Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/GK4pG2p0h2CtePhiGrMVJZ7_yTE.roa
File: GK4pG2p0h2CtePhiGrMVJZ7_yTE.roa (raw, json)
Hash identifier: CqswSd20M8/13LNs5yY9Mqr5GNyQw7BTbAQ6Gt+CfzY=
Subject key identifier: 18:AE:29:1B:6A:74:87:60:AD:78:F8:62:1A:B3:15:25:9E:FF:C9:31
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0DEF
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/GK4pG2p0h2CtePhiGrMVJZ7_yTE.roa
Signing time: Wed 29 Sep 2021 02:39:45 +0000
ROA not before: Wed 29 Sep 2021 02:39:45 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17709
IP address blocks: 210.202.192.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3567 (0xdef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:39:45 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=18AE291B6A748760AD78F8621AB315259EFFC931
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:66:98:a4:96:fd:9c:f0:e1:d3:ae:d9:e1:e5:
96:8d:1e:18:c9:f4:ae:15:06:05:a7:0e:8e:57:e7:
d2:12:ba:3e:cc:c2:0c:49:d2:2b:75:9e:13:5e:14:
48:eb:a9:8d:f1:63:66:88:d6:21:de:dc:0c:e5:f5:
f1:a1:eb:29:80:6e:c4:a2:f0:e3:e3:e7:39:14:0a:
64:57:ea:44:fa:53:7d:f4:e0:ad:5d:50:02:1a:bb:
7c:fb:b5:f4:80:73:1a:19:cc:ff:8f:71:86:46:ed:
76:7a:91:4f:58:e9:fe:2f:16:d5:94:f6:a2:81:3c:
12:16:e0:5d:b8:62:b9:2c:e2:10:fe:12:c4:5e:bc:
37:c0:c3:4a:03:5f:00:22:81:16:87:70:d1:5c:58:
32:de:34:0d:f5:53:40:9e:e6:8a:56:97:26:f0:d2:
27:f5:46:bd:65:f4:d4:92:b6:db:2f:a0:f1:06:df:
ec:52:f7:69:9e:49:a4:0d:ac:33:a2:10:8d:d0:4c:
3e:14:d0:8e:a4:bc:6b:a0:5a:d0:4b:38:e1:e9:22:
d6:92:a2:4d:1c:90:9c:ea:13:f1:01:e4:bb:ec:fb:
bd:fc:a0:6b:6e:21:fb:30:93:ec:01:3c:82:a1:e6:
ba:29:42:02:fd:24:e7:71:70:f9:44:1d:23:eb:70:
f0:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:AE:29:1B:6A:74:87:60:AD:78:F8:62:1A:B3:15:25:9E:FF:C9:31
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/GK4pG2p0h2CtePhiGrMVJZ7_yTE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.202.192.0/18
Signature Algorithm: sha256WithRSAEncryption
4c:79:d5:b0:1a:9f:7b:8a:b8:90:d8:6a:16:d3:20:1e:fd:a7:
9f:5c:b1:a6:c4:59:fe:53:d8:7b:63:37:30:fb:60:1a:a1:66:
64:61:fd:4d:64:1f:31:fe:48:52:b9:47:df:f8:e4:a8:fb:59:
66:5e:04:0f:65:02:43:60:a9:f2:96:30:ca:78:e5:59:b6:08:
e5:7f:09:cc:68:be:a3:d9:96:50:58:69:46:b4:2c:85:95:01:
3e:a8:b5:77:32:90:80:c4:11:19:4d:c1:5f:ea:fb:d7:af:35:
73:7e:28:35:90:40:79:30:3f:52:61:e1:bd:aa:0c:bf:51:ff:
fe:06:ab:0c:e0:82:17:ec:8f:1d:5b:78:2b:51:fc:79:5d:7c:
8f:47:fe:de:e3:b9:20:d6:bc:3e:52:e7:23:7a:b6:61:2b:5c:
8d:33:ab:4e:ff:7f:f9:ef:e9:8f:4c:db:a8:a5:50:e4:4b:44:
a3:3f:c1:c4:a3:3a:87:3c:46:4c:34:f7:c9:17:35:f3:29:3e:
dc:94:ff:cd:25:e2:f1:72:a0:0a:a6:bb:88:7b:3e:0f:59:e3:
67:64:ed:ea:ae:97:73:13:1f:ec:2c:22:a1:b3:8d:9d:5e:71:
5c:1c:64:24:f6:08:be:2c:f8:20:17:52:8f:bb:78:87:e1:06:
0f:e6:78:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:54 2023 by rpki-client on console-fra.rpki-client.org