Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/GTvAU2z9qUPkMHjJjPSJL1SP6rQ.roa
File: GTvAU2z9qUPkMHjJjPSJL1SP6rQ.roa (raw, json)
Hash identifier: OhDboQl33HWUmdwdC3/53TgONUQXEmSqiIQpoHOBB+U=
Subject key identifier: 19:3B:C0:53:6C:FD:A9:43:E4:30:78:C9:8C:F4:89:2F:54:8F:EA:B4
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0C3F
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/GTvAU2z9qUPkMHjJjPSJL1SP6rQ.roa
Signing time: Sun 07 Feb 2021 11:35:25 +0000
ROA not before: Sun 07 Feb 2021 11:35:25 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17709
IP address blocks: 218.184.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3135 (0xc3f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:35:25 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=193BC0536CFDA943E43078C98CF4892F548FEAB4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:55:95:8d:5a:b5:4b:d4:f8:4c:8f:0f:af:b1:
05:d9:07:1a:46:07:4b:dd:f6:95:b1:4b:25:a1:e4:
f7:de:3a:17:4d:4c:4e:9a:e9:a5:e2:cc:b5:18:65:
d6:17:a8:48:cb:77:41:33:3d:38:19:e4:9e:e3:83:
85:b5:68:66:d4:3e:da:57:41:8d:5e:d8:e9:d3:7e:
7c:db:db:d9:67:d1:1f:d4:64:f4:2b:e1:26:b4:b3:
02:89:8a:d5:50:bc:b2:2b:3b:8d:b4:2d:91:94:bd:
e9:a7:c4:a1:7b:92:b4:50:e1:29:3f:94:94:3e:2d:
c4:0b:04:66:02:15:fc:c1:2a:45:cf:90:8f:4c:70:
a0:14:09:4d:73:98:14:91:e9:23:22:86:5c:08:ce:
ab:20:6e:bc:98:26:62:c7:f9:5d:1f:97:f7:76:1b:
27:2b:12:eb:c6:a7:e3:da:48:67:c0:e2:b5:c7:da:
70:32:6e:61:6f:3d:df:ee:55:29:7c:df:14:c6:fd:
ec:f8:02:2d:7c:d4:d8:42:65:53:f8:de:bf:55:e4:
a6:c4:99:64:18:8e:de:4a:ac:86:9b:ae:7c:c0:b8:
95:e5:19:91:6f:6e:a5:39:69:7b:50:20:19:6b:94:
0d:db:7f:4b:ac:69:0d:02:f6:a1:e4:75:8f:fb:c8:
dd:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:3B:C0:53:6C:FD:A9:43:E4:30:78:C9:8C:F4:89:2F:54:8F:EA:B4
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/GTvAU2z9qUPkMHjJjPSJL1SP6rQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.184.0.0/16
Signature Algorithm: sha256WithRSAEncryption
1f:6f:5d:c7:b1:64:e8:ec:fb:51:78:47:eb:79:b8:72:e4:f1:
45:5c:6f:1e:95:03:a6:f9:47:31:b5:74:28:2c:03:2f:af:3b:
6b:97:23:30:cb:e2:fd:ed:93:22:e2:07:b3:e9:7b:84:f8:c3:
8d:c9:5a:10:e3:3d:14:f9:83:35:47:b8:82:54:19:46:7e:94:
b0:77:7d:a8:42:a0:b8:da:0f:1b:db:29:0d:d1:fa:48:39:16:
01:60:65:06:63:ce:f0:85:31:5c:f2:9f:4e:67:b4:cf:71:24:
59:a5:74:5b:92:12:55:4d:a6:58:b3:39:e9:72:96:35:03:ee:
e7:75:e5:e5:9d:a3:b0:a9:cb:51:ff:3e:43:60:b7:f1:b7:de:
ae:e9:96:48:ae:47:dc:ce:6f:67:63:ed:80:03:b5:00:4e:a0:
58:ab:ff:d7:ba:03:eb:70:db:96:95:0d:f6:0b:e4:85:f4:c7:
c2:0f:0d:3d:a7:7b:ef:4e:a1:10:16:32:6e:c6:f2:12:25:f7:
69:70:a0:04:80:4d:06:96:55:6c:9a:69:3c:04:f1:77:87:c8:
56:6d:e1:0a:63:08:ab:e4:27:8c:60:1b:b6:19:72:09:2e:87:
e7:40:b1:b5:34:0d:3a:24:0d:dc:1e:f8:94:31:b2:03:ea:b7:
ed:92:ce:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:44 2023 by rpki-client on console-ams.rpki-client.org