Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/AlAliXYpcpk8pQ0uFK3XacIBWcc.roa
File: AlAliXYpcpk8pQ0uFK3XacIBWcc.roa (raw, json)
Hash identifier: 6w4YQZuShBiEpxsMef368RBmOnjfVHNV5uCc2mJTmZg=
Subject key identifier: 02:50:25:89:76:29:72:99:3C:A5:0D:2E:14:AD:D7:69:C2:01:59:C7
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0937
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/AlAliXYpcpk8pQ0uFK3XacIBWcc.roa
Signing time: Tue 29 Sep 2020 10:01:36 +0000
ROA not before: Tue 29 Sep 2020 10:01:36 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17709
IP address blocks: 218.34.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2359 (0x937)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:36 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=02502589762972993CA50D2E14ADD769C20159C7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:06:8b:11:b9:3b:41:6a:d7:eb:e7:93:8d:a6:
99:2b:a5:28:ae:fc:e6:cd:46:a7:81:94:54:53:bf:
c4:33:42:13:e8:8a:bc:28:a4:a3:3f:54:27:24:f2:
d8:5f:53:a4:27:d4:2c:c4:13:19:40:e3:c8:f8:43:
ef:9c:96:46:d9:ce:be:38:dd:89:61:3d:29:4b:90:
26:e1:ca:55:f0:1e:1f:13:bf:09:77:f9:82:7e:cc:
d7:b4:51:9c:22:0a:82:3c:4e:c3:7b:0c:a8:da:4d:
42:e1:ab:c6:1b:4e:c2:b9:70:c8:b8:fc:f0:0b:72:
8b:d8:fd:de:4d:f4:65:f4:46:0d:08:3a:c6:eb:0c:
42:d7:f6:f1:a2:a1:e5:dd:21:24:1f:2b:00:eb:59:
13:b4:e7:d1:ee:8e:dd:47:c9:ae:9d:91:fe:30:04:
89:ec:15:47:06:f1:a7:b8:16:f7:56:4b:69:97:d5:
e7:89:e4:f7:3a:1d:45:22:f1:0c:23:25:6e:49:7b:
7f:eb:02:15:ce:53:7d:ef:08:0e:e3:19:ce:a6:5e:
b8:91:11:89:6d:57:29:bf:b2:6a:92:ca:51:25:05:
95:f9:c2:a9:f2:b1:26:25:77:f5:96:e6:d2:31:4b:
83:7d:30:19:03:5a:6d:5d:89:42:c7:f5:44:a6:31:
a6:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:50:25:89:76:29:72:99:3C:A5:0D:2E:14:AD:D7:69:C2:01:59:C7
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/AlAliXYpcpk8pQ0uFK3XacIBWcc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.34.0.0/16
Signature Algorithm: sha256WithRSAEncryption
50:52:3c:fa:f6:77:1e:ba:3c:3d:11:b8:77:f8:65:70:89:68:
b0:f3:61:e0:2d:ff:f3:fe:1b:7e:f5:d8:97:6c:49:9a:9f:9c:
bb:13:36:00:48:50:5c:21:1f:95:fa:77:0e:2e:f1:7c:2b:07:
70:58:83:65:16:e6:f6:f5:91:c3:8c:44:d0:98:96:ff:09:fd:
af:f4:e4:dc:d4:d6:9d:3f:4a:e8:22:05:df:8c:b1:04:07:85:
da:b7:51:d9:2f:7e:d6:2d:66:ba:f3:25:79:f9:d1:29:55:b4:
b8:57:de:f3:ce:f2:f9:52:7e:a2:1a:9f:50:6b:8f:1b:95:b5:
58:b3:0f:c3:91:09:0b:0a:85:fc:08:f4:d9:75:7a:de:10:d7:
b8:77:00:44:1f:65:c4:7e:91:eb:8c:3b:05:e4:99:62:10:77:
62:cc:74:22:42:5f:e4:5a:e6:24:fb:b9:a7:c1:f5:9d:7c:a3:
93:53:b0:3f:ce:22:a0:02:c9:eb:b3:97:e8:2c:f4:05:c9:9c:
cc:d9:29:8e:81:35:96:90:a3:17:b4:f8:75:d8:70:b0:89:c5:
52:38:53:2c:0c:53:0a:ab:ec:ba:f0:cd:b9:eb:64:f2:62:34:
11:60:0f:6d:a2:6a:f7:13:99:f4:56:c8:18:7f:28:f7:46:5f:
c1:38:34:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:54 2023 by rpki-client on console-fra.rpki-client.org