Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/1Gelrirzr4XYOHYEM2gMytzwtKE.roa
File: 1Gelrirzr4XYOHYEM2gMytzwtKE.roa (raw, json)
Hash identifier: AtEVZODpV+tpCfUIzOd7GGNdVAzAgfbN9e8COZPyiwk=
Subject key identifier: D4:67:A5:AE:2A:F3:AF:85:D8:38:76:04:33:68:0C:CA:DC:F0:B4:A1
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0C31
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/1Gelrirzr4XYOHYEM2gMytzwtKE.roa
Signing time: Sun 07 Feb 2021 11:35:13 +0000
ROA not before: Sun 07 Feb 2021 11:35:13 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24154
IP address blocks: 210.63.192.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3121 (0xc31)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:35:13 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D467A5AE2AF3AF85D838760433680CCADCF0B4A1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:49:87:cb:cb:0d:48:88:e0:47:4c:96:b9:1e:
cb:15:f7:75:1e:a5:f1:00:8e:6a:12:55:db:1d:cb:
66:9d:7e:b6:89:6c:be:37:cc:8f:6f:96:ec:d4:d4:
0d:e7:3f:a7:dd:5d:a0:90:ff:61:6f:fe:5b:2b:64:
3d:fc:29:65:51:f0:21:1d:7e:ef:ad:ab:b1:eb:30:
66:2d:95:4e:94:e1:75:57:08:4c:3f:9e:46:4b:40:
84:9b:29:0c:5d:c3:a0:b4:3f:53:47:81:74:7d:1b:
ad:7a:af:13:3d:f0:da:90:85:32:62:e9:1b:80:bc:
a5:43:98:53:c4:67:3f:49:c2:c3:f6:69:9d:a4:4d:
94:4d:95:53:0b:2e:3c:69:e2:75:45:8e:2b:17:7e:
6c:ee:cc:55:ea:f2:9a:aa:f4:01:01:88:3e:2b:4a:
07:be:59:a1:fd:9a:9e:fa:c1:3c:2c:7b:8b:30:6b:
96:e0:f0:48:32:29:a7:bf:99:b4:e6:b0:83:97:cb:
72:99:eb:c3:9f:0f:4d:33:c5:3e:ca:d5:ac:61:34:
39:d6:ee:0b:a9:8d:52:3b:b8:96:df:a7:1e:aa:95:
81:4b:3f:16:cf:0e:14:94:77:31:d7:5d:ba:97:d7:
fa:6a:0b:9a:7b:48:4e:3d:d3:6c:cf:45:24:72:1f:
ab:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:67:A5:AE:2A:F3:AF:85:D8:38:76:04:33:68:0C:CA:DC:F0:B4:A1
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/1Gelrirzr4XYOHYEM2gMytzwtKE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.192.0/21
Signature Algorithm: sha256WithRSAEncryption
34:fb:a9:a3:55:75:08:85:8a:42:b8:68:dc:51:d2:e6:c2:a2:
f5:da:0a:3b:ed:77:47:08:f5:46:ae:68:bf:c1:bb:78:fa:18:
d3:b2:42:00:9b:32:9b:7b:80:49:8c:7f:01:3e:00:d1:f7:a7:
56:d6:c8:3d:25:e0:e2:7b:5e:c9:d3:2f:be:9d:9f:f1:7d:bc:
db:82:85:d2:6e:ed:1f:f7:06:f8:17:1c:9e:e4:c4:3a:75:80:
80:22:de:85:b4:88:d4:de:53:c1:0e:53:fc:c6:4f:b8:a7:0b:
c3:c0:70:2a:c6:5f:2c:7c:2c:fe:f5:d5:08:26:49:aa:f5:61:
51:93:03:ed:82:ff:ca:13:b3:ae:6b:d6:47:1e:85:87:30:37:
aa:fc:20:13:3f:d9:47:47:a0:d9:a0:cb:ad:08:f4:a7:6a:40:
42:b7:75:17:0a:f8:e4:a4:4d:16:19:6a:77:3b:b2:d9:7b:45:
6f:fb:14:4c:12:38:ee:25:80:f2:d2:d2:89:cb:c7:f7:36:70:
6c:31:c4:aa:82:f4:2c:b2:f1:6c:ec:30:ab:38:02:42:b0:ee:
de:8d:8e:b4:85:bd:f4:49:64:c9:7e:9b:0e:54:6e:63:cf:65:
39:e7:ab:73:14:33:57:91:31:c6:7c:e9:dd:bd:bf:66:bf:50:
b2:28:ba:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:43 2023 by rpki-client on console-ams.rpki-client.org