Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/mHGVWgv6-qzZWGEupugjy_iGdiA.roa
File: mHGVWgv6-qzZWGEupugjy_iGdiA.roa (raw, json)
Hash identifier: Syn0RQqR5UV4xXYztN5VByGYqOuVxdDXwcWkD5pQEiM=
Subject key identifier: 98:71:95:5A:0B:FA:FA:AC:D9:58:61:2E:A6:E8:23:CB:F8:86:76:20
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0C03
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/mHGVWgv6-qzZWGEupugjy_iGdiA.roa
Signing time: Sun 07 Feb 2021 11:34:35 +0000
ROA not before: Sun 07 Feb 2021 11:34:35 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 7482
IP address blocks: 210.201.128.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3075 (0xc03)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:34:35 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9871955A0BFAFAACD958612EA6E823CBF8867620
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:43:6c:a5:ff:db:0b:0a:26:5f:0c:b1:3e:92:
f2:17:33:11:49:10:2b:0f:69:c3:1c:62:9c:2f:79:
ed:01:38:3e:e8:7d:5c:7b:a5:d8:2d:21:4d:c3:8b:
25:40:7a:2b:7b:40:3b:1b:ab:85:c9:02:64:36:9d:
a0:91:cf:36:f3:55:af:ab:65:db:a5:6e:96:d9:31:
24:3d:9b:3b:27:53:c9:53:28:3e:2b:fc:ff:cb:d5:
a9:3d:ce:65:e9:43:5b:96:be:b0:9c:ee:59:cf:04:
8c:91:ca:d1:ae:77:eb:bb:b6:44:90:51:aa:3d:d4:
cc:2d:93:a5:4b:17:7a:d7:bb:d9:4f:d4:a4:b4:56:
78:10:a4:59:c9:81:db:85:4f:af:75:d1:0b:5f:6b:
32:83:a5:e0:5c:5e:04:78:69:04:a8:d3:18:66:28:
24:d7:b1:be:d5:6a:a0:ad:3d:9c:fd:cd:b7:9b:e6:
d8:28:70:54:6b:a6:1e:15:ba:0c:3f:58:d8:24:5d:
52:c1:bb:a2:ce:bf:f3:dd:65:ae:6c:40:20:56:f9:
1c:01:79:a0:35:cf:98:65:36:5e:c7:f2:bd:fe:6b:
88:02:58:f2:ac:20:84:37:d4:67:f6:84:7f:59:c3:
fe:08:76:0c:ba:3c:48:a6:8d:a1:dc:f2:06:78:32:
cf:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:71:95:5A:0B:FA:FA:AC:D9:58:61:2E:A6:E8:23:CB:F8:86:76:20
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/mHGVWgv6-qzZWGEupugjy_iGdiA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.201.128.0/18
Signature Algorithm: sha256WithRSAEncryption
9b:c9:f7:0d:e3:a9:ea:99:9b:75:29:8f:80:4b:16:41:b5:ae:
a5:7c:3c:51:02:07:2f:f8:25:9c:ee:19:25:ba:ab:0d:eb:d5:
8e:a2:7d:94:1a:e1:2f:04:fc:bc:5c:ea:57:8c:a8:20:21:29:
41:38:40:8a:2d:e6:b2:ad:e9:3a:17:06:1f:32:b7:63:ae:81:
d0:b1:13:61:46:41:d1:23:db:87:7a:d2:be:02:34:65:45:b5:
cd:10:d0:60:38:c5:62:93:56:ab:68:3f:7a:5a:b5:3a:48:ca:
98:dd:3c:a2:20:4e:53:77:e0:ad:05:95:34:ec:d6:96:70:b7:
4c:c7:60:b1:91:08:f3:ee:c8:45:ab:f0:56:0c:83:79:40:79:
c4:e4:35:63:74:ab:53:a0:11:fc:ae:68:9f:81:e6:c7:18:11:
e4:9a:3d:67:7f:68:dd:f9:9b:f8:48:7a:4e:bc:62:9f:0c:8a:
0d:e6:93:91:8f:e3:61:5b:31:b3:7e:23:60:53:6c:64:10:ef:
26:df:a6:0c:5b:70:fb:ad:6b:db:d3:dc:ca:1c:85:60:f6:5a:
f3:52:10:b6:87:c3:1a:eb:9d:31:79:cc:dc:12:87:5b:a6:d5:
1f:bb:b3:9f:e2:75:7f:56:63:f4:04:cf:03:e9:22:db:c1:97:
c9:e6:2f:ea
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDAMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMTAyMDcx
MTM0MzVaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDk4NzE5NTVBMEJGQUZB
QUNEOTU4NjEyRUE2RTgyM0NCRjg4Njc2MjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC3Q2yl/9sLCiZfDLE+kvIXMxFJECsPacMcYpwvee0BOD7ofVx7
pdgtIU3DiyVAeit7QDsbq4XJAmQ2naCRzzbzVa+rZdulbpbZMSQ9mzsnU8lTKD4r
/P/L1ak9zmXpQ1uWvrCc7lnPBIyRytGud+u7tkSQUao91Mwtk6VLF3rXu9lP1KS0
VngQpFnJgduFT6910QtfazKDpeBcXgR4aQSo0xhmKCTXsb7VaqCtPZz9zbeb5tgo
cFRrph4Vugw/WNgkXVLBu6LOv/PdZa5sQCBW+RwBeaA1z5hlNl7H8r3+a4gCWPKs
IIQ31Gf2hH9Zw/4Idgy6PEimjaHc8gZ4Ms91AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUmHGVWgv6+qzZWGEupugjy/iGdiAwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvbUhHVldndjYtcXpaV0dFdXB1Z2p5
X2lHZGlBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBtLJgDAN
BgkqhkiG9w0BAQsFAAOCAQEAm8n3DeOp6pmbdSmPgEsWQbWupXw8UQIHL/glnO4Z
JbqrDevVjqJ9lBrhLwT8vFzqV4yoICEpQThAii3msq3pOhcGHzK3Y66B0LETYUZB
0SPbh3rSvgI0ZUW1zRDQYDjFYpNWq2g/elq1OkjKmN08oiBOU3fgrQWVNOzWlnC3
TMdgsZEI8+7IRavwVgyDeUB5xOQ1Y3SrU6AR/K5on4HmxxgR5Jo9Z39o3fmb+Eh6
TrxinwyKDeaTkY/jYVsxs34jYFNsZBDvJt+mDFtw+61r29PcyhyFYPZa81IQtofD
GuudMXnM3BKHW6bVH7uzn+J1f1Zj9ATPA+ki28GXyeYv6g==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:56 2023 by rpki-client on console-fra.rpki-client.org