Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/25lCOc0m0SD8AngGB0CfvxkzLaA.roa
File: 25lCOc0m0SD8AngGB0CfvxkzLaA.roa (raw, json)
Hash identifier: 4+wr/qfWfAhFaMcwB9YqynFUAlrH0O2fdb/OsGlnB2I=
Subject key identifier: DB:99:42:39:CD:26:D1:20:FC:02:78:06:07:40:9F:BF:19:33:2D:A0
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0BEB
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/25lCOc0m0SD8AngGB0CfvxkzLaA.roa
Signing time: Sun 07 Feb 2021 11:34:17 +0000
ROA not before: Sun 07 Feb 2021 11:34:17 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 7482
IP address blocks: 210.200.192.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3051 (0xbeb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:34:17 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=DB994239CD26D120FC02780607409FBF19332DA0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:a3:8d:73:b8:73:1d:33:31:bc:6a:5a:b5:25:
57:cd:0d:be:20:1f:04:51:64:19:15:05:54:d7:2a:
c8:5e:23:23:dc:61:d1:38:53:83:f6:d1:53:26:5a:
11:ab:d5:ec:aa:4c:fd:45:cb:50:e6:1f:93:3f:eb:
35:29:ab:0e:66:ee:e3:b6:86:9a:31:d8:e0:6a:c3:
5d:28:1a:df:65:4a:4f:42:4d:4a:1f:5b:03:f0:39:
59:a1:0c:41:6a:c0:b9:79:12:cf:a3:cb:d0:86:eb:
f2:83:b6:6c:6d:0a:be:a7:79:5b:5e:bd:fc:11:71:
07:be:43:05:27:d0:d1:31:23:fa:28:8b:06:63:19:
1f:c9:73:bc:57:ee:85:5a:14:3c:52:44:14:45:b9:
72:c8:40:97:d6:97:cf:99:77:25:0c:e4:79:0b:c5:
41:ed:09:ad:90:1c:4f:17:3b:07:22:56:34:c5:11:
4e:a8:23:87:b1:a0:9b:cb:24:3b:76:67:2b:c2:fa:
44:da:90:6b:d3:9e:1b:c2:18:a5:4f:24:7c:95:38:
5b:9b:43:e4:ea:5c:64:1b:17:b1:3c:25:bb:40:ce:
75:d8:ef:1b:93:9b:6a:c1:e9:00:b6:06:f4:b8:67:
5f:9d:7e:bb:cb:ab:06:00:58:6f:24:01:6b:e1:2c:
a9:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:99:42:39:CD:26:D1:20:FC:02:78:06:07:40:9F:BF:19:33:2D:A0
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/25lCOc0m0SD8AngGB0CfvxkzLaA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.192.0/18
Signature Algorithm: sha256WithRSAEncryption
24:97:a5:28:b8:a7:34:ea:5c:cf:f4:ed:d7:c3:c1:ed:de:4f:
9f:7e:ae:62:27:67:37:ca:fd:be:fc:4e:d9:6a:a6:4b:f2:22:
dc:c8:11:d0:c7:a4:eb:9e:a9:0e:81:2d:b1:49:c4:89:ae:5e:
6a:0d:df:22:83:32:c9:9c:ed:5e:d8:db:7e:bf:78:f5:de:a7:
d2:f4:53:cd:0f:05:e6:94:31:c3:e5:1e:cc:01:f7:22:93:4a:
41:88:15:c3:80:b4:53:95:07:cd:a5:fc:79:39:0d:35:63:3d:
2c:99:37:f6:da:e6:47:ed:bb:78:95:8e:24:f1:bd:3f:55:62:
05:e7:1c:62:51:ec:6b:19:48:5c:14:e3:a4:0b:84:60:1d:f7:
de:28:30:44:22:00:95:b4:41:26:89:36:3c:7a:af:0a:0d:f3:
42:2b:3e:85:46:6e:98:f0:d4:fc:54:46:3b:28:05:6e:38:1e:
c9:fb:e4:08:1a:51:75:3d:cd:3d:4a:e3:8f:a9:af:69:80:23:
9a:3a:e1:e1:c8:5e:36:f3:95:9f:e1:35:83:06:69:e8:f2:df:
40:3a:35:61:34:ce:b3:2e:46:0d:fc:04:40:38:7f:9b:f5:16:
61:54:e5:bc:eb:64:46:3c:42:c1:f1:6e:4b:99:a4:1a:0c:7e:
39:ac:52:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:53 2023 by rpki-client on console-fra.rpki-client.org