Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/DmXlwC3Xjkm_3VfxFFUmhjEqVpQ.roa
File: DmXlwC3Xjkm_3VfxFFUmhjEqVpQ.roa (raw, json)
Hash identifier: J3Hhpbhhw1oL2Z8HBso9zaG3Y8G8x+3JiyKPYTng4aE=
Subject key identifier: 0E:65:E5:C0:2D:D7:8E:49:BF:DD:57:F1:14:55:26:86:31:2A:56:94
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0C3D
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/DmXlwC3Xjkm_3VfxFFUmhjEqVpQ.roa
Signing time: Sun 07 Feb 2021 11:35:23 +0000
ROA not before: Sun 07 Feb 2021 11:35:23 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17709
IP address blocks: 210.85.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3133 (0xc3d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:35:23 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0E65E5C02DD78E49BFDD57F114552686312A5694
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:57:4e:5a:b9:2f:a0:d2:bd:b7:ed:b5:12:10:
ee:4c:87:1d:c5:cc:e4:cf:67:c6:7c:f4:b8:37:2d:
f6:92:3c:10:a1:f5:96:a2:98:3f:f5:ec:71:e5:41:
f2:fe:eb:44:a6:10:ea:30:d7:ec:8e:15:c5:68:b2:
24:a7:22:1b:69:7f:a0:25:19:e7:dd:ca:92:a7:00:
8a:7b:56:c5:95:fc:bf:d7:6b:e7:5e:32:51:f9:03:
f2:5d:32:56:c8:ac:45:de:1c:d8:1b:ce:d7:d9:d3:
e4:04:51:0b:12:bb:20:98:46:1a:28:04:40:bc:e3:
5f:f3:91:33:9e:04:1b:b7:7e:0d:ea:b6:46:53:be:
cd:01:d7:2a:9b:ea:1e:98:33:8a:b6:ad:72:0e:f5:
63:c6:38:86:9c:0e:96:ab:76:1b:18:8b:94:f6:31:
e1:d4:ad:a4:f3:93:17:16:dc:ee:f5:28:a4:3e:ea:
cc:78:9c:77:7b:68:ae:66:1b:13:14:a9:4e:03:32:
c8:61:48:b4:a9:06:13:ed:04:0b:54:60:d0:5d:17:
53:66:7b:d8:15:50:23:70:cc:cd:1a:7d:01:90:d3:
9e:a6:7d:37:34:d7:8c:0d:bd:f6:3f:a3:e5:15:f8:
9b:ce:fb:d2:4e:ca:44:5e:88:72:6e:38:48:b9:6e:
50:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:65:E5:C0:2D:D7:8E:49:BF:DD:57:F1:14:55:26:86:31:2A:56:94
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/DmXlwC3Xjkm_3VfxFFUmhjEqVpQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.85.0.0/16
Signature Algorithm: sha256WithRSAEncryption
a4:c9:60:1b:ae:8f:94:d8:6e:a2:f0:56:a5:b5:2c:18:0b:62:
4b:85:5a:d6:4f:e0:69:fa:e4:91:2d:09:b7:f7:8d:81:60:31:
55:c3:ac:6a:65:bc:41:7a:6e:03:c6:42:1b:5e:87:b6:4d:e5:
90:d2:a8:cb:6b:51:2a:39:d0:91:67:31:af:fb:6d:10:85:d5:
09:7b:7a:62:2d:34:df:bc:93:2a:f4:81:de:27:ad:1b:3b:12:
17:75:99:e8:0b:47:18:da:46:04:68:dc:be:76:6e:f2:0b:a9:
6a:bd:28:02:94:78:16:75:db:cf:24:fe:77:7d:c0:bc:69:fc:
ab:80:15:82:b2:5a:fb:d5:84:3d:aa:c2:d1:2a:06:7b:8f:d9:
3f:19:ac:3d:32:d5:24:9d:79:30:d7:9e:a9:9b:1b:d1:11:91:
cc:9c:28:5e:db:56:5e:63:67:40:6a:5d:19:c9:b1:a3:b9:77:
86:75:49:e7:ae:c9:e5:10:13:b0:97:ec:13:3b:85:9b:9a:8f:
27:08:b7:1c:9f:2a:34:10:8e:7c:a0:0a:e3:a2:e4:a8:16:48:
71:db:2d:45:09:a5:23:9a:91:87:2a:51:6e:1e:41:c2:4b:0a:
4c:a4:f5:be:d6:86:98:af:f3:88:67:76:b8:3f:ae:69:cc:52:
89:9f:9c:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:54 2023 by rpki-client on console-fra.rpki-client.org