Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/0Ra-0yrz7m5KE8XsSbNC20NW4dI.roa
File: 0Ra-0yrz7m5KE8XsSbNC20NW4dI.roa (raw, json)
Hash identifier: LGUe1P0KOobpAMu4xtWhXVvrcufMG5DFz9ItaGvhgLI=
Subject key identifier: D1:16:BE:D3:2A:F3:EE:6E:4A:13:C5:EC:49:B3:42:DB:43:56:E1:D2
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0DC4
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/0Ra-0yrz7m5KE8XsSbNC20NW4dI.roa
Signing time: Wed 29 Sep 2021 02:39:32 +0000
ROA not before: Wed 29 Sep 2021 02:39:32 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 7482
IP address blocks: 203.79.240.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3524 (0xdc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:39:32 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D116BED32AF3EE6E4A13C5EC49B342DB4356E1D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:92:f6:ee:7c:87:ef:f4:00:ba:f2:9e:51:08:
fb:18:ac:74:14:71:12:8a:8b:ab:60:1a:10:59:48:
1c:e6:e4:cd:70:de:a4:a6:d3:c6:ed:71:d9:0e:00:
69:6c:69:55:f9:bc:61:01:2a:bf:40:81:03:76:42:
f4:7a:01:16:cf:26:be:35:38:30:59:3a:56:82:11:
25:e6:4d:71:63:b3:af:15:f8:c7:7c:bf:95:33:75:
7f:99:4d:63:17:a4:dc:72:c9:f9:53:ee:dd:f6:0d:
16:41:2c:b3:e3:5c:66:de:b7:b1:de:27:18:ae:26:
e0:07:f4:99:39:ae:df:21:27:87:e9:ad:d7:e4:c2:
80:fd:7b:2f:dc:73:54:03:0e:3a:fb:83:2e:87:09:
e7:43:a7:49:0f:ed:75:e0:4b:08:48:a3:4c:87:77:
1e:91:23:4f:b2:80:44:43:59:1c:bb:c2:87:09:6a:
ac:08:d5:50:77:06:9e:e0:2a:22:d0:77:f8:e4:c9:
82:40:96:ee:ed:89:a5:27:0b:90:23:fd:24:dd:16:
58:b7:79:da:cb:4a:e0:08:83:ef:33:7e:c8:58:06:
23:b8:2c:4c:bc:2c:73:55:ef:c0:ab:06:bd:40:5a:
40:1a:d4:b6:86:1c:67:48:a5:77:9d:34:85:34:79:
7d:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:16:BE:D3:2A:F3:EE:6E:4A:13:C5:EC:49:B3:42:DB:43:56:E1:D2
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/0Ra-0yrz7m5KE8XsSbNC20NW4dI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.240.0/21
Signature Algorithm: sha256WithRSAEncryption
0e:89:0a:02:44:48:7e:2a:c1:b7:fd:2e:06:1f:83:ff:04:73:
0f:54:f8:93:db:1f:e7:79:29:88:33:8c:68:7c:bc:79:73:cf:
9f:3e:21:6b:09:97:d7:11:00:69:46:9e:e9:0c:2e:e4:ea:6a:
92:26:67:ec:94:6b:80:56:c6:b2:4d:d8:63:36:c4:d1:06:cd:
92:a9:32:db:80:16:5f:bc:6f:91:d6:ff:ec:b0:67:e5:71:ef:
cf:58:4e:8d:bd:eb:d9:1c:1c:3a:ca:69:3e:f5:70:2f:20:c7:
60:10:8b:7a:90:83:4c:3b:14:1a:1b:04:4a:83:aa:57:55:f0:
70:3e:68:89:ec:c0:50:73:e8:d1:92:75:df:20:a8:ec:be:42:
a6:4c:18:28:d5:04:ce:37:77:9a:5a:a1:a2:e6:e0:c0:b8:a2:
93:87:dc:72:eb:0f:43:82:33:43:92:ff:ad:de:75:80:d1:f7:
a4:a9:95:59:f0:cd:ac:20:d6:69:70:64:35:80:b1:bb:f6:73:
a1:45:ab:c0:bd:41:f8:10:3d:2c:07:f2:80:29:71:b7:ff:73:
7d:53:5b:19:f2:18:65:6a:42:63:07:f2:6e:65:04:9f:9b:3f:
23:27:ae:0f:84:ad:15:11:34:17:60:25:3a:bd:69:57:f4:00:
bf:01:23:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:43 2023 by rpki-client on console-ams.rpki-client.org