Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/7zD_RUKa_dWTGM6BxGfvR2vfT2Y.roa
File: 7zD_RUKa_dWTGM6BxGfvR2vfT2Y.roa (raw, json)
Hash identifier: OQr+SgtUrobGWsDQE0h8C0dxyGZSYIzBvYi2rwZ9P8Y=
Subject key identifier: EF:30:FF:45:42:9A:FD:D5:93:18:CE:81:C4:67:EF:47:6B:DF:4F:66
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0E4D
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/7zD_RUKa_dWTGM6BxGfvR2vfT2Y.roa
Signing time: Wed 29 Sep 2021 02:40:13 +0000
ROA not before: Wed 29 Sep 2021 02:40:13 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131597
IP address blocks: 218.35.64.0/19 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3661 (0xe4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:40:13 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=EF30FF45429AFDD59318CE81C467EF476BDF4F66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:df:eb:32:31:c6:67:8e:36:5a:f5:90:d3:26:
33:c7:67:ac:c8:59:8e:09:f6:32:d6:ba:72:53:e7:
b6:c2:6e:7c:cf:0e:11:45:76:23:7e:54:8a:f8:f7:
c5:57:2d:3e:e7:a4:b3:0a:14:bf:95:92:50:fa:61:
17:ec:ac:45:74:c5:fd:f3:74:d6:68:13:d7:71:97:
ab:65:62:f2:6f:38:58:ba:26:5c:4d:23:8e:16:85:
f6:e6:c1:df:db:27:70:9c:55:95:1e:1c:21:8c:83:
0d:dc:83:4b:a5:a8:dc:70:7e:4d:77:fc:02:27:60:
28:1a:96:97:0d:95:14:f5:c4:a6:21:8e:dd:7a:33:
da:d3:33:97:74:9d:aa:a7:eb:2e:00:5c:d5:f7:3f:
fc:9c:74:7b:c1:c2:fe:94:69:0d:b2:20:6e:f6:7b:
ec:65:dc:36:9d:bc:f3:e6:87:ee:f8:49:24:9c:8e:
02:d5:f6:31:68:f3:e4:59:46:46:8e:c4:d3:f6:a1:
fd:c4:35:72:a9:34:ef:a4:7b:51:53:39:76:2e:e8:
dc:5d:ea:c8:6a:61:96:74:38:02:e4:20:3f:63:2f:
2c:58:80:75:29:d3:db:99:55:39:de:73:ff:6c:86:
96:72:68:06:48:99:2f:26:9e:ee:52:7a:8a:15:02:
bd:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:30:FF:45:42:9A:FD:D5:93:18:CE:81:C4:67:EF:47:6B:DF:4F:66
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/7zD_RUKa_dWTGM6BxGfvR2vfT2Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.35.64.0/19
Signature Algorithm: sha256WithRSAEncryption
5d:50:b4:2a:b6:73:17:82:c2:bc:15:05:ba:8f:a9:cb:df:b4:
d7:e5:dc:b8:4a:a1:b4:ce:a4:e8:b0:e3:e7:0d:4f:3e:ad:15:
82:24:5c:26:bb:6b:2a:97:8f:f6:b2:66:e3:ac:43:aa:83:6e:
38:2f:e4:ff:1f:a4:95:9b:74:e0:1b:00:6f:a4:84:cb:9d:6b:
4f:73:8c:6c:4a:22:8a:15:c1:6d:0f:e3:da:a5:98:cb:f7:f7:
f4:77:7a:9d:e5:2d:d1:9d:3a:f6:ae:eb:cd:ae:30:e2:c5:fb:
f2:25:e5:d9:54:53:5f:41:57:aa:2e:38:aa:bd:95:96:98:32:
d1:6a:91:00:7b:a4:40:9f:8e:5c:a6:46:69:60:60:de:0f:3a:
77:fc:05:ab:4d:a2:70:76:21:06:8c:ae:3e:cb:ae:a0:2d:6a:
9c:eb:e1:43:5b:94:ca:0d:eb:c9:d7:cc:37:42:09:fd:75:ec:
3d:7b:6e:23:94:d7:92:a3:94:61:0f:ea:7f:21:70:f5:67:ce:
b3:a1:f4:25:83:0c:d0:21:fd:93:d1:4c:94:49:4e:03:86:3b:
b8:cd:0f:4c:dd:c2:91:f5:d6:26:4f:b2:89:41:ce:85:ed:e2:
94:45:23:61:a1:d5:d7:b4:ba:c0:42:1c:f8:37:28:46:28:7e:
e0:4d:66:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:54 2023 by rpki-client on console-fra.rpki-client.org