Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/8g7q9C4DCRPNPtvvBGqX81cqaAI.roa
File: 8g7q9C4DCRPNPtvvBGqX81cqaAI.roa (raw, json)
Hash identifier: ksdhV6G7rMW9OdclpBqEbRiftoCjmuszHdnCtNsAK/0=
Subject key identifier: F2:0E:EA:F4:2E:03:09:13:CD:3E:DB:EF:04:6A:97:F3:57:2A:68:02
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0975
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/8g7q9C4DCRPNPtvvBGqX81cqaAI.roa
Signing time: Tue 29 Sep 2020 10:01:51 +0000
ROA not before: Tue 29 Sep 2020 10:01:51 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131597
IP address blocks: 218.35.32.0/19 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2421 (0x975)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:51 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F20EEAF42E030913CD3EDBEF046A97F3572A6802
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:86:8e:2b:f5:f6:f7:75:a4:5c:49:e3:cf:41:
57:a6:c4:d1:ae:ff:b6:67:90:b9:88:4e:65:0e:f3:
1c:20:f6:e0:aa:bb:ce:36:82:3f:18:20:6c:4a:d8:
55:8d:c0:cf:48:69:2e:e9:12:5d:57:b9:bb:0b:b3:
b9:f4:a7:f4:87:15:a5:40:57:f4:28:58:e9:94:65:
f3:bb:e4:f7:2b:3d:95:d6:59:33:73:93:34:d9:0a:
dc:72:76:cb:d8:cb:57:38:c2:c4:0c:05:51:11:b3:
75:93:b2:3d:b5:e3:a7:42:55:62:a4:e4:69:d6:34:
14:3e:51:67:59:59:d9:ae:ce:9a:24:fe:fa:75:20:
79:6c:ff:55:3f:ec:d0:0e:6a:64:e0:11:1d:94:ab:
06:b7:80:bc:8b:9b:4d:f9:71:b0:75:38:fe:53:c7:
9e:13:7f:de:a6:37:db:37:92:c4:b4:26:ee:ea:74:
75:08:e7:9e:36:35:43:ec:fb:4a:55:69:1a:15:62:
db:2d:af:fc:b0:58:96:22:10:9c:fc:92:b2:cb:45:
c2:26:43:fb:41:df:04:da:99:f0:1e:71:5d:e4:e4:
f0:0d:88:54:39:00:bf:44:78:81:1b:6f:dc:c5:8b:
31:73:3b:5e:aa:e1:dc:c7:33:b2:8a:a7:2a:8f:9c:
8f:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:0E:EA:F4:2E:03:09:13:CD:3E:DB:EF:04:6A:97:F3:57:2A:68:02
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/8g7q9C4DCRPNPtvvBGqX81cqaAI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.35.32.0/19
Signature Algorithm: sha256WithRSAEncryption
58:38:85:d4:d7:be:fb:85:e1:22:bf:06:e6:11:6e:45:4d:08:
28:e0:d8:b7:4e:0b:eb:e9:26:c1:18:38:1e:6a:26:ef:1a:dc:
c3:fd:5d:19:a3:d1:ec:78:e5:e0:09:10:9a:f4:81:b3:e9:ed:
bf:e2:27:75:81:f6:42:e3:36:6a:4e:b5:83:c7:ca:03:45:63:
54:16:69:b5:c2:59:dc:5a:8a:ec:29:d6:87:f3:9e:5d:29:90:
0c:c8:af:f6:bc:1f:f2:aa:be:e3:2c:63:9c:2b:83:11:e7:91:
00:9f:0c:ab:e6:fb:f3:70:28:13:e2:66:80:39:81:48:f1:25:
df:17:ff:77:31:ab:0d:95:33:62:c6:20:b8:76:ac:89:59:4b:
bf:33:79:b7:ce:07:4b:45:a6:dd:cd:43:8d:a6:d3:cb:bf:47:
ca:6f:f0:42:c5:0d:54:99:10:1a:b1:24:9c:22:3e:01:82:69:
b2:f6:a2:7e:d2:de:56:21:91:58:69:fb:e0:0e:0a:7a:26:4c:
63:0e:97:f0:3e:0d:2b:32:d5:f4:52:49:42:72:56:49:33:c4:
23:70:74:62:5c:00:40:08:7f:19:84:95:de:2b:8f:2f:79:7e:
76:98:f9:a2:72:2e:65:47:91:03:6e:39:56:cc:1f:9f:25:05:
4f:9b:7d:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:54 2023 by rpki-client on console-fra.rpki-client.org