Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/9ytM8MtiIjXCRZuRR9Fpk97Q2YE.roa
File: 9ytM8MtiIjXCRZuRR9Fpk97Q2YE.roa (raw, json)
Hash identifier: YyI6v6DE5S5CXdwa9pxVGL4OOXobEkhRBm+YUq2PCVk=
Subject key identifier: F7:2B:4C:F0:CB:62:22:35:C2:45:9B:91:47:D1:69:93:DE:D0:D9:81
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0DBE
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/9ytM8MtiIjXCRZuRR9Fpk97Q2YE.roa
Signing time: Wed 29 Sep 2021 02:39:31 +0000
ROA not before: Wed 29 Sep 2021 02:39:31 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24154
IP address blocks: 203.79.208.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3518 (0xdbe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:39:31 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=F72B4CF0CB622235C2459B9147D16993DED0D981
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:e4:1f:0f:58:ec:9b:fa:b9:a9:90:9b:08:33:
55:bb:cc:54:82:8d:69:26:27:75:c6:df:4f:9b:48:
5c:9e:2e:1c:18:2a:5b:0b:21:55:72:bc:71:1b:3c:
3b:cd:4c:bb:94:d1:cb:2f:08:15:76:0e:13:08:3a:
08:fe:b8:68:c7:1e:dc:86:00:56:17:dd:f0:2f:04:
e2:9e:c9:7d:3d:8b:f5:4b:9a:9a:06:94:a4:e8:dd:
6b:47:09:6c:11:65:62:8f:d9:ee:25:c6:66:59:71:
0f:22:c3:7c:7b:18:cd:7c:cd:17:b3:52:42:b4:2a:
f1:90:6e:39:ce:aa:d0:12:64:ea:94:ce:d2:db:a0:
43:a4:ff:a3:4f:d5:60:56:55:bc:29:3c:19:df:7a:
b0:d8:ab:30:a3:42:e5:b1:b0:1d:34:1c:ed:bc:5e:
d0:27:4f:e2:0c:3b:57:8d:0e:07:fe:69:95:64:9c:
55:5a:a3:9d:0f:39:2d:d2:74:f8:cd:bd:da:7a:5d:
08:43:78:d5:ba:36:0c:c6:c4:60:f7:fe:67:fd:fa:
f3:bb:8c:99:fd:18:f9:93:2c:e0:05:50:2c:66:64:
37:26:94:5a:52:1c:e5:7d:fd:86:1a:e9:90:06:7b:
e6:2a:b1:97:4a:1d:70:67:c8:c9:e7:91:f3:63:0e:
14:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:2B:4C:F0:CB:62:22:35:C2:45:9B:91:47:D1:69:93:DE:D0:D9:81
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/9ytM8MtiIjXCRZuRR9Fpk97Q2YE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.208.0/21
Signature Algorithm: sha256WithRSAEncryption
94:d6:39:40:4a:d3:28:b4:02:09:3f:40:a4:8f:dd:07:38:de:
88:23:08:84:59:a5:26:ef:3d:6d:aa:a6:c4:06:72:f2:a9:68:
c1:b5:0b:98:91:d1:a5:e3:88:21:74:21:f0:88:f7:3b:c8:66:
ab:b3:1a:28:4e:76:96:0d:4f:52:1a:a2:0a:3a:a6:40:d2:38:
e1:b4:89:90:8b:2a:5d:4e:f2:c4:da:91:01:c5:6f:a9:88:02:
8f:18:85:e2:30:35:46:10:44:89:5e:ee:a5:24:ec:b8:29:7c:
28:e6:fe:33:b5:ea:d3:2f:63:83:e4:a7:b6:76:41:cb:29:2e:
46:4c:fc:84:00:b7:46:05:06:88:95:4b:55:4e:f1:cd:e3:f5:
08:fe:cd:f3:ca:ac:1c:ab:78:68:da:a2:f6:11:39:5a:6a:84:
f4:65:90:11:a7:b5:f8:6f:bb:a7:30:ca:24:13:80:25:80:a0:
6f:4e:04:29:2c:e9:33:3d:1e:3b:2e:d7:fa:e8:1c:e6:59:1b:
a6:47:95:81:4c:ff:0c:bd:d3:07:82:5e:35:4c:84:ec:1e:cd:
73:0f:27:ad:59:de:7a:e2:fc:5e:aa:e8:bb:1d:20:33:08:ed:
7e:44:12:65:6b:00:ee:67:12:2d:3f:94:21:3f:9e:b0:d8:30:
68:6e:28:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:44 2023 by rpki-client on console-ams.rpki-client.org