Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/DtLhpCAsRkuEiiNtZkgeClffff4.roa
File: DtLhpCAsRkuEiiNtZkgeClffff4.roa (raw, json)
Hash identifier: OeNi8aaP3oR2XQNKx/b5hdXgFHKY8B3vZIV4tWX9H/c=
Subject key identifier: 0E:D2:E1:A4:20:2C:46:4B:84:8A:23:6D:66:48:1E:0A:57:DF:7D:FE
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0CCD
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/DtLhpCAsRkuEiiNtZkgeClffff4.roa
Signing time: Sun 07 Feb 2021 13:00:25 +0000
ROA not before: Sun 07 Feb 2021 13:00:25 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17709
IP address blocks: 210.63.200.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3277 (0xccd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 13:00:25 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0ED2E1A4202C464B848A236D66481E0A57DF7DFE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:5f:77:5a:53:de:27:f4:5e:92:33:51:05:ba:
f7:af:87:fa:cf:ad:1f:c1:bb:96:73:6f:ad:80:d0:
95:25:bb:e2:86:55:94:d9:15:81:a8:59:b3:db:4b:
d2:b5:df:47:5e:2b:d6:a5:e1:5e:0b:ad:db:71:4d:
a1:d1:11:fd:f6:74:a4:a5:9c:a4:1c:1a:26:97:bc:
96:10:1b:79:63:6c:79:0d:6a:4e:d9:63:0b:fd:d4:
de:b8:05:46:72:0e:0a:e8:6b:05:f1:9f:7b:a3:cc:
98:5e:e7:38:a1:6d:1d:6b:be:a3:ac:27:c9:eb:b5:
39:d3:c5:1b:8f:e9:36:48:2b:e4:46:8a:3d:56:99:
06:43:26:f1:6a:b2:25:3a:40:ed:75:1e:ae:6b:55:
1c:f7:e9:3d:ba:8b:79:8c:97:a6:e5:44:b9:d8:99:
ec:64:f5:ea:de:ea:bd:4c:ed:ea:db:dd:17:d1:2d:
aa:55:24:d0:bf:83:d3:85:46:f1:5a:10:ea:3f:b9:
9d:67:5e:bf:db:84:a4:fb:3e:da:f0:a3:b4:57:33:
e4:79:41:72:6f:49:1e:08:0f:b7:a9:55:43:41:b4:
7f:ac:03:c9:3c:04:4b:19:b5:7b:b4:35:3f:46:6a:
fb:c4:d2:ad:e4:47:5e:91:4a:86:15:52:59:59:f2:
b2:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:D2:E1:A4:20:2C:46:4B:84:8A:23:6D:66:48:1E:0A:57:DF:7D:FE
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/DtLhpCAsRkuEiiNtZkgeClffff4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.200.0/21
Signature Algorithm: sha256WithRSAEncryption
29:7d:8d:f1:70:cd:da:d6:a2:39:7f:5f:f8:67:d5:04:6b:f8:
7a:b8:31:36:2f:ea:62:ec:d0:7c:99:5b:e5:d6:ee:38:69:ae:
4d:26:10:ed:4e:b0:5b:ee:66:02:2d:8f:09:f4:1a:52:22:60:
22:fe:9f:dd:27:e1:d9:0f:f3:40:26:0a:91:7a:5f:51:21:7f:
a9:93:47:fe:ae:20:c3:03:be:f6:55:58:59:67:40:a3:07:c1:
5e:52:99:ae:0c:59:48:a5:d4:1f:b3:d2:ac:3f:fd:79:85:db:
6e:10:0b:9c:2b:7b:12:eb:c6:4c:00:27:5d:f6:74:8d:5d:57:
ad:d3:2f:82:57:09:fd:31:12:7d:a3:3a:cd:80:db:fe:11:77:
ff:e4:e2:dc:c7:d1:9c:ff:31:56:f2:11:49:e1:11:96:cb:66:
bf:00:49:b8:a9:d8:ed:ba:a0:74:66:52:f8:6c:59:4a:58:e7:
11:31:48:de:a6:41:8d:d5:d9:45:f9:b7:29:ec:cf:60:4f:82:
b2:5b:c8:f1:14:73:c0:a1:01:d5:40:05:d8:7c:1d:ac:0d:bd:
b0:77:55:2c:4c:b5:02:05:61:1d:7f:21:5c:32:13:d8:93:23:
3b:a7:76:7e:e1:d0:39:46:90:3b:cd:6b:41:f6:c5:3b:b3:0c:
11:36:66:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:44 2023 by rpki-client on console-ams.rpki-client.org