Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/Chw9fsiLiu036F70rn-piWLnUDw.roa
File: Chw9fsiLiu036F70rn-piWLnUDw.roa (raw, json)
Hash identifier: 0OMwf5I0qCWcXZsR8d/txJUjxFt9mMc1mXVxHVMl6cA=
Subject key identifier: 0A:1C:3D:7E:C8:8B:8A:ED:37:E8:5E:F4:AE:7F:A9:89:62:E7:50:3C
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0CD7
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Chw9fsiLiu036F70rn-piWLnUDw.roa
Signing time: Sun 07 Feb 2021 13:00:40 +0000
ROA not before: Sun 07 Feb 2021 13:00:40 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17709
IP address blocks: 210.201.72.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3287 (0xcd7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 13:00:40 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0A1C3D7EC88B8AED37E85EF4AE7FA98962E7503C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:6c:59:65:c0:60:90:5e:38:31:98:9e:a2:97:
24:0f:14:5e:2e:05:8f:ff:d1:97:b1:69:22:1b:4b:
41:1c:35:fd:69:e8:34:d3:ca:a0:c5:77:17:bd:91:
9e:6a:86:57:37:af:26:1f:5c:89:1d:1c:27:43:ab:
c1:d1:ee:af:3c:83:4e:5b:fa:8e:6a:eb:04:5f:ca:
14:fc:b3:28:a0:a0:42:a0:9b:5c:ac:ee:2b:9f:d0:
e3:9f:84:93:62:97:2c:1e:e5:a4:7c:32:f1:62:13:
50:01:d0:cc:32:2f:3e:a1:78:07:59:36:14:35:58:
b8:3f:5b:10:75:cc:79:1f:74:a5:ff:bf:a3:30:22:
21:b3:e4:6e:4d:76:dc:2a:a0:d6:7e:ee:4a:73:ee:
11:3e:32:81:19:a8:69:7e:de:19:c6:8e:37:bb:6a:
b4:a6:8a:69:6d:6a:42:d2:10:d6:a1:9d:c1:a9:c4:
d7:d7:70:0f:fd:ca:01:8a:17:8d:0c:3e:d7:e3:2e:
b3:b2:db:8b:33:aa:b9:9a:0b:42:7d:a8:4f:40:de:
db:ca:cf:ba:b5:b7:af:f1:77:56:24:07:9d:02:8a:
a1:8e:89:00:0a:58:84:3c:ab:56:42:ae:1f:5e:2c:
ac:a1:3c:26:a4:df:d7:95:c4:fd:47:1c:c1:7c:7c:
42:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:1C:3D:7E:C8:8B:8A:ED:37:E8:5E:F4:AE:7F:A9:89:62:E7:50:3C
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Chw9fsiLiu036F70rn-piWLnUDw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.201.72.0/24
Signature Algorithm: sha256WithRSAEncryption
07:8e:84:8f:33:a6:4b:ec:7b:27:60:de:0a:42:66:c7:b7:0e:
0d:10:f4:e7:16:a9:3c:34:ca:8d:7c:0a:f4:8d:2f:19:83:29:
91:0c:8f:5e:e0:37:89:56:c4:a2:3a:41:69:55:ed:c7:48:c4:
df:71:d9:0d:83:02:cb:35:61:27:c5:aa:ea:a6:d8:2e:9c:30:
59:72:9c:47:df:d5:fc:02:c2:30:e8:92:cb:df:34:c3:bd:44:
34:0e:5e:de:4a:ca:25:58:97:9c:ac:48:f1:ea:e1:e6:00:36:
c1:77:1b:15:bb:c0:f0:2b:61:e7:01:da:21:f3:e5:f3:e1:f3:
b4:81:d1:11:3e:63:9d:86:9f:2b:75:c1:4e:44:cc:75:7f:54:
14:e6:06:f9:e8:57:f4:60:da:3e:bc:7a:bb:f9:c5:07:4e:b5:
0b:fa:45:80:85:0c:4b:b9:f9:10:b1:85:77:44:15:6b:c0:63:
86:ef:08:2a:66:ad:53:be:26:be:3d:73:4b:e4:db:be:3d:85:
fb:d9:2e:cd:35:f6:4e:57:ec:f2:e6:83:ab:60:46:ff:38:2e:
04:04:ec:e1:af:98:2e:a3:34:14:55:92:29:37:80:39:7a:bf:
9e:a3:d0:2f:ef:b0:6d:70:24:07:ab:54:06:96:6c:62:a7:bb:
78:16:d7:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:54 2023 by rpki-client on console-fra.rpki-client.org