Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/1bMLwsDBNP3GnVOAGX1_3n9iqqM.roa
File: 1bMLwsDBNP3GnVOAGX1_3n9iqqM.roa (raw, json)
Hash identifier: qGC8IX/Nlqsb6FsfOBjAuXmF0YMufRQWo+O+mPfDYHs=
Subject key identifier: D5:B3:0B:C2:C0:C1:34:FD:C6:9D:53:80:19:7D:7F:DE:7F:62:AA:A3
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0DB6
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/1bMLwsDBNP3GnVOAGX1_3n9iqqM.roa
Signing time: Wed 29 Sep 2021 02:39:28 +0000
ROA not before: Wed 29 Sep 2021 02:39:28 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17709
IP address blocks: 203.79.128.0/17 maxlen: 18
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3510 (0xdb6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:39:28 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D5B30BC2C0C134FDC69D5380197D7FDE7F62AAA3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:08:dc:54:38:cb:44:06:d9:65:c1:57:c8:32:
6a:af:36:b7:34:e0:3d:fd:8b:51:3e:cd:7c:85:7d:
64:0d:19:6c:f8:73:84:b2:42:9d:89:16:e8:db:3e:
ba:ae:12:67:7b:a3:e7:ef:3c:17:11:2f:c7:96:9a:
b1:d4:4e:ca:73:b8:1c:f4:a6:ed:2a:c8:66:dd:de:
4b:ca:8d:d2:f3:0d:69:90:3f:b5:64:05:c6:bd:6c:
96:76:91:f1:f4:b9:3c:00:de:47:fd:77:49:ea:a4:
c7:a2:e0:b7:28:34:d1:bb:a8:9e:53:22:85:47:be:
fb:a0:70:8f:09:cf:16:65:09:8e:9b:41:b9:79:c2:
39:07:18:46:b6:ae:ee:05:01:a2:57:7c:98:8b:54:
89:0a:ba:6f:6c:e5:f6:10:10:7c:7d:b7:61:f3:12:
8f:60:b0:58:a8:51:9f:76:19:e9:27:46:d4:7e:a3:
20:05:6a:9d:29:7e:cb:b7:a5:63:e6:9e:e6:51:b7:
93:f9:d7:2b:b5:24:38:f7:44:15:ee:55:9a:ee:e5:
4f:be:3e:27:e9:91:27:12:c5:16:6e:52:f0:4e:71:
99:2b:12:12:cb:69:4f:d4:bf:0c:b8:8a:44:90:90:
8f:16:34:bb:8c:1f:1c:0e:02:93:f5:47:f6:8d:20:
4a:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:B3:0B:C2:C0:C1:34:FD:C6:9D:53:80:19:7D:7F:DE:7F:62:AA:A3
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/1bMLwsDBNP3GnVOAGX1_3n9iqqM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.128.0/17
Signature Algorithm: sha256WithRSAEncryption
53:62:4a:56:38:18:6e:87:91:74:35:bb:8d:51:b8:11:77:f4:
b9:b1:ba:5c:17:6f:d4:59:2c:3a:c3:31:0a:7d:54:8d:d7:a0:
25:74:20:38:a3:ab:12:5e:05:88:e9:8b:5c:fe:89:34:0f:83:
76:d5:4d:56:ae:58:61:97:04:7d:33:91:35:1e:e3:62:92:15:
33:43:2b:63:9d:f6:af:80:26:c3:60:54:39:1e:47:8a:cf:1b:
ee:e3:00:6b:2c:09:71:ff:82:03:2a:23:bd:a1:f1:1b:ce:52:
51:ec:56:d2:05:df:89:33:10:48:6b:77:d6:ea:62:9d:43:3b:
c3:0b:a1:c1:e8:11:7a:c6:27:61:1b:54:1b:5b:4d:c1:ec:f3:
0d:24:c0:be:fa:34:bc:f6:0c:d3:6a:5f:14:97:78:dc:29:60:
4c:bc:16:d6:c2:f1:f9:a3:08:ef:55:83:fe:5d:36:bd:aa:b9:
16:19:14:35:46:89:0c:75:bc:91:5a:e6:95:88:a1:42:0a:74:
40:52:d8:e3:ae:87:53:ac:b9:f6:ea:17:a7:49:2d:b9:3e:33:
74:f9:94:da:aa:9f:43:86:73:d1:9a:45:ba:47:69:50:8f:7d:
64:74:e1:b8:18:73:b3:32:bd:49:06:35:96:ed:7f:d4:07:de:
72:c9:40:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:53 2023 by rpki-client on console-fra.rpki-client.org