Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/2BlfIFEMH8xCg43JJRiI-NQUs3w.roa
File: 2BlfIFEMH8xCg43JJRiI-NQUs3w.roa (raw, json)
Hash identifier: Uw8AokJsHgz/6eBIRZibJXj0kwXp46g/arFJwiBC/aA=
Subject key identifier: D8:19:5F:20:51:0C:1F:CC:42:83:8D:C9:25:18:88:F8:D4:14:B3:7C
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0984
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/2BlfIFEMH8xCg43JJRiI-NQUs3w.roa
Signing time: Tue 29 Sep 2020 10:01:56 +0000
ROA not before: Tue 29 Sep 2020 10:01:56 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17709
IP address blocks: 210.200.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2436 (0x984)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:56 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D8195F20510C1FCC42838DC9251888F8D414B37C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ed:67:bc:31:11:4e:c8:ad:f4:7a:51:53:c6:
d0:dd:d0:fe:1b:21:f8:76:bd:c6:b3:a5:dd:ba:81:
07:2e:84:dc:31:4a:97:57:40:8d:1d:c8:9b:f5:26:
98:25:0e:2e:ad:fe:4c:f6:cc:6e:f7:0a:a1:b9:fe:
93:f0:f7:6d:c6:14:33:3d:ba:c3:51:5c:7e:92:5b:
cc:64:b1:5a:c2:b3:11:73:ef:c1:ee:f3:92:b4:13:
c5:39:28:d1:d7:38:fd:1e:fb:f3:fb:54:fa:4d:77:
1f:33:58:44:fe:61:6d:51:a3:5b:a4:b4:06:ce:a9:
7f:6c:3c:6a:52:f2:79:20:2e:fb:29:4d:66:e5:dd:
0c:16:2c:bb:49:45:02:39:89:f3:3f:6e:43:7c:59:
8d:b4:de:13:b1:51:ca:23:2c:04:9a:43:4f:20:84:
b0:75:20:a8:08:48:b4:9d:a5:b0:ce:9a:c2:71:e9:
6f:d5:8f:73:36:0d:37:e2:c9:05:e0:2c:e2:bb:6f:
03:19:62:02:b1:08:69:a9:d9:91:36:b4:a3:16:51:
c7:03:81:5e:2e:dd:11:e4:e1:78:b2:ef:e1:2b:b2:
28:cd:55:64:55:4b:11:cc:68:d8:93:4f:2e:f6:a5:
c6:07:7c:73:f1:0b:c8:d3:00:4d:43:7e:b1:5a:8f:
1c:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:19:5F:20:51:0C:1F:CC:42:83:8D:C9:25:18:88:F8:D4:14:B3:7C
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/2BlfIFEMH8xCg43JJRiI-NQUs3w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.0.0/16
Signature Algorithm: sha256WithRSAEncryption
69:8e:9d:d1:7e:3e:ad:79:3d:0d:18:b5:74:9a:dc:c6:90:06:
fb:40:01:c1:f8:69:4a:2c:3b:5c:ac:cc:7d:5e:2b:16:d0:eb:
11:cc:61:ac:16:3f:81:75:24:4b:54:5a:a4:99:d8:0c:ac:92:
f3:c0:d2:95:ac:7f:6c:6a:49:f4:ff:b4:bd:04:28:b3:95:a2:
cc:24:eb:9c:bc:8e:cd:36:bd:98:33:a9:d1:54:6a:c1:9a:9c:
27:4b:bc:fd:60:7f:8b:dd:11:06:f2:1c:12:2e:a9:7d:8a:f9:
8f:d4:59:ce:c3:7c:53:16:59:1a:de:72:4b:b2:a0:90:c5:d6:
8d:ae:e7:11:6a:b7:a7:f3:b9:04:c3:93:da:6b:19:60:7c:60:
94:74:f3:96:fa:48:a5:33:4b:6f:29:c7:64:17:7c:5f:3c:23:
8d:20:bb:0c:12:01:df:3f:57:7f:91:69:43:2c:54:7f:7c:13:
80:56:33:b5:e8:35:41:80:84:46:81:d3:77:4b:66:03:e2:66:
9b:51:79:90:ae:15:42:8a:13:32:a2:75:2e:c3:0b:35:85:e6:
a5:ad:3c:ac:17:c9:78:46:c1:70:b3:0b:d5:fd:e9:6d:73:49:
e0:b5:a8:88:e6:ec:42:bf:45:0c:d4:07:48:f5:cc:bb:a0:db:
76:9d:c0:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:53 2023 by rpki-client on console-fra.rpki-client.org