Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/9bbWRTsvCw02VPQMQYxYOZ_BUX0.roa
File: 9bbWRTsvCw02VPQMQYxYOZ_BUX0.roa (raw, json)
Hash identifier: 2jZ8qGamLMfK41g3D68ZAq48Lfayh50elNsk5/CIMaU=
Subject key identifier: F5:B6:D6:45:3B:2F:0B:0D:36:54:F4:0C:41:8C:58:39:9F:C1:51:7D
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0936
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/9bbWRTsvCw02VPQMQYxYOZ_BUX0.roa
Signing time: Tue 29 Sep 2020 10:01:35 +0000
ROA not before: Tue 29 Sep 2020 10:01:35 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9311
IP address blocks: 210.201.52.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2358 (0x936)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:35 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F5B6D6453B2F0B0D3654F40C418C58399FC1517D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:89:ce:d7:84:14:e3:e6:37:bc:e9:d5:4e:11:
aa:76:73:f7:43:69:eb:0c:2b:db:08:8a:3c:c5:6d:
58:3d:4f:ef:93:6e:3c:07:92:ac:bc:0b:d7:fd:85:
0d:b4:46:e4:aa:33:9c:5d:c4:84:ff:e0:57:d2:ca:
20:60:b8:17:85:f0:ce:4c:eb:8f:73:19:62:7a:48:
2b:88:a9:d2:b1:5b:fa:fc:bb:9f:f8:af:5f:12:f1:
d7:ca:13:28:f0:d7:43:79:7b:12:92:90:95:82:3c:
f9:22:82:e9:55:78:00:e2:dd:f0:31:54:92:15:82:
99:7c:f7:c4:66:ac:f6:df:3a:d8:ef:13:02:da:d8:
9c:97:8c:10:10:14:bb:c7:a0:b5:0d:46:ec:5c:fb:
4d:b5:ee:b0:6f:03:38:4d:73:24:3c:2c:77:ec:d5:
b4:a1:96:1f:a3:49:34:03:9e:59:59:84:ec:b9:7c:
bb:ab:ca:4e:ce:f1:43:bd:ea:d4:98:ca:b0:52:93:
52:26:ea:1d:79:de:16:ab:70:d7:03:ff:91:a0:83:
1e:17:99:9e:82:8f:99:c3:7d:88:f4:93:d4:c4:7e:
bc:8c:97:74:ee:08:a0:72:39:fb:7d:8d:40:6b:a5:
97:43:f6:00:53:2a:4d:d8:da:80:cc:0a:c4:6b:4f:
0e:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:B6:D6:45:3B:2F:0B:0D:36:54:F4:0C:41:8C:58:39:9F:C1:51:7D
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/9bbWRTsvCw02VPQMQYxYOZ_BUX0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.201.52.0/22
Signature Algorithm: sha256WithRSAEncryption
9e:b0:e7:39:00:56:2d:cc:2e:2d:f9:84:8f:82:8e:dd:34:e3:
12:15:03:86:3c:78:12:98:23:1d:2d:b4:59:7b:92:3a:3b:86:
de:0a:7e:de:91:8b:b5:42:7b:55:3d:c7:e7:33:36:93:5b:42:
03:64:c0:5b:2d:2d:10:86:0c:27:8b:6b:a2:f9:f5:7b:3f:9c:
d5:59:82:5c:38:bc:f2:34:2d:33:8d:a0:62:0f:16:6c:32:07:
04:74:4c:04:86:de:fc:ad:c0:2a:42:a8:10:dc:ee:ee:12:e8:
81:8d:9e:6c:35:b2:82:39:02:d7:d0:12:a2:9d:13:ac:7b:3a:
18:b3:d7:06:b5:6a:d8:e5:33:d8:60:fe:17:90:b4:0f:28:07:
dd:65:67:f0:e9:36:5a:92:99:e4:e7:9d:04:33:d7:40:a5:9e:
9f:ec:0d:a9:ab:66:04:36:d1:d7:09:e6:ca:8f:60:d0:0a:ef:
41:7b:75:64:6e:92:d0:5e:08:47:5c:0a:38:f6:68:2b:94:79:
ff:1e:43:5f:0b:bf:f6:c7:cb:a9:9b:12:6a:e9:52:a4:01:24:
88:af:48:7f:63:28:4c:13:72:88:9e:94:ec:45:72:6b:c1:69:
a9:4a:27:04:bd:17:55:99:76:b9:d6:17:d5:bc:2d:d4:d4:ec:
ab:66:d9:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:54 2023 by rpki-client on console-fra.rpki-client.org