Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/1c9szzrxues-ajdOlnMm6Og3jfQ.roa
File: 1c9szzrxues-ajdOlnMm6Og3jfQ.roa (raw, json)
Hash identifier: b68h8brV1p4vSgHQn/wVnYmfFkwJaqKj4dqmx+nWYR8=
Subject key identifier: D5:CF:6C:CF:3A:F1:B9:EB:3E:6A:37:4E:96:73:26:E8:E8:37:8D:F4
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0987
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/1c9szzrxues-ajdOlnMm6Og3jfQ.roa
Signing time: Tue 29 Sep 2020 10:01:57 +0000
ROA not before: Tue 29 Sep 2020 10:01:57 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 7482
IP address blocks: 210.200.0.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2439 (0x987)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:57 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D5CF6CCF3AF1B9EB3E6A374E967326E8E8378DF4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:08:2c:c9:d2:93:b9:da:a5:3f:c8:b2:6a:f7:
6e:9e:5d:07:2f:37:5e:5a:fc:37:f0:b1:80:8e:4d:
b5:5a:1e:eb:fa:df:52:a1:99:66:8c:b0:af:96:d7:
88:60:7a:7f:12:53:a4:1d:7a:d3:bf:5a:ba:ee:4a:
1b:69:c8:aa:2f:42:aa:fd:4a:32:87:8d:8d:b8:16:
e3:f3:85:98:61:8c:fd:f2:b1:1b:15:2b:50:45:90:
7a:c0:aa:a4:4a:ee:c3:5b:6c:80:c4:c2:f5:62:89:
ec:2e:a9:5f:ce:95:e0:eb:24:4e:41:b7:f7:14:fd:
5d:4c:22:b6:03:24:28:1b:51:95:89:98:fc:cf:2c:
ca:a9:68:0d:31:75:2b:c9:c4:f4:ed:7a:98:80:38:
f8:ae:da:4d:f8:14:51:32:1d:6f:2c:a7:a9:f9:29:
26:fb:08:de:3c:b5:f0:d0:99:02:2a:75:47:c9:3b:
cf:dc:56:55:13:63:5d:89:49:3a:bf:c2:a2:9b:c3:
31:aa:0f:e4:88:1f:7e:b8:5d:00:86:0d:df:5c:34:
d4:7a:6f:40:f0:07:6c:c8:13:05:5f:18:23:91:26:
d2:86:64:9e:e4:1c:39:a6:93:81:db:1b:8a:83:6b:
89:ff:8e:17:0a:6b:f8:47:c5:d8:b3:b7:78:91:e5:
22:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:CF:6C:CF:3A:F1:B9:EB:3E:6A:37:4E:96:73:26:E8:E8:37:8D:F4
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/1c9szzrxues-ajdOlnMm6Og3jfQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.0.0/18
Signature Algorithm: sha256WithRSAEncryption
93:0d:e7:aa:52:07:c4:5c:4b:06:3c:38:5c:43:4f:44:db:a6:
82:26:6f:34:b4:4f:19:23:16:df:fe:52:6a:b8:f7:5a:76:06:
80:f8:4a:a6:f7:5a:86:06:b6:f0:5e:0e:43:26:fc:68:40:d7:
72:74:22:5c:21:5d:0b:09:79:c7:29:01:16:0a:a9:1f:d2:77:
84:f9:86:ce:b4:12:29:39:ed:42:ad:c2:f6:d3:a6:74:a7:d7:
f4:96:6a:86:a7:a7:06:f9:78:e8:6b:4c:c2:b6:cd:18:03:d8:
fb:08:09:15:b2:69:e1:8b:07:57:99:51:71:14:b0:93:d9:a5:
2c:ac:ff:90:95:d3:28:3b:c2:bc:b6:d6:82:91:c0:3b:1f:a9:
fb:07:6f:ab:1c:05:9c:a5:38:d8:3f:8c:0a:4b:d3:ba:62:54:
59:3f:01:74:a6:8b:69:43:84:a6:1e:7f:f0:42:92:59:bd:a3:
41:f6:64:ea:5f:6f:fe:80:ae:47:af:e5:1f:c1:2e:b5:0f:67:
c0:43:8b:77:55:44:c8:6d:87:2f:a1:98:4f:c0:0c:fd:0c:a7:
b4:a9:85:66:6c:b1:a7:60:17:2c:07:5b:17:cf:3c:df:55:87:
c2:8a:68:70:d5:0b:2c:bd:d0:bf:b8:ff:c7:a2:02:67:db:ed:
96:71:26:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:43 2023 by rpki-client on console-ams.rpki-client.org