0DyqLx6
xq3Mhh+RPQRtFXm0MOXFrAj6TxZZZNIIv7gmD5aq/Fs2CWEtONnmJrX9JpkzLNyS
l8vZ0dYQPiPj7TW3Wd4UlcY9k8g1F3fybmrCBvjWthB8EwI2BnHXmimTKYhISXsa
eDkNknzYxBPkD2+5tX/rJnCtZ5rrc/XRr8QsHc2gM0dsOkuwHK+T2y0Rj2FX3aHG
llpzBxELJ0XxBmqcuzSzxfs9Z2ZK+CkdDOCgMXwEytTTMS8U175Heb6KsE6C7uY4
uOH+LANwEJg3PA3Z3cLHHD70Tpk9Mw26qQwNnrM0QUZe
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:55 2023 by rpki-client on console-fra.rpki-client.org