Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/G2ObF9W994zINoZOXgqcET7yTpY.roa
File: G2ObF9W994zINoZOXgqcET7yTpY.roa (raw, json)
Hash identifier: Yx3DtPmJTUm+WaJL9an9oyJgdfgDahYvNu4hIxubLbk=
Subject key identifier: 1B:63:9B:17:D5:BD:F7:8C:C8:36:86:4E:5E:0A:9C:11:3E:F2:4E:96
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0C2F
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/G2ObF9W994zINoZOXgqcET7yTpY.roa
Signing time: Sun 07 Feb 2021 11:35:11 +0000
ROA not before: Sun 07 Feb 2021 11:35:11 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17709
IP address blocks: 210.63.224.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3119 (0xc2f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:35:11 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=1B639B17D5BDF78CC836864E5E0A9C113EF24E96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:d5:b5:b5:d3:02:ea:68:e5:54:29:0c:3c:b4:
f3:8d:a6:d1:be:ce:38:fc:36:3d:6f:18:74:17:d4:
3b:a1:d0:41:d9:34:78:16:bf:fe:a0:6d:fb:b0:49:
dd:6a:cb:30:12:85:b9:c0:e5:71:2d:19:2a:fb:b4:
9b:3e:6e:f2:7e:70:cb:7d:d0:ce:5b:f1:0a:71:8e:
dc:b1:eb:38:b5:0e:04:5c:21:16:b2:84:08:22:05:
ec:2b:5d:a6:a9:0a:6e:b2:d7:4d:e5:a8:db:7a:00:
1d:6b:29:39:65:88:fe:31:af:42:b3:7b:8a:7c:fa:
ed:cc:42:67:7f:43:c3:17:45:d0:de:d5:50:6a:9f:
8a:8b:d0:8d:88:be:06:3f:9d:ca:e5:82:81:a6:0a:
9c:26:14:c2:1f:1d:b4:6c:a1:e2:fe:c9:74:8e:0a:
6e:71:e3:87:ff:80:0a:54:e1:4e:3e:75:d8:c4:5e:
a3:9d:4c:5c:9e:0c:f8:70:7a:45:d3:b1:a0:a6:ac:
92:6c:75:14:04:ea:69:c1:2d:c9:c9:07:36:6f:43:
69:54:ee:53:1d:f5:56:3f:e2:f3:ab:26:9e:da:84:
42:1a:d0:9a:93:a8:cc:c9:bd:e2:b5:64:f9:31:86:
48:ee:93:66:24:1c:15:54:14:8b:ba:d8:1e:6d:1b:
54:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:63:9B:17:D5:BD:F7:8C:C8:36:86:4E:5E:0A:9C:11:3E:F2:4E:96
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/G2ObF9W994zINoZOXgqcET7yTpY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.224.0/19
Signature Algorithm: sha256WithRSAEncryption
ab:f9:7b:ac:d6:83:0b:a7:2e:32:7e:26:0e:eb:4a:f2:ea:4f:
58:da:d1:32:69:dd:3b:8e:a9:ff:34:f7:aa:88:c3:03:43:f4:
90:5b:e8:f3:93:4f:ae:f7:1c:a2:31:2e:d0:ec:a0:66:f3:ee:
11:77:c4:15:02:9b:d2:22:37:36:45:6d:24:1a:38:24:60:08:
d8:e5:c8:f1:1a:17:99:48:7d:d7:7c:40:e7:14:c8:f0:d2:9f:
31:af:0d:53:c7:6d:5d:ce:dc:a8:3a:28:c2:c3:5b:ad:97:2e:
e8:fb:cf:af:59:f8:c5:25:24:29:e6:b2:be:ee:99:91:da:e5:
7d:86:c3:1f:f7:a3:46:b0:68:83:0d:db:cc:ad:07:12:0d:dd:
b1:4f:a3:fc:c9:82:da:8a:b2:de:4d:df:07:b3:a5:a4:00:79:
b2:3e:f2:8c:66:48:40:cf:ca:e9:a1:08:c5:16:61:19:75:75:
34:45:79:86:f1:7f:a3:4a:ca:15:7b:f9:f2:6d:90:64:0b:be:
b9:aa:f9:02:8b:4a:7c:7b:dc:88:2b:ca:0d:b3:c7:81:97:3b:
05:a7:7d:81:f6:5e:5f:1a:d3:1b:f3:9a:1d:e3:7c:f6:31:f0:
52:3a:f6:d0:6b:ed:d2:3d:c4:dd:af:f1:42:5c:bd:2e:df:cb:
1a:f7:bf:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:44 2023 by rpki-client on console-ams.rpki-client.org