Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/y10ib6wxpTtGnTwhiB3BGKvoYJQ.roa
File: y10ib6wxpTtGnTwhiB3BGKvoYJQ.roa (raw, json)
Hash identifier: WKd/s0ePZBfKXc8eKav1xQS/4Z+GzfzsyHmCLpbcWaU=
Subject key identifier: CB:5D:22:6F:AC:31:A5:3B:46:9D:3C:21:88:1D:C1:18:AB:E8:60:94
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0E61
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/y10ib6wxpTtGnTwhiB3BGKvoYJQ.roa
Signing time: Wed 29 Sep 2021 02:40:19 +0000
ROA not before: Wed 29 Sep 2021 02:40:19 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17709
IP address blocks: 210.201.32.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3681 (0xe61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:40:19 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=CB5D226FAC31A53B469D3C21881DC118ABE86094
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:2c:d0:36:5b:cd:0a:b2:31:39:d5:85:4b:93:
ed:8d:d1:b6:81:85:ec:c3:98:22:23:db:f5:a5:c5:
e1:85:ec:53:6f:c9:20:5b:7a:8b:5f:fa:91:50:5e:
62:3c:fd:33:54:53:a8:8b:67:d1:6a:30:8e:93:2e:
6a:4a:c6:cc:f0:48:26:d5:cc:0a:11:87:74:ad:d3:
a5:1f:7d:68:6a:0a:72:71:fa:c5:6f:8d:d4:fe:71:
a5:7b:35:5f:a3:c0:7e:c0:36:e3:e2:fc:13:c8:68:
0c:a5:16:2a:30:fb:b1:23:92:c4:df:0d:35:0a:9c:
7d:f7:28:51:b0:1b:5f:6c:70:76:f7:08:2a:19:a9:
46:b8:b9:f2:fd:d8:f7:d8:fd:46:7c:ea:81:5e:af:
a7:ef:9c:58:d5:6f:56:39:fa:f3:ab:56:70:37:ca:
d7:f1:0a:fb:75:7c:28:d4:e3:29:5b:b7:ce:c2:27:
e3:cb:8f:44:d6:6f:41:5e:65:55:36:b5:64:8e:5f:
e9:79:e5:e6:2c:7d:bd:f6:45:7f:79:1b:b7:5d:e7:
43:da:ca:b7:0c:f6:94:dd:91:23:99:f9:e8:9f:c0:
04:33:93:3f:9b:97:7d:a1:27:79:e3:9f:89:b5:70:
97:7f:f4:d0:6a:d1:5e:6a:ee:2d:54:c0:ef:c1:76:
5e:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:5D:22:6F:AC:31:A5:3B:46:9D:3C:21:88:1D:C1:18:AB:E8:60:94
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/y10ib6wxpTtGnTwhiB3BGKvoYJQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.201.32.0/22
Signature Algorithm: sha256WithRSAEncryption
7a:69:9f:16:13:b6:b3:f3:82:15:19:2b:89:fd:9f:f0:6d:88:
d3:08:fc:ee:54:0c:59:ef:86:75:cc:9f:88:a8:51:ba:39:b1:
f2:65:44:48:dd:51:50:d9:29:f4:5d:9c:8f:76:47:56:f9:79:
17:d6:ac:c6:90:6b:85:0f:eb:6b:57:bd:22:f1:9c:07:63:e4:
0a:ac:c0:95:ff:64:a4:62:f8:18:f8:91:b9:2d:d1:10:85:30:
79:5b:8e:9e:95:a5:98:19:24:15:39:37:62:3f:6a:5b:dc:12:
a6:fb:a8:79:db:67:62:30:ca:9d:35:53:37:3c:cc:4e:15:5d:
96:d9:c5:43:39:bc:b3:4c:d1:1d:05:f5:d4:e3:4c:0f:cb:3b:
78:45:3c:46:7f:e2:cf:6e:92:ea:40:4f:b3:00:7d:b2:60:7c:
8e:a4:6e:64:c9:dc:54:ab:2c:9b:66:7d:d0:ea:dc:20:ab:94:
0a:2d:1e:bb:c5:3e:07:34:e7:ec:4a:03:0f:40:1e:40:b6:6f:
01:98:77:f1:00:a3:95:51:12:14:c0:68:44:5c:d4:95:44:b8:
3d:c9:d5:5e:63:be:1e:54:62:7d:55:6b:c8:92:e6:52:e5:28:
4f:5e:7b:0b:ca:d7:91:8b:aa:6f:58:6e:7f:22:d6:f0:3f:40:
2d:44:0d:29
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDmEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMTA5Mjkw
MjQwMTlaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKENCNUQyMjZGQUMzMUE1
M0I0NjlEM0MyMTg4MURDMTE4QUJFODYwOTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDnLNA2W80KsjE51YVLk+2N0baBhezDmCIj2/WlxeGF7FNvySBb
eotf+pFQXmI8/TNUU6iLZ9FqMI6TLmpKxszwSCbVzAoRh3St06UffWhqCnJx+sVv
jdT+caV7NV+jwH7ANuPi/BPIaAylFiow+7EjksTfDTUKnH33KFGwG19scHb3CCoZ
qUa4ufL92PfY/UZ86oFer6fvnFjVb1Y5+vOrVnA3ytfxCvt1fCjU4ylbt87CJ+PL
j0TWb0FeZVU2tWSOX+l55eYsfb32RX95G7dd50PayrcM9pTdkSOZ+eifwAQzkz+b
l32hJ3njn4m1cJd/9NBq0V5q7i1UwO/Bdl4XAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUy10ib6wxpTtGnTwhiB3BGKvoYJQwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wveTEwaWI2d3hwVHRHblR3aGlCM0JH
S3ZvWUpRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAtLJIDAN
BgkqhkiG9w0BAQsFAAOCAQEAemmfFhO2s/OCFRkrif2f8G2I0wj87lQMWe+Gdcyf
iKhRujmx8mVESN1RUNkp9F2cj3ZHVvl5F9asxpBrhQ/ra1e9IvGcB2PkCqzAlf9k
pGL4GPiRuS3REIUweVuOnpWlmBkkFTk3Yj9qW9wSpvuoedtnYjDKnTVTNzzMThVd
ltnFQzm8s0zRHQX11ONMD8s7eEU8Rn/iz26S6kBPswB9smB8jqRuZMncVKssm2Z9
0OrcIKuUCi0eu8U+BzTn7EoDD0AeQLZvAZh38QCjlVESFMBoRFzUlUS4PcnVXmO+
HlRifVVryJLmUuUoT157C8rXkYuqb1hufyLW8D9ALUQNKQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:56 2023 by rpki-client on console-fra.rpki-client.org