Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/GQEby7BGozl4NYvEUg5ojhO-EZU.roa
File: GQEby7BGozl4NYvEUg5ojhO-EZU.roa (raw, json)
Hash identifier: CEYhF/J5qVF8OqA3sNh0tGbmMnINWXI6jWO8sweZYhI=
Subject key identifier: 19:01:1B:CB:B0:46:A3:39:78:35:8B:C4:52:0E:68:8E:13:BE:11:95
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0E63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/GQEby7BGozl4NYvEUg5ojhO-EZU.roa
Signing time: Wed 29 Sep 2021 02:40:19 +0000
ROA not before: Wed 29 Sep 2021 02:40:19 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17709
IP address blocks: 103.36.116.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3683 (0xe63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:40:19 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=19011BCBB046A33978358BC4520E688E13BE1195
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:99:0c:41:33:47:78:01:ad:04:fe:06:b0:4c:
32:48:5c:a2:21:03:ca:49:0d:97:20:ca:a3:aa:12:
ec:80:c1:2a:73:6f:ca:d8:e5:e4:0b:d5:73:79:c9:
f3:f6:ac:61:bc:a5:f7:b0:6c:6c:1b:f2:66:c8:fe:
e5:4d:b5:e3:c4:95:01:91:6a:c0:56:1d:f6:3e:b0:
91:32:cb:59:68:ec:4b:be:67:0b:dd:a5:90:36:39:
00:79:48:ab:07:23:62:fc:9c:b6:b1:07:d6:c3:f4:
62:29:4e:0f:a0:45:9e:07:df:c6:77:df:5d:5c:cb:
6f:c4:3d:58:07:38:8d:a8:e4:90:5e:85:78:86:f5:
9f:2d:3b:4d:6c:78:5a:55:6c:5b:80:29:a7:81:9c:
9e:62:53:a0:a4:68:a9:58:06:84:96:db:87:35:05:
a2:f1:84:86:c9:84:e5:ee:c7:6b:1a:a5:29:5b:c4:
78:fe:58:24:2e:c0:36:7a:d9:fc:65:a4:06:ed:96:
cc:9e:16:55:11:b6:2a:94:74:8d:2f:44:28:e6:06:
9c:b6:df:af:fa:4d:99:11:13:32:23:53:61:47:f6:
be:f7:fe:72:dc:83:46:4f:d8:cc:51:df:06:4c:8e:
8d:17:01:8d:76:2d:a6:f3:76:7e:4a:da:7c:0f:a6:
ff:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:01:1B:CB:B0:46:A3:39:78:35:8B:C4:52:0E:68:8E:13:BE:11:95
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/GQEby7BGozl4NYvEUg5ojhO-EZU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.36.116.0/22
Signature Algorithm: sha256WithRSAEncryption
65:03:1c:12:d5:54:d8:ed:df:e5:46:3e:36:ee:dc:ae:47:53:
40:15:79:d5:3b:57:b8:dd:6d:c1:f6:52:17:13:6a:6f:0a:24:
3f:2c:1f:95:aa:d7:22:b1:d6:b1:2a:8d:2e:52:cb:dd:9d:6f:
5d:5f:06:b8:4b:6c:90:02:3f:d5:a8:71:36:df:dc:e6:b0:ba:
0e:32:2a:2c:5d:5e:51:01:16:2d:6e:8c:20:5c:ec:c1:8b:8e:
26:26:c0:fd:00:19:dd:99:7c:24:8e:d9:de:28:a9:0f:65:73:
4c:0f:6f:95:82:17:6b:56:ff:66:90:17:6c:51:87:71:35:51:
34:fc:61:89:65:11:a1:6a:9f:dc:10:e8:59:e5:b5:7c:38:e1:
a7:2f:f8:dc:5a:d1:35:04:16:1b:11:6f:31:3b:0f:15:60:3a:
c9:ca:90:8c:48:e0:e1:58:7d:ac:6b:b2:55:67:b6:60:84:2a:
b0:11:7e:00:ca:63:06:e1:11:4d:94:8d:d9:4e:08:76:a9:69:
71:d8:8c:64:b0:f9:13:82:32:b4:53:57:b3:0f:07:bd:8d:57:
e3:66:86:68:8b:83:b0:b9:75:7a:d7:18:90:3d:87:dd:3e:a8:
11:c9:49:cb:54:8c:ff:a5:14:b4:e9:45:88:84:76:ba:aa:61:
c1:5e:d9:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:54 2023 by rpki-client on console-fra.rpki-client.org