Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/5LAjKvNpz-Tpe-0VG9IuZfffQiE.roa
File: 5LAjKvNpz-Tpe-0VG9IuZfffQiE.roa (raw, json)
Hash identifier: D5S6G8QVZDSAXGHY7fCw4EPQj69kCTO2xFswiZenv7s=
Subject key identifier: E4:B0:23:2A:F3:69:CF:E4:E9:7B:ED:15:1B:D2:2E:65:F7:DF:42:21
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F29
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/5LAjKvNpz-Tpe-0VG9IuZfffQiE.roa
Signing time: Fri 24 Jun 2022 09:07:01 +0000
ROA not before: Fri 24 Jun 2022 09:07:01 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18419
IP address blocks: 218.35.0.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3881 (0xf29)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Jun 24 09:07:01 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=E4B0232AF369CFE4E97BED151BD22E65F7DF4221
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:de:ed:e2:2b:9c:55:46:7f:b9:fa:05:33:6b:
87:92:0f:bf:5f:49:cf:c2:7c:20:f8:a8:a2:cc:09:
c8:75:8e:ca:b3:cc:b6:94:3b:fc:e0:af:83:fd:6c:
5d:e4:ab:c1:25:b2:80:da:ad:a3:19:67:8c:91:c3:
40:bd:79:35:3b:88:97:dd:d6:90:48:89:55:ee:b8:
c0:e3:74:55:ef:f0:c2:4f:67:17:50:a4:34:2c:34:
9e:26:59:cf:47:5f:b2:1b:6b:d9:59:a1:ea:78:60:
84:64:51:01:3c:da:25:11:0d:7e:21:c2:69:52:ec:
0a:3b:95:d8:63:0c:52:ad:b0:4b:05:34:9c:7b:87:
8e:60:09:5a:04:e1:0b:62:fe:a5:7b:5c:61:40:c5:
1a:4f:cf:e2:aa:e9:06:df:d5:fd:d6:17:0d:85:2e:
01:91:ea:16:c5:38:ea:a9:b0:af:8d:11:a4:9f:75:
65:81:42:9e:f6:8e:0c:9d:b8:3b:b4:f4:6b:cb:4b:
e6:c6:fd:7d:32:67:69:45:4f:2f:3e:9d:0a:4b:c2:
59:a2:9f:bd:51:89:de:b3:dd:28:74:b5:61:b9:e9:
a1:11:80:27:d9:8a:07:9b:49:cd:d9:4d:1f:1a:27:
a3:b3:f8:ff:6f:2c:a7:97:3c:3f:33:07:ac:a6:4a:
ce:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:B0:23:2A:F3:69:CF:E4:E9:7B:ED:15:1B:D2:2E:65:F7:DF:42:21
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/5LAjKvNpz-Tpe-0VG9IuZfffQiE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.35.0.0/21
Signature Algorithm: sha256WithRSAEncryption
7f:bc:94:45:1e:e2:1a:d5:fe:12:ad:41:27:b9:25:05:d1:5e:
99:fc:38:27:34:15:b8:13:78:95:43:09:7c:6e:3d:15:21:0f:
e1:ee:5e:1b:35:9c:61:df:24:05:b4:66:31:ee:4b:0a:97:7c:
b0:43:5a:ce:a1:7e:14:5d:8e:b0:98:3c:fd:38:c5:0f:91:57:
82:20:e1:8e:1b:b3:c9:5b:96:a6:8c:c3:54:e6:b6:a0:43:fb:
cd:5a:64:dc:c9:ff:c3:cd:37:e8:b5:8b:0b:f7:87:4c:4e:c1:
66:ac:7b:8f:06:fd:5d:f7:de:44:c2:3a:74:13:ca:70:37:d8:
28:69:8b:a2:90:ac:04:10:56:35:23:87:9d:51:1d:00:fe:41:
49:9c:75:75:41:ea:2e:e4:be:89:2a:2e:28:37:6e:66:4b:c4:
7d:5f:b2:5e:6b:15:c8:e3:d1:ea:92:a5:9a:96:66:54:62:c2:
b6:94:39:cc:bc:b2:af:53:a6:77:e0:cc:20:79:84:8d:5c:8b:
3b:07:00:e5:86:0f:2d:49:98:13:d1:cb:0f:5c:8a:cf:f1:a7:
3e:43:d2:4f:c9:86:ca:12:da:b5:08:b1:7a:26:7d:00:f1:f7:
4d:81:20:d3:e2:ec:dc:7e:f9:d3:d7:12:22:c8:07:58:08:97:
45:18:8b:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:43 2023 by rpki-client on console-ams.rpki-client.org