Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/B-mZ9lTPaj_g4yexFfGb8MPYnxk.roa
File: B-mZ9lTPaj_g4yexFfGb8MPYnxk.roa (raw, json)
Hash identifier: UiNyTCZ1biVC/DJKHfIi7L2bksa3csiYK9czqaqCoUY=
Subject key identifier: 07:E9:99:F6:54:CF:6A:3F:E0:E3:27:B1:15:F1:9B:F0:C3:D8:9F:19
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0DA8
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/B-mZ9lTPaj_g4yexFfGb8MPYnxk.roa
Signing time: Wed 29 Sep 2021 02:39:24 +0000
ROA not before: Wed 29 Sep 2021 02:39:24 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131591
IP address blocks: 101.136.0.0/14 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3496 (0xda8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:39:24 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=07E999F654CF6A3FE0E327B115F19BF0C3D89F19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:6d:c5:2f:60:d4:9b:13:0e:0e:a7:c3:d7:a8:
33:cd:f0:60:31:17:69:ab:78:a7:97:c2:13:c5:dd:
82:ee:a4:41:0c:91:5a:8f:5c:7c:3b:d1:52:e4:85:
62:f3:15:17:cb:02:fd:98:cb:b4:f9:13:04:47:f8:
90:b7:9a:e0:cf:60:ff:e1:6d:db:c0:8f:67:6a:8d:
3b:e4:04:4a:7c:29:0a:67:d5:ca:e0:ca:a1:5e:69:
95:54:2d:3f:65:f3:53:48:1f:2b:96:5b:17:8a:75:
c4:4a:5a:f7:59:f8:cb:f3:4a:d5:e9:85:01:c0:fd:
5f:ae:9a:3b:d6:50:0a:ca:97:70:50:17:89:03:fe:
a2:d7:b3:ff:8c:da:2b:e8:d0:65:eb:03:64:a3:0b:
74:3d:98:24:db:f6:69:f5:7c:e5:9a:29:55:fd:a4:
7c:f3:1d:67:08:13:3f:89:e4:9a:b9:2d:c7:ac:38:
31:75:6c:55:3f:2d:70:8c:3c:44:2a:e7:8a:ff:f5:
44:82:57:75:bf:78:e8:6c:37:96:81:bb:0c:6e:e7:
89:7e:d3:2d:22:fc:66:69:f2:ba:52:53:7a:95:7d:
27:cc:79:0d:a6:f9:2c:ba:4a:b0:41:44:8c:85:94:
a7:fa:9d:6f:df:6b:89:7c:84:ed:a6:09:27:3c:f0:
97:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:E9:99:F6:54:CF:6A:3F:E0:E3:27:B1:15:F1:9B:F0:C3:D8:9F:19
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/B-mZ9lTPaj_g4yexFfGb8MPYnxk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.136.0.0/14
Signature Algorithm: sha256WithRSAEncryption
84:ee:cb:08:40:f4:41:82:ff:68:1b:3d:97:a5:5a:ad:b5:6e:
90:14:20:23:c0:fb:c9:9e:3d:68:8d:b1:e1:1c:4d:dc:4d:c4:
fc:44:32:cc:a5:e6:2d:4e:59:c0:01:e4:0b:66:71:c6:65:56:
ef:38:8c:b0:36:42:f9:12:c0:2e:cd:47:a1:5d:7d:90:9c:34:
18:9f:a1:4f:d9:21:b4:52:fe:7a:1d:56:0d:93:ef:77:cd:1f:
00:c7:14:28:16:5f:22:d5:aa:7c:a1:f5:eb:99:c6:73:46:93:
3a:f3:bd:1a:31:2a:54:93:2d:05:95:44:4c:d4:fa:75:72:cc:
75:2e:6d:db:b0:08:fa:07:cd:b3:e7:44:95:bf:b5:28:23:b3:
ee:7d:ff:bf:cf:42:e3:09:e2:af:4b:55:ce:be:9f:64:30:49:
1d:76:fb:1f:40:d8:3f:57:dc:63:b0:4d:6a:f0:00:8e:71:a2:
bd:f9:0e:62:de:a2:54:b1:f3:c4:a7:74:70:f0:c7:52:f3:7f:
eb:04:42:84:9d:ce:66:f3:6c:77:bd:6a:d3:54:de:8a:d7:03:
83:22:9f:61:84:ae:06:cd:6c:52:2e:2f:03:8c:43:c5:04:5c:
92:1b:09:fe:e8:69:5f:bc:6c:db:20:b7:1e:32:ca:5c:cb:68:
03:bd:8a:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:44 2023 by rpki-client on console-ams.rpki-client.org