Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/G7TC02binR6ck6c0510GvNiU0vE.roa
File: G7TC02binR6ck6c0510GvNiU0vE.roa (raw, json)
Hash identifier: USJbsEHQVNxkKjcGpS5IJbvUN4ElqDGeIAn05+u3SAU=
Subject key identifier: 1B:B4:C2:D3:66:E2:9D:1E:9C:93:A7:34:E7:5D:06:BC:D8:94:D2:F1
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0E28
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/G7TC02binR6ck6c0510GvNiU0vE.roa
Signing time: Wed 29 Sep 2021 02:40:01 +0000
ROA not before: Wed 29 Sep 2021 02:40:01 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131627
IP address blocks: 219.91.64.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3624 (0xe28)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:40:01 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=1BB4C2D366E29D1E9C93A734E75D06BCD894D2F1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:11:0f:99:99:37:49:1b:bd:7f:22:1e:d9:55:
e7:99:53:15:f1:c2:56:ae:83:e1:af:b7:51:e4:41:
05:a2:d5:78:f6:25:b2:e0:ad:61:b5:28:c3:40:53:
ca:f6:fd:ae:e6:32:ef:ab:3f:8f:94:30:b3:92:ba:
16:d1:48:71:0d:68:8a:1b:04:68:6a:ca:e1:a1:40:
6a:4b:92:40:c4:9d:38:7e:2d:24:f3:56:bc:c0:5c:
e6:1a:c1:a8:1b:66:fb:db:af:17:45:d0:d3:a7:95:
6c:dc:3b:8b:9b:e0:61:86:90:d6:e2:83:27:5b:37:
79:8a:92:c6:26:a6:df:d0:f1:b3:b0:c0:df:58:4a:
11:14:6b:43:e3:ba:3d:b6:72:c4:f2:4d:e9:18:04:
21:99:57:8e:21:15:e9:56:64:f8:1d:df:60:91:bf:
57:53:64:7b:b2:40:4f:39:29:70:d3:a5:e0:ac:ba:
fd:33:bf:44:92:68:74:2a:af:77:83:49:54:18:80:
cf:aa:a6:c9:c1:2e:94:78:56:4c:78:77:52:f9:0d:
fd:a4:7a:f9:da:20:db:6b:ff:3a:ff:a7:dc:5f:a2:
f4:d0:c7:d3:db:ce:0f:f5:ef:83:be:31:ad:fa:8b:
7c:92:19:5f:58:2d:c4:d0:92:f5:d9:57:02:9f:a9:
17:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:B4:C2:D3:66:E2:9D:1E:9C:93:A7:34:E7:5D:06:BC:D8:94:D2:F1
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/G7TC02binR6ck6c0510GvNiU0vE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
219.91.64.0/22
Signature Algorithm: sha256WithRSAEncryption
93:70:76:81:03:f6:4f:3d:40:b5:21:06:99:bc:f9:0b:f7:bb:
4e:15:e2:3d:9d:99:fc:16:99:2c:28:db:15:04:94:02:70:41:
6c:08:29:99:0b:7f:98:52:58:68:dd:04:ad:f4:02:96:78:9e:
e5:2e:9f:52:ca:ca:aa:a0:41:ba:af:5d:06:9e:12:27:cc:3f:
ed:1e:44:7d:b4:8e:d3:08:3c:37:50:d9:de:83:26:87:66:bf:
75:e6:e3:6e:e5:41:a2:55:24:b8:4c:83:61:59:c4:70:73:08:
58:66:8e:f3:f8:30:de:e2:3d:c3:df:54:b6:2a:9d:f5:c6:a1:
4d:0f:1d:97:66:c0:25:dd:0f:ab:77:14:39:92:3c:55:b7:ba:
d1:b3:bb:d1:26:92:82:6d:db:10:5e:59:8d:88:94:5a:3f:06:
02:50:11:a0:14:46:c6:1c:f1:e2:4a:f0:c4:a7:8f:6c:59:88:
5f:30:00:11:26:e5:1c:2b:f6:82:ee:1d:28:25:23:08:90:65:
26:7f:d2:f6:48:91:9d:c6:2a:4f:b0:e5:78:42:84:07:4e:c2:
6f:35:3a:30:b7:1b:7c:73:ef:80:17:b5:60:22:65:96:0f:c7:
64:68:56:35:3c:8a:a6:3c:6d:1f:cd:57:d9:ad:57:a8:f3:60:
ad:06:ee:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:44 2023 by rpki-client on console-ams.rpki-client.org