Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/Dg7Ke9Ruzmm2yJV4g0EZf7b3AQM.roa
File: Dg7Ke9Ruzmm2yJV4g0EZf7b3AQM.roa (raw, json)
Hash identifier: 2q/tpvplIyOVazRbzYlJ+JACjJcSPetlgD0AzwqU/yg=
Subject key identifier: 0E:0E:CA:7B:D4:6E:CE:69:B6:C8:95:78:83:41:19:7F:B6:F7:01:03
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 08EF
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Dg7Ke9Ruzmm2yJV4g0EZf7b3AQM.roa
Signing time: Tue 29 Sep 2020 10:01:16 +0000
ROA not before: Tue 29 Sep 2020 10:01:16 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24154
IP address blocks: 210.202.192.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2287 (0x8ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:16 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0E0ECA7BD46ECE69B6C895788341197FB6F70103
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fd:0a:94:46:26:85:6b:2b:41:12:66:ef:be:5f:
d5:74:46:e2:e8:48:21:b5:b7:b1:18:c4:f0:04:fc:
9a:7f:62:74:cd:2a:15:f2:49:77:19:a3:5e:eb:b7:
ea:23:ea:27:89:9f:95:9e:90:de:db:48:8a:9f:e5:
e5:ce:9e:3a:f3:0d:65:43:33:25:f4:95:e6:2e:4a:
82:3c:1d:19:c2:2e:11:21:6e:7e:94:a5:e6:68:17:
ee:bb:09:8b:ae:74:67:8b:fc:36:93:88:62:1b:8d:
36:07:79:b1:47:51:e8:5d:d9:db:1b:6f:f6:93:b4:
4c:c2:97:eb:26:3a:cf:89:ec:40:bd:0c:c5:6c:18:
e1:7f:14:df:a2:46:d9:c4:f1:06:61:43:86:21:95:
69:9b:ae:4e:91:bc:0c:26:9a:38:4b:01:5c:50:41:
b1:ec:7f:51:0f:ac:77:c9:28:5c:1e:5d:ed:06:5c:
9b:dc:7c:38:d9:05:46:bb:d2:92:bf:9b:20:c2:3b:
d1:81:6a:f0:88:c1:83:26:c6:79:e2:da:6a:c6:0f:
bb:34:09:56:9f:df:68:cb:49:22:af:7a:73:de:30:
12:39:24:8b:d8:4d:85:52:50:a1:16:e9:06:68:c5:
96:59:4a:85:a9:fe:5e:53:0b:9d:8a:23:78:4a:e4:
94:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:0E:CA:7B:D4:6E:CE:69:B6:C8:95:78:83:41:19:7F:B6:F7:01:03
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Dg7Ke9Ruzmm2yJV4g0EZf7b3AQM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.202.192.0/18
Signature Algorithm: sha256WithRSAEncryption
40:15:44:c7:bb:07:65:2a:1e:f2:e1:62:9e:a4:17:95:19:5e:
b8:8b:13:ba:6e:2f:df:1f:82:9f:98:1c:1f:05:b4:90:82:9b:
77:4a:9c:2d:fb:5b:af:dc:5b:20:20:66:b4:2b:8d:6b:43:26:
84:88:02:31:05:b3:5b:57:f4:d8:50:8f:95:dc:29:99:4b:a0:
d6:dc:bd:31:82:03:a2:6c:e9:c1:8b:9a:ad:eb:72:58:32:b8:
30:a9:76:84:7f:ab:bb:63:b6:49:a1:84:2a:8c:dc:6e:8e:09:
83:00:98:38:18:61:b9:bd:24:6a:ef:ee:7c:1b:32:df:cf:0a:
09:1f:0d:04:fd:f2:1c:d5:da:c3:4e:97:e9:d4:85:57:9f:0a:
cd:8e:6d:71:6e:8f:42:ff:f7:71:e0:f3:a6:84:7e:de:cf:a2:
fd:f6:e6:48:cd:3b:e9:b2:26:d6:ce:cf:74:37:a1:f4:97:ff:
93:70:68:0c:f6:e1:9f:b7:8b:a9:e0:51:6f:c1:b6:1a:d3:54:
b3:a4:c8:5f:0f:8d:93:0b:1f:0b:76:1a:e1:71:35:39:cf:9b:
ff:ee:b3:cc:8b:0e:77:49:d2:03:35:58:f2:31:d1:40:c5:b2:
ce:ba:02:76:bb:c7:91:33:25:d0:d1:72:d0:c3:33:50:55:93:
91:33:b7:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:54 2023 by rpki-client on console-fra.rpki-client.org