Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/qtiUKP5FF0ZldE83QOZJzuqEX3c.roa
File: qtiUKP5FF0ZldE83QOZJzuqEX3c.roa (raw, json)
Hash identifier: QZ0K/lwkIPV7T1i3OK58usrk7WgvcKqfn620+m94Q5I=
Subject key identifier: AA:D8:94:28:FE:45:17:46:65:74:4F:37:40:E6:49:CE:EA:84:5F:77
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0BE1
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/qtiUKP5FF0ZldE83QOZJzuqEX3c.roa
Signing time: Sun 07 Feb 2021 11:34:10 +0000
ROA not before: Sun 07 Feb 2021 11:34:10 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24154
IP address blocks: 210.200.85.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3041 (0xbe1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:34:10 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=AAD89428FE45174665744F3740E649CEEA845F77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:46:c3:5e:28:45:c2:a4:7e:20:e5:32:d5:5f:
35:f1:fb:fc:90:34:4c:37:02:8a:8d:09:1f:2b:6e:
6e:8d:fc:00:30:1c:c4:12:78:04:e7:e3:0b:46:cf:
8c:54:61:6d:d2:44:eb:2c:c3:3c:e0:ec:83:fc:3b:
2a:41:3e:ca:67:30:77:e2:55:a5:fc:30:fe:42:2a:
c4:10:cb:b6:91:c2:23:3a:d0:dd:6a:e7:ad:83:ed:
3a:5b:04:4f:d5:33:2d:e7:27:00:a1:e8:9e:92:68:
b0:f9:5f:90:8c:93:31:67:b0:d6:05:ea:40:c0:ff:
f0:cf:62:ea:73:de:7c:67:41:f1:8f:92:f8:11:b9:
86:fb:78:e2:2a:5f:b5:2e:d8:4e:e5:4e:d1:f1:87:
41:f8:ff:7b:af:27:16:8a:e2:fa:69:db:4f:93:a7:
81:13:fe:cd:8c:c8:ae:d0:03:d2:17:d4:fb:81:84:
66:68:b3:62:e7:ef:38:8a:65:d1:cc:8a:92:84:5f:
d6:7b:31:2f:10:5e:0c:ad:f3:b7:94:15:dc:eb:c1:
45:b8:cb:2b:fe:1b:47:c5:1a:a6:8a:f6:2e:73:e5:
6e:1f:18:3b:6f:bb:85:86:d7:a9:8f:0f:d9:cb:a2:
34:c4:30:14:de:f5:5e:b5:6a:ee:7e:db:26:a6:13:
d0:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:D8:94:28:FE:45:17:46:65:74:4F:37:40:E6:49:CE:EA:84:5F:77
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/qtiUKP5FF0ZldE83QOZJzuqEX3c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.85.0/24
Signature Algorithm: sha256WithRSAEncryption
63:ca:f0:a5:c6:b8:d0:f8:4b:d1:c5:da:a5:80:fc:d5:10:04:
e2:04:17:71:ba:a4:d0:81:0d:65:fa:4a:76:0f:b0:16:3c:0d:
d7:f5:a2:50:89:d7:38:28:a7:31:76:b9:d2:54:a3:58:e1:4a:
be:79:16:8c:df:d9:1c:3e:7c:10:bf:38:73:54:d4:ba:f5:3b:
7c:20:69:d5:c4:d8:e5:af:a0:17:7e:7e:74:ee:1d:75:1d:6f:
6a:20:7a:17:3e:58:83:01:7d:11:8a:bb:cf:3f:e2:f9:38:6a:
43:7d:52:01:9b:28:01:2d:98:6e:c5:1c:2b:43:1a:70:9c:7e:
cd:1b:2c:69:53:46:72:10:c7:22:fe:a5:9f:27:03:d0:69:fc:
36:c3:12:fc:55:07:a0:de:84:35:92:78:36:61:cf:d4:5f:98:
62:4e:db:ec:7d:a7:b1:34:b1:d5:f5:e1:be:9c:a4:51:75:4d:
3e:5f:96:95:3f:1b:66:26:59:d3:0f:a2:bc:5b:2d:41:48:80:
11:87:a8:1a:a3:9b:af:9f:3a:33:06:e3:20:72:3c:5a:82:a0:
ef:d6:e7:96:5d:00:53:75:23:29:8f:e6:94:10:c9:de:5e:67:
56:80:df:2c:47:c8:88:8a:f2:a7:de:ba:db:c6:f4:39:c8:45:
ab:41:3f:8e
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICC+EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMTAyMDcx
MTM0MTBaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEFBRDg5NDI4RkU0NTE3
NDY2NTc0NEYzNzQwRTY0OUNFRUE4NDVGNzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDGRsNeKEXCpH4g5TLVXzXx+/yQNEw3AoqNCR8rbm6N/AAwHMQS
eATn4wtGz4xUYW3SROsswzzg7IP8OypBPspnMHfiVaX8MP5CKsQQy7aRwiM60N1q
562D7TpbBE/VMy3nJwCh6J6SaLD5X5CMkzFnsNYF6kDA//DPYupz3nxnQfGPkvgR
uYb7eOIqX7Uu2E7lTtHxh0H4/3uvJxaK4vpp20+Tp4ET/s2MyK7QA9IX1PuBhGZo
s2Ln7ziKZdHMipKEX9Z7MS8QXgyt87eUFdzrwUW4yyv+G0fFGqaK9i5z5W4fGDtv
u4WG16mPD9nLojTEMBTe9V61au5+2yamE9D9AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUqtiUKP5FF0ZldE83QOZJzuqEX3cwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvcXRpVUtQNUZGMFpsZEU4M1FPWkp6
dXFFWDNjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANLIVTAN
BgkqhkiG9w0BAQsFAAOCAQEAY8rwpca40PhL0cXapYD81RAE4gQXcbqk0IENZfpK
dg+wFjwN1/WiUInXOCinMXa50lSjWOFKvnkWjN/ZHD58EL84c1TUuvU7fCBp1cTY
5a+gF35+dO4ddR1vaiB6Fz5YgwF9EYq7zz/i+ThqQ31SAZsoAS2YbsUcK0MacJx+
zRssaVNGchDHIv6lnycD0Gn8NsMS/FUHoN6ENZJ4NmHP1F+YYk7b7H2nsTSx1fXh
vpykUXVNPl+WlT8bZiZZ0w+ivFstQUiAEYeoGqObr586MwbjIHI8WoKg79bnll0A
U3UjKY/mlBDJ3l5nVoDfLEfIiIryp96628b0OchFq0E/jg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:56 2023 by rpki-client on console-fra.rpki-client.org