Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/DWfoOrbcrFH_uUaBThHh6gD2mXc.roa
File: DWfoOrbcrFH_uUaBThHh6gD2mXc.roa (raw, json)
Hash identifier: mQax9XXnPjZ4B96a+t6Wv+3OwCxzzqky+Kp8jTx6W74=
Subject key identifier: 0D:67:E8:3A:B6:DC:AC:51:FF:B9:46:81:4E:11:E1:EA:00:F6:99:77
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0C63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/DWfoOrbcrFH_uUaBThHh6gD2mXc.roa
Signing time: Sun 07 Feb 2021 11:35:56 +0000
ROA not before: Sun 07 Feb 2021 11:35:56 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131591
IP address blocks: 223.22.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3171 (0xc63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:35:56 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0D67E83AB6DCAC51FFB946814E11E1EA00F69977
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:bf:ed:14:fc:fb:09:21:c7:88:c3:3f:ad:7e:
61:09:64:d4:e7:3c:c4:64:60:51:63:c8:72:3f:4d:
ce:5b:28:2a:49:67:9e:a1:9e:3e:5d:d2:4f:02:c6:
71:87:9d:cf:68:51:22:57:e5:e8:4e:0d:a7:70:d4:
ac:be:75:e2:a7:06:51:2c:9b:b4:3c:d8:a8:06:98:
ac:96:f2:87:76:e3:fe:42:e8:be:ce:8c:08:90:25:
96:fd:cc:29:f2:d9:69:a5:9f:c8:a7:76:f8:69:f8:
e5:17:44:75:c3:af:43:62:46:de:51:d2:d5:24:d2:
90:26:44:d9:69:c6:91:96:d5:23:ed:19:32:a6:46:
39:2a:d6:70:f6:25:40:8a:df:1d:2f:ea:62:7c:0e:
a3:46:ec:94:a3:07:63:96:b3:4a:6f:f0:e2:b0:7c:
13:2f:81:c6:5c:4f:a4:94:27:ea:bc:fc:cd:5d:e2:
83:65:0c:06:c0:cd:df:df:c5:59:20:76:55:2d:60:
b7:33:98:fb:75:59:7d:aa:82:19:62:e5:6e:c2:e2:
71:92:99:b5:6a:d1:1f:71:2b:98:b6:76:0b:a7:92:
83:36:c7:4c:54:c0:36:a3:2d:84:f5:6e:5e:a0:75:
88:df:21:d0:72:44:00:dd:e8:48:43:76:ea:c7:1d:
44:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:67:E8:3A:B6:DC:AC:51:FF:B9:46:81:4E:11:E1:EA:00:F6:99:77
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/DWfoOrbcrFH_uUaBThHh6gD2mXc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.22.0.0/16
Signature Algorithm: sha256WithRSAEncryption
4f:2b:17:ae:78:a7:29:7c:68:c1:f5:95:61:61:11:b5:5f:62:
ca:c9:f3:f9:08:da:8d:fe:f6:91:46:e1:62:f8:4b:63:94:94:
fc:48:f8:26:30:ad:88:9a:3a:3c:f9:f6:76:8e:23:5a:ca:49:
20:f3:45:e7:26:8c:1c:f9:75:d7:18:c0:67:6b:20:93:2c:71:
94:eb:3a:ea:74:12:c4:58:2b:2d:a7:9d:78:4a:c3:51:4b:d2:
91:df:4b:e0:e1:6e:d5:cc:f8:3a:71:eb:74:cc:a8:09:d3:17:
6e:60:3e:c8:ab:51:5c:85:13:d0:c4:9b:16:23:9b:05:a9:ca:
08:b3:37:b5:d4:bb:8d:eb:9a:91:c3:d3:48:72:81:4b:a0:46:
57:2a:a6:26:06:1c:d2:1b:4d:fd:b0:57:ea:13:9a:0f:e6:04:
cd:1a:aa:97:1c:69:55:b6:49:81:eb:8e:8b:30:81:78:3c:6b:
01:82:0a:10:2b:29:62:91:ef:14:9d:50:ca:e5:33:32:7d:dc:
8f:e6:4a:f4:4b:0a:bb:82:b9:dd:ca:49:41:f3:e6:65:08:85:
f8:cf:a2:30:ea:30:21:84:8a:b4:78:b5:80:30:23:8c:6e:76:
ae:7c:70:d1:e9:25:a6:6d:de:b8:45:29:4a:87:fa:a7:e7:d4:
1c:c1:a2:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:44 2023 by rpki-client on console-ams.rpki-client.org