Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/ttIrf6U_o8ZTPHxblJKkLsaW_dc.roa
File: ttIrf6U_o8ZTPHxblJKkLsaW_dc.roa (raw, json)
Hash identifier: ouhLp8CH73FXUhua87hkJik5I4sJcjz97788k5eeQTQ=
Subject key identifier: B6:D2:2B:7F:A5:3F:A3:C6:53:3C:7C:5B:94:92:A4:2E:C6:96:FD:D7
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 08E8
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/ttIrf6U_o8ZTPHxblJKkLsaW_dc.roa
Signing time: Tue 29 Sep 2020 10:01:14 +0000
ROA not before: Tue 29 Sep 2020 10:01:14 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9311
IP address blocks: 210.201.136.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2280 (0x8e8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:14 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B6D22B7FA53FA3C6533C7C5B9492A42EC696FDD7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:e1:ab:8b:ff:81:46:90:ec:9f:4c:10:a9:d0:
e1:5a:59:47:5e:bb:a6:13:ba:1b:f4:b9:3f:04:b8:
08:15:93:6b:7a:b0:c6:42:fd:1f:b9:77:25:5a:7c:
37:80:e7:1b:9d:d2:b4:66:54:d2:a4:1e:68:15:30:
39:e2:18:dc:c2:df:67:a9:a0:16:39:af:55:1d:bf:
6c:fa:d7:bd:01:70:36:fe:55:49:22:86:70:3d:6d:
6f:aa:62:54:fa:cb:8b:a0:e4:12:09:62:b2:07:39:
e9:3c:03:68:1e:a3:4d:d5:6a:fa:70:f2:88:3e:83:
78:b6:ad:0d:c0:b4:2a:c0:a7:a7:ba:cb:11:4b:c8:
fb:04:c9:4f:60:d6:49:45:e2:02:e5:a3:ba:22:d6:
ac:05:74:ae:27:f2:37:35:cf:32:9f:87:ff:27:fd:
34:0e:5d:d2:41:aa:23:e4:bd:ba:ef:44:9c:08:3c:
31:e3:18:c4:06:33:d9:3c:50:e0:e6:27:b0:42:1f:
ec:8b:89:b3:17:27:7d:b7:b1:2d:e0:0c:2b:bd:63:
0b:48:4e:61:95:b5:28:f1:56:a4:9f:17:12:f6:18:
27:6b:ea:36:d1:4f:da:25:43:7f:0d:83:9f:cc:ef:
ca:55:99:0d:87:51:20:ac:5a:19:ac:66:cd:65:1d:
68:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:D2:2B:7F:A5:3F:A3:C6:53:3C:7C:5B:94:92:A4:2E:C6:96:FD:D7
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/ttIrf6U_o8ZTPHxblJKkLsaW_dc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.201.136.0/22
Signature Algorithm: sha256WithRSAEncryption
62:22:03:f3:b4:09:f5:d6:e1:82:16:a0:f0:d8:b2:63:07:1b:
6c:08:20:15:b5:e1:53:72:81:32:7b:18:2d:f4:f5:76:42:5d:
b7:71:6f:ed:9c:b2:87:56:24:25:93:f5:22:1e:3e:53:c8:58:
c2:02:9c:72:5f:cc:59:a1:28:3b:fa:ad:79:40:db:fb:51:c1:
6f:bd:95:97:29:e1:cf:cc:9d:39:78:1e:57:84:cf:f9:2e:f4:
63:8a:27:a7:12:c3:97:ef:bc:d9:9d:2f:58:86:92:d7:25:29:
15:9a:86:91:bf:f2:bc:17:7e:08:c7:b6:80:a3:ed:cb:9f:23:
38:9c:21:81:39:c5:90:35:08:e0:2d:e9:2f:8c:7c:58:1f:8a:
db:89:e1:7e:76:31:94:bd:c4:10:d5:6e:21:56:ca:dd:78:69:
28:90:9d:8b:c2:6d:f5:14:40:4c:d9:09:8f:9a:7d:10:d2:9a:
eb:ea:ca:60:5a:80:b9:36:4b:99:0e:b9:77:ef:bc:3c:96:74:
b1:0b:eb:82:69:44:dc:ec:8e:b3:62:33:14:fa:86:9f:18:81:
8c:fb:2d:73:f8:4e:be:b1:be:e2:ba:cb:44:da:74:b2:bd:9d:
55:62:47:c5:d5:6d:5d:d5:7c:c3:2d:42:61:4f:b1:3d:bf:9a:
7d:ae:7e:dc
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCOgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMDA5Mjkx
MDAxMTRaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEI2RDIyQjdGQTUzRkEz
QzY1MzNDN0M1Qjk0OTJBNDJFQzY5NkZERDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCd4auL/4FGkOyfTBCp0OFaWUdeu6YTuhv0uT8EuAgVk2t6sMZC
/R+5dyVafDeA5xud0rRmVNKkHmgVMDniGNzC32epoBY5r1Udv2z6170BcDb+VUki
hnA9bW+qYlT6y4ug5BIJYrIHOek8A2geo03Vavpw8og+g3i2rQ3AtCrAp6e6yxFL
yPsEyU9g1klF4gLlo7oi1qwFdK4n8jc1zzKfh/8n/TQOXdJBqiPkvbrvRJwIPDHj
GMQGM9k8UODmJ7BCH+yLibMXJ323sS3gDCu9YwtITmGVtSjxVqSfFxL2GCdr6jbR
T9olQ38Ng5/M78pVmQ2HUSCsWhmsZs1lHWjTAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUttIrf6U/o8ZTPHxblJKkLsaW/dcwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvdHRJcmY2VV9vOFpUUEh4YmxKS2tM
c2FXX2RjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAtLJiDAN
BgkqhkiG9w0BAQsFAAOCAQEAYiID87QJ9dbhghag8NiyYwcbbAggFbXhU3KBMnsY
LfT1dkJdt3Fv7Zyyh1YkJZP1Ih4+U8hYwgKccl/MWaEoO/qteUDb+1HBb72Vlynh
z8ydOXgeV4TP+S70Y4onpxLDl++82Z0vWIaS1yUpFZqGkb/yvBd+CMe2gKPty58j
OJwhgTnFkDUI4C3pL4x8WB+K24nhfnYxlL3EENVuIVbK3XhpKJCdi8Jt9RRATNkJ
j5p9ENKa6+rKYFqAuTZLmQ65d++8PJZ0sQvrgmlE3OyOs2IzFPqGnxiBjPstc/hO
vrG+4rrLRNp0sr2dVWJHxdVtXdV8wy1CYU+xPb+afa5+3A==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:46 2023 by rpki-client on console-ams.rpki-client.org