Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/GkRx2zZ54wC7twdVb8poLixbCao.roa
File: GkRx2zZ54wC7twdVb8poLixbCao.roa (raw, json)
Hash identifier: icFiEJqaO3tUC3bGi/gukxCYQnEL5Hf8ggx5LASdIzo=
Subject key identifier: 1A:44:71:DB:36:79:E3:00:BB:B7:07:55:6F:CA:68:2E:2C:5B:09:AA
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0DD1
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/GkRx2zZ54wC7twdVb8poLixbCao.roa
Signing time: Wed 29 Sep 2021 02:39:36 +0000
ROA not before: Wed 29 Sep 2021 02:39:36 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 7482
IP address blocks: 210.200.83.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3537 (0xdd1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:39:36 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=1A4471DB3679E300BBB707556FCA682E2C5B09AA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:bb:57:fe:a4:bc:b9:40:2d:a5:61:f5:8a:ab:
05:21:4e:ce:64:6c:0f:bc:4d:b1:1a:7b:63:16:4a:
3d:1d:3e:f6:c9:76:3a:6f:ed:5a:f1:dd:42:7f:ec:
f4:ea:1d:19:7c:50:28:b2:91:fa:58:67:21:15:b6:
25:34:df:2a:77:8c:9b:51:6b:26:19:8c:8c:fc:53:
9e:46:1c:0e:55:0d:30:59:39:f3:07:7c:97:16:a1:
14:e5:55:0a:00:4a:1e:95:5f:4f:1b:7f:6e:81:ed:
de:8e:b7:8c:5c:a6:36:2b:0e:c3:eb:09:a1:ff:55:
e1:6a:88:4a:0b:8c:16:c5:5e:68:b0:83:4b:1b:bd:
dd:65:4e:95:90:d6:1d:7a:e4:2a:40:cc:fb:07:48:
01:b9:a3:37:a5:43:b7:9c:32:09:05:33:c7:72:2a:
55:1e:54:23:23:da:72:b9:3c:3c:aa:d6:c9:94:94:
81:94:39:d4:f4:92:13:c3:af:b3:85:8d:07:fa:17:
d5:ae:8e:13:88:c5:7d:a7:e8:f7:75:00:b6:bc:84:
60:a9:21:b5:43:fd:86:32:b7:15:51:cb:2f:79:1a:
cc:e7:04:d6:71:cf:0d:7a:37:b8:46:86:72:37:66:
02:74:d0:e3:97:ed:87:52:5d:b6:b7:f7:75:dc:9c:
c7:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:44:71:DB:36:79:E3:00:BB:B7:07:55:6F:CA:68:2E:2C:5B:09:AA
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/GkRx2zZ54wC7twdVb8poLixbCao.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.83.0/24
Signature Algorithm: sha256WithRSAEncryption
36:cc:fc:00:07:8e:40:cb:58:5b:40:e2:89:50:64:25:c6:68:
de:05:f1:bd:69:49:78:5f:4f:a1:d8:40:64:a2:c2:8e:96:78:
e5:6e:0c:ed:14:6f:02:f9:1f:38:88:80:06:8e:d5:ed:bc:64:
80:11:0c:14:9d:84:37:9a:ef:7d:eb:33:ed:7e:67:8d:16:fe:
4a:65:5c:1c:65:54:67:a7:76:12:75:38:c2:4c:0a:8e:b6:f9:
e8:e6:37:e1:0e:07:61:86:05:4c:1e:ba:6b:f7:1c:f8:b9:44:
17:3c:4e:cf:ef:75:7d:8c:99:7c:53:67:02:f6:b7:a5:c0:49:
3f:ae:5a:44:3e:61:c8:4c:3e:c8:68:69:c2:02:da:5b:19:cd:
f6:a2:44:d3:de:29:ce:5e:58:1e:68:4d:dc:7b:06:26:07:ad:
bb:8c:e7:72:85:92:62:ce:90:5f:55:8e:d4:4b:91:de:9c:aa:
ba:4e:da:0c:de:c9:95:f8:76:f9:11:8e:22:a1:6e:14:e6:91:
59:95:23:77:7e:d7:a6:33:86:d5:c8:62:4b:01:ad:1b:08:30:
a8:89:f2:c5:2f:0d:86:cb:d6:48:43:25:18:54:8a:82:d2:88:
c5:14:82:52:2b:10:35:f6:b2:b2:13:94:b7:25:44:6f:4c:cb:
60:58:c1:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:44 2023 by rpki-client on console-ams.rpki-client.org