Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/BVuGhVYJQQO5jZod7FwM8SV0_oI.roa
File: BVuGhVYJQQO5jZod7FwM8SV0_oI.roa (raw, json)
Hash identifier: H/tFSB8dm6h3wUo+syV9afw0NAKKg8mcDKEVcGk7XnM=
Subject key identifier: 05:5B:86:85:56:09:41:03:B9:8D:9A:1D:EC:5C:0C:F1:25:74:FE:82
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0BE5
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/BVuGhVYJQQO5jZod7FwM8SV0_oI.roa
Signing time: Sun 07 Feb 2021 11:34:12 +0000
ROA not before: Sun 07 Feb 2021 11:34:12 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 7482
IP address blocks: 210.200.128.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3045 (0xbe5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:34:12 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=055B868556094103B98D9A1DEC5C0CF12574FE82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:74:05:3c:03:0a:e3:ed:34:47:39:e7:24:50:
79:e7:af:29:05:11:77:b2:3d:65:20:af:4a:a8:2d:
59:96:8c:9c:96:e5:71:78:8a:cc:99:00:7e:4c:5a:
d0:d5:e4:6c:09:b6:1d:2c:d2:f2:22:13:57:b7:72:
95:4e:6d:d8:72:e2:fc:45:44:6c:3f:dc:1a:6c:05:
49:b8:4e:52:ba:10:07:eb:0d:c7:06:16:56:91:89:
19:8e:7b:55:73:8d:8e:5b:76:3d:bf:f3:08:31:18:
83:ef:bd:1d:43:7e:87:43:82:14:5d:7f:ce:e6:31:
84:83:25:78:73:02:77:55:e6:be:5c:dc:d6:5e:07:
ec:43:c5:bc:8a:3d:9f:a9:e0:02:bf:e0:07:c1:a2:
25:aa:f1:94:1b:69:96:cc:4b:bd:18:29:e2:10:bc:
8a:3e:50:f6:ff:a3:1f:eb:fd:c8:16:34:b6:29:b3:
2f:55:f5:d0:87:e6:70:46:5c:21:80:d6:ed:d4:31:
e6:68:49:e5:d3:72:90:ab:9a:48:18:67:3c:32:ef:
bd:ed:08:8f:3e:6a:7e:c3:a2:a1:41:73:b4:1b:c3:
9e:c8:43:45:11:ea:d7:2f:bf:08:2b:07:39:fe:4a:
8b:88:5b:2c:2d:6a:24:9d:03:33:ef:3d:bd:72:bb:
7c:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:5B:86:85:56:09:41:03:B9:8D:9A:1D:EC:5C:0C:F1:25:74:FE:82
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/BVuGhVYJQQO5jZod7FwM8SV0_oI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.128.0/18
Signature Algorithm: sha256WithRSAEncryption
7b:60:7a:b6:72:d8:4e:9e:9f:cc:92:31:0a:15:62:ef:cd:83:
70:aa:77:6a:86:fb:8b:3e:39:61:17:10:87:fe:02:00:e1:58:
02:11:0e:8a:fc:00:86:18:0a:4d:a3:c2:e2:12:32:34:f8:8b:
66:48:20:f6:a8:e3:dc:83:9a:91:9e:db:c2:f9:8f:f8:bb:35:
11:3a:b0:cd:a4:79:59:00:b1:e4:27:8a:41:dd:72:85:a7:60:
25:e7:39:31:56:a1:ac:db:2c:02:96:ae:37:9f:53:fc:8b:6e:
e9:aa:dc:fb:a0:f9:e5:2a:ce:46:69:13:9d:fa:a5:25:01:35:
ab:f1:40:e3:eb:80:c8:f7:82:3b:b3:d6:f2:bb:a8:d4:48:48:
46:92:99:aa:13:4b:39:5c:40:46:b7:2d:26:0f:a3:cd:ed:63:
41:79:76:98:65:32:51:be:33:ac:65:a6:44:1e:19:70:0b:55:
b0:bd:e9:7c:fa:07:8a:b3:82:03:13:37:65:4f:f3:ef:8d:6e:
6c:5e:04:47:ce:57:19:01:35:98:e9:bd:c2:4a:7f:64:bc:8d:
10:68:37:3f:a1:5d:4c:89:f2:47:bc:3c:48:69:81:03:08:41:
f0:15:9e:96:7f:3a:c2:ea:1a:05:a3:9a:99:08:1c:12:3e:ce:
31:6a:f7:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:54 2023 by rpki-client on console-fra.rpki-client.org