Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/o7ZQSc3xMV_MR0lER_-QZu4gl2g.roa
File: o7ZQSc3xMV_MR0lER_-QZu4gl2g.roa (raw, json)
Hash identifier: UgqpfK3D03oWDCyCt7+HVz0o+BMpChOeOIBfT512Ymk=
Subject key identifier: A3:B6:50:49:CD:F1:31:5F:CC:47:49:44:47:FF:90:66:EE:20:97:68
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0957
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/o7ZQSc3xMV_MR0lER_-QZu4gl2g.roa
Signing time: Tue 29 Sep 2020 10:01:43 +0000
ROA not before: Tue 29 Sep 2020 10:01:43 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17709
IP address blocks: 210.63.224.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2391 (0x957)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:43 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A3B65049CDF1315FCC47494447FF9066EE209768
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:a7:5d:e8:20:f7:c8:67:99:13:9f:ca:fd:b7:
e5:07:b5:4b:51:8d:03:fa:40:d6:20:a7:d6:e8:bc:
d9:9c:43:08:97:5c:99:ab:7e:9a:1d:98:bc:c1:4c:
4b:03:31:9d:62:3a:71:72:97:23:27:cc:25:6f:9e:
f3:ca:ba:30:79:0a:8d:d4:78:ed:be:a2:1f:f5:5a:
14:ad:4f:36:ea:d1:b8:73:09:42:94:4a:6a:42:14:
a3:74:81:90:52:af:ba:e5:e2:db:7f:47:0e:0e:34:
e6:71:fc:40:03:18:85:6d:59:7e:fc:83:ba:f6:1a:
cc:37:80:d7:98:86:00:b7:ef:8c:44:b0:97:49:c1:
b5:6d:57:41:4b:af:b4:7f:b3:3e:e5:41:25:7b:af:
34:39:b1:8e:16:17:62:2e:34:9c:8e:aa:05:14:74:
9d:55:5a:3f:50:bc:01:6f:50:c9:68:63:96:49:09:
18:8b:5d:83:c6:7f:1f:e3:a2:25:25:3a:c3:94:49:
a8:84:98:0b:80:df:bd:b8:b1:e7:b7:bd:70:b2:73:
a3:b5:8e:5e:d3:ce:bb:e7:6d:53:94:23:14:60:07:
cc:67:a9:72:5d:6c:37:b3:fe:ee:58:7b:41:8a:c6:
66:10:8b:f2:ed:41:9d:d6:1c:0e:da:88:c4:94:78:
23:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:B6:50:49:CD:F1:31:5F:CC:47:49:44:47:FF:90:66:EE:20:97:68
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/o7ZQSc3xMV_MR0lER_-QZu4gl2g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.224.0/19
Signature Algorithm: sha256WithRSAEncryption
1b:d4:37:72:4c:9a:23:9c:21:e9:35:ee:97:6f:ea:9b:7c:9a:
1d:b3:dd:80:16:2f:e5:a3:59:ae:45:4b:a0:7d:6f:3a:96:4a:
a4:5a:7a:80:38:18:7d:45:7b:19:b8:6e:9f:7d:90:89:1b:59:
ee:f7:6f:f6:f9:58:bc:1e:23:dc:76:e1:f2:26:37:a9:d1:13:
aa:f8:3e:92:8f:18:7b:32:bb:5c:29:a5:8d:eb:99:34:fe:6b:
5c:15:25:ca:bd:6f:cf:e7:24:60:2a:f3:79:0b:e8:1e:97:b5:
e7:0f:50:9a:aa:f9:b4:a6:04:cd:7c:27:07:bd:5f:c7:43:e6:
93:a7:cf:9d:e1:84:39:16:1b:a4:91:bc:a6:c8:1d:c7:b1:c5:
83:64:7f:2f:be:21:31:cc:1c:d3:de:77:0e:a3:68:8f:56:e7:
ab:d2:c0:0f:9d:42:f8:f9:b9:f3:76:1a:e0:81:c8:69:99:69:
c6:00:68:0f:35:6c:4e:92:ce:34:39:36:b2:5f:85:82:1a:d6:
00:d9:0e:93:18:92:a4:28:1d:e6:41:f2:ee:3c:32:ab:6f:86:
9d:50:af:3d:68:c3:26:f7:ea:de:03:f1:d8:16:d2:ee:46:16:
1c:b9:16:63:39:69:c5:28:d9:ef:e5:d5:9d:46:e3:3f:7d:f0:
b6:bb:d3:cb
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCVcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMDA5Mjkx
MDAxNDNaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEEzQjY1MDQ5Q0RGMTMx
NUZDQzQ3NDk0NDQ3RkY5MDY2RUUyMDk3NjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC5p13oIPfIZ5kTn8r9t+UHtUtRjQP6QNYgp9bovNmcQwiXXJmr
fpodmLzBTEsDMZ1iOnFylyMnzCVvnvPKujB5Co3UeO2+oh/1WhStTzbq0bhzCUKU
SmpCFKN0gZBSr7rl4tt/Rw4ONOZx/EADGIVtWX78g7r2Gsw3gNeYhgC374xEsJdJ
wbVtV0FLr7R/sz7lQSV7rzQ5sY4WF2IuNJyOqgUUdJ1VWj9QvAFvUMloY5ZJCRiL
XYPGfx/joiUlOsOUSaiEmAuA3724see3vXCyc6O1jl7TzrvnbVOUIxRgB8xnqXJd
bDez/u5Ye0GKxmYQi/LtQZ3WHA7aiMSUeCM9AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUo7ZQSc3xMV/MR0lER/+QZu4gl2gwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvbzdaUVNjM3hNVl9NUjBsRVJfLVFa
dTRnbDJnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBdI/4DAN
BgkqhkiG9w0BAQsFAAOCAQEAG9Q3ckyaI5wh6TXul2/qm3yaHbPdgBYv5aNZrkVL
oH1vOpZKpFp6gDgYfUV7Gbhun32QiRtZ7vdv9vlYvB4j3Hbh8iY3qdETqvg+ko8Y
ezK7XCmljeuZNP5rXBUlyr1vz+ckYCrzeQvoHpe15w9Qmqr5tKYEzXwnB71fx0Pm
k6fPneGEORYbpJG8psgdx7HFg2R/L74hMcwc0953DqNoj1bnq9LAD51C+Pm583Ya
4IHIaZlpxgBoDzVsTpLONDk2sl+FghrWANkOkxiSpCgd5kHy7jwyq2+GnVCvPWjD
Jvfq3gPx2BbS7kYWHLkWYzlpxSjZ7+XVnUbjP33wtrvTyw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:46 2023 by rpki-client on console-ams.rpki-client.org