Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/dhDj5FAu22sNafTV9q2LtqYrojI.roa
File: dhDj5FAu22sNafTV9q2LtqYrojI.roa (raw, json)
Hash identifier: iYqVIGYcQoV9eIBHr/nImbFu7L0T+0uooxSmFYCIVkE=
Subject key identifier: 76:10:E3:E4:50:2E:DB:6B:0D:69:F4:D5:F6:AD:8B:B6:A6:2B:A2:32
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0C19
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/dhDj5FAu22sNafTV9q2LtqYrojI.roa
Signing time: Sun 07 Feb 2021 11:34:53 +0000
ROA not before: Sun 07 Feb 2021 11:34:53 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 7482
IP address blocks: 210.202.128.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3097 (0xc19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:34:53 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=7610E3E4502EDB6B0D69F4D5F6AD8BB6A62BA232
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:53:39:2d:50:61:bb:f6:14:86:60:f2:f9:81:
be:2a:08:33:22:b9:db:f3:ae:2c:bd:5c:58:b4:4d:
63:13:b0:2c:13:ef:49:c2:dc:d5:c2:cf:5c:5c:8e:
be:44:72:cb:7a:0d:0b:17:4a:ec:3f:b2:51:bd:dd:
1a:97:73:ce:79:5a:0e:cd:d9:70:39:fb:1e:b2:28:
d0:4c:0d:b6:b9:a9:16:20:31:ab:fe:e2:bd:c6:81:
19:c5:01:96:43:e6:73:ab:cf:df:c4:80:64:8b:7d:
94:d3:e7:76:86:3b:78:9d:74:8c:d5:2d:5f:10:dd:
2d:41:8e:d7:75:65:07:46:73:bd:b2:64:06:b5:a2:
b6:d0:ad:d2:c9:88:a6:4b:a5:5c:af:2e:6b:08:8c:
35:7c:2e:f4:d3:6b:96:b1:3a:8f:50:e4:7b:e7:9a:
39:a6:0d:bc:4a:27:0d:89:19:60:63:cd:2f:65:8c:
d6:0d:e5:49:50:c0:bc:72:49:cc:67:d4:ac:a5:fb:
fc:ad:35:d1:99:01:ea:e2:42:a9:32:35:e1:d5:99:
16:a9:68:c2:d7:8c:64:42:8c:83:be:33:a9:de:20:
ee:58:2b:b8:5e:77:f0:f7:78:78:fd:c1:b1:25:4f:
db:f0:2d:f6:23:ee:dd:95:cc:8f:12:21:fc:2a:b8:
fb:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:10:E3:E4:50:2E:DB:6B:0D:69:F4:D5:F6:AD:8B:B6:A6:2B:A2:32
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/dhDj5FAu22sNafTV9q2LtqYrojI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.202.128.0/18
Signature Algorithm: sha256WithRSAEncryption
66:3d:cb:0f:d5:fe:eb:b5:ae:4b:b3:1b:37:c2:40:28:50:fc:
4b:e7:cb:a1:b6:34:a2:81:ef:b6:f8:c1:53:f1:27:f3:55:d8:
68:dd:36:2c:4f:dc:66:61:71:c3:2e:01:82:dd:4c:bd:90:a3:
0b:8e:40:1e:bc:00:ae:ae:d3:86:6a:72:07:6d:14:d9:0c:c6:
fc:bb:8d:10:2c:d6:ca:7b:19:f4:0d:b1:d8:b5:4f:95:67:dc:
6d:7c:db:0a:b9:80:79:a8:87:51:ca:b3:83:e1:9a:e2:cc:ca:
10:32:16:1e:01:50:71:72:21:e1:a7:ff:77:ff:e9:9f:a6:1b:
c6:e3:c0:df:a5:9d:e7:c0:3c:96:8a:e3:c0:46:67:d6:19:69:
fe:92:64:54:e8:95:ec:7c:16:31:5a:97:58:ce:4f:05:da:28:
92:49:d5:39:27:10:ce:7b:03:51:88:e9:47:a3:b7:f3:0e:cb:
d2:42:eb:0d:8d:b5:d2:56:87:5e:ce:34:77:37:00:fe:3f:e1:
21:dd:49:47:b8:4e:00:06:24:d1:f0:90:8c:74:fe:76:ea:45:
dd:b5:3f:c7:3f:b1:b1:96:b9:23:6a:e3:55:c4:c6:b9:97:e7:
6a:85:a1:b6:29:30:c7:c6:e3:5d:62:29:56:c2:22:d0:18:2d:
62:4b:30:8f
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDBkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMTAyMDcx
MTM0NTNaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDc2MTBFM0U0NTAyRURC
NkIwRDY5RjRENUY2QUQ4QkI2QTYyQkEyMzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC7UzktUGG79hSGYPL5gb4qCDMiudvzriy9XFi0TWMTsCwT70nC
3NXCz1xcjr5Ecst6DQsXSuw/slG93RqXc855Wg7N2XA5+x6yKNBMDba5qRYgMav+
4r3GgRnFAZZD5nOrz9/EgGSLfZTT53aGO3iddIzVLV8Q3S1Bjtd1ZQdGc72yZAa1
orbQrdLJiKZLpVyvLmsIjDV8LvTTa5axOo9Q5HvnmjmmDbxKJw2JGWBjzS9ljNYN
5UlQwLxyScxn1Kyl+/ytNdGZAeriQqkyNeHVmRapaMLXjGRCjIO+M6neIO5YK7he
d/D3eHj9wbElT9vwLfYj7t2VzI8SIfwquPuJAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUdhDj5FAu22sNafTV9q2LtqYrojIwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvZGhEajVGQXUyMnNOYWZUVjlxMkx0
cVlyb2pJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBtLKgDAN
BgkqhkiG9w0BAQsFAAOCAQEAZj3LD9X+67WuS7MbN8JAKFD8S+fLobY0ooHvtvjB
U/En81XYaN02LE/cZmFxwy4Bgt1MvZCjC45AHrwArq7ThmpyB20U2QzG/LuNECzW
ynsZ9A2x2LVPlWfcbXzbCrmAeaiHUcqzg+Ga4szKEDIWHgFQcXIh4af/d//pn6Yb
xuPA36Wd58A8lorjwEZn1hlp/pJkVOiV7HwWMVqXWM5PBdookknVOScQznsDUYjp
R6O38w7L0kLrDY210laHXs40dzcA/j/hId1JR7hOAAYk0fCQjHT+dupF3bU/xz+x
sZa5I2rjVcTGuZfnaoWhtikwx8bjXWIpVsIi0BgtYkswjw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:55 2023 by rpki-client on console-fra.rpki-client.org