Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/loTELUxF2O8-jmcTwA1ODG__TI8.roa
File: loTELUxF2O8-jmcTwA1ODG__TI8.roa (raw, json)
Hash identifier: tN4JAwsVQaXJ8J7LPrMY1VwNENYb77mpnYPStdUbgcQ=
Subject key identifier: 96:84:C4:2D:4C:45:D8:EF:3E:8E:67:13:C0:0D:4E:0C:6F:FF:4C:8F
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0C71
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/loTELUxF2O8-jmcTwA1ODG__TI8.roa
Signing time: Sun 07 Feb 2021 11:39:37 +0000
ROA not before: Sun 07 Feb 2021 11:39:37 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17709
IP address blocks: 202.178.180.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3185 (0xc71)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:39:37 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9684C42D4C45D8EF3E8E6713C00D4E0C6FFF4C8F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:a3:b3:8d:a6:40:8b:49:57:c6:9a:93:47:0c:
e4:ef:ef:62:27:8a:9f:36:2d:96:b2:3c:63:fa:03:
20:10:d0:f0:2d:aa:87:c5:be:54:84:57:b0:c8:da:
62:22:1d:28:5f:e4:45:8b:f6:fa:1d:b6:45:fb:98:
5b:d4:17:a2:30:47:a8:d1:f9:54:06:66:7a:61:bc:
ef:5b:c5:a4:98:30:73:00:55:84:05:38:97:36:77:
2b:e4:c6:10:48:c5:38:df:db:22:49:3c:54:f6:de:
0c:e8:23:77:c8:39:1e:af:f5:ce:3f:46:d0:bb:8f:
67:22:4c:03:eb:bf:2d:85:72:6c:39:fe:52:b4:d6:
c3:f2:eb:86:ed:fe:39:71:e8:c4:6c:a5:f4:14:f2:
81:5b:fd:4d:c5:af:15:b6:4a:ed:57:b4:a5:71:c6:
19:30:22:2f:f1:e4:82:14:ee:54:1b:d3:c3:b7:6a:
57:6f:a9:66:a5:f9:41:42:e4:00:d5:39:7b:25:7b:
81:04:1e:c0:50:49:30:f4:7e:e1:db:9f:aa:40:13:
1c:2a:a8:d9:34:49:b4:cb:b8:9f:73:29:28:de:6f:
eb:58:8e:3e:26:7b:d0:d1:a4:03:34:6a:fc:8d:99:
c7:db:04:0a:c7:5c:1e:79:af:04:f8:17:b1:c4:43:
08:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:84:C4:2D:4C:45:D8:EF:3E:8E:67:13:C0:0D:4E:0C:6F:FF:4C:8F
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/loTELUxF2O8-jmcTwA1ODG__TI8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.178.180.0/22
Signature Algorithm: sha256WithRSAEncryption
80:76:af:86:4e:4b:2f:c4:d1:e6:09:aa:24:f6:28:2b:68:c7:
28:c1:4e:a1:ac:4d:83:b1:e0:f4:a0:9b:0d:97:14:45:4c:6d:
84:3b:51:23:97:ce:80:ac:06:84:bf:93:bb:24:db:ea:ec:6b:
45:dd:e0:75:4c:85:50:b7:ac:ec:00:d5:d0:99:b3:a5:88:88:
05:ac:5a:17:fe:85:92:8e:9c:0f:42:72:60:6a:52:18:52:20:
e1:e7:ac:af:d1:af:fb:e1:5f:f7:cb:53:bb:8e:80:cb:02:3f:
77:84:85:de:42:a8:e4:ea:3f:83:ba:0b:7f:c1:2e:b0:cd:b0:
3f:f6:f7:e4:4f:da:fe:47:2c:6b:5c:3f:0a:68:5b:20:73:cb:
0d:a0:0c:82:42:5b:16:60:04:73:b3:aa:d6:fe:f8:e4:8c:22:
71:28:7c:37:f2:10:d1:bc:b2:18:ac:6c:b5:8b:ea:aa:20:0d:
3d:ae:a9:03:98:24:0e:93:11:b7:5b:b2:fd:c4:ff:6e:cf:f6:
74:8d:01:fa:58:25:9b:27:16:19:23:b1:30:21:3d:13:d5:3b:
99:99:6b:1e:53:37:0f:ba:96:32:d9:04:a3:8c:22:d3:64:89:
fc:de:91:15:df:25:5c:86:29:80:67:7e:8b:ce:ec:9b:05:6f:
55:c6:ef:08
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDHEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMTAyMDcx
MTM5MzdaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDk2ODRDNDJENEM0NUQ4
RUYzRThFNjcxM0MwMEQ0RTBDNkZGRjRDOEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDAo7ONpkCLSVfGmpNHDOTv72Inip82LZayPGP6AyAQ0PAtqofF
vlSEV7DI2mIiHShf5EWL9vodtkX7mFvUF6IwR6jR+VQGZnphvO9bxaSYMHMAVYQF
OJc2dyvkxhBIxTjf2yJJPFT23gzoI3fIOR6v9c4/RtC7j2ciTAPrvy2Fcmw5/lK0
1sPy64bt/jlx6MRspfQU8oFb/U3FrxW2Su1XtKVxxhkwIi/x5IIU7lQb08O3aldv
qWal+UFC5ADVOXsle4EEHsBQSTD0fuHbn6pAExwqqNk0SbTLuJ9zKSjeb+tYjj4m
e9DRpAM0avyNmcfbBArHXB55rwT4F7HEQwiDAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUloTELUxF2O8+jmcTwA1ODG//TI8wHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvbG9URUxVeEYyTzgtam1jVHdBMU9E
R19fVEk4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsqytDAN
BgkqhkiG9w0BAQsFAAOCAQEAgHavhk5LL8TR5gmqJPYoK2jHKMFOoaxNg7Hg9KCb
DZcURUxthDtRI5fOgKwGhL+TuyTb6uxrRd3gdUyFULes7ADV0JmzpYiIBaxaF/6F
ko6cD0JyYGpSGFIg4eesr9Gv++Ff98tTu46AywI/d4SF3kKo5Oo/g7oLf8EusM2w
P/b35E/a/kcsa1w/CmhbIHPLDaAMgkJbFmAEc7Oq1v745IwicSh8N/IQ0byyGKxs
tYvqqiANPa6pA5gkDpMRt1uy/cT/bs/2dI0B+lglmycWGSOxMCE9E9U7mZlrHlM3
D7qWMtkEo4wi02SJ/N6RFd8lXIYpgGd+i87smwVvVcbvCA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:45 2023 by rpki-client on console-ams.rpki-client.org