Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/Gn3AEBpdeHQNoJ61EM4KTO0lzo0.roa
File: Gn3AEBpdeHQNoJ61EM4KTO0lzo0.roa (raw, json)
Hash identifier: EE7X3bbrY7iuzCskqHad03EhMjQAUXZdy56mK5RwPlA=
Subject key identifier: 1A:7D:C0:10:1A:5D:78:74:0D:A0:9E:B5:10:CE:0A:4C:ED:25:CE:8D
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0E38
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Gn3AEBpdeHQNoJ61EM4KTO0lzo0.roa
Signing time: Wed 29 Sep 2021 02:40:07 +0000
ROA not before: Wed 29 Sep 2021 02:40:07 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18419
IP address blocks: 218.35.128.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3640 (0xe38)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:40:07 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=1A7DC0101A5D78740DA09EB510CE0A4CED25CE8D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:3c:74:27:6a:87:03:9b:35:3f:1b:b9:3f:60:
89:98:24:c3:6f:51:79:36:4e:4f:64:6f:a2:32:59:
13:4e:f5:16:bf:88:9b:4c:62:3f:a7:53:e7:61:a5:
e6:1e:6f:98:9d:4a:ca:65:88:fb:cc:c0:bc:32:2c:
11:2a:60:63:0b:4b:de:93:a3:12:34:fb:04:bf:8c:
63:32:dc:de:81:c8:68:bb:69:16:98:92:65:d5:48:
da:e6:f9:7e:85:53:ce:b2:d2:a3:41:90:63:e1:8c:
fe:ec:81:9d:ab:9a:89:ba:e7:5b:0f:a6:61:9e:1b:
24:0a:ca:f6:fa:5f:66:3c:af:b5:1f:d3:6a:07:0d:
62:16:af:8b:61:38:cd:9a:a1:d3:5a:c5:2e:86:bf:
ad:b2:aa:07:49:9e:42:54:22:d2:24:c4:3c:3e:7c:
82:d7:61:01:43:ed:1e:e6:24:53:d6:60:a0:c9:b9:
e4:06:59:09:76:54:ff:bd:a6:9c:c6:52:a5:14:20:
cc:e2:e8:5b:1e:72:d9:a5:2e:4d:00:26:41:d4:6a:
ae:2f:6c:35:4d:08:de:81:62:de:f4:30:68:99:f1:
9c:af:32:e4:fc:c3:57:81:4d:00:f1:44:c8:21:3f:
a2:7a:58:35:0e:c2:72:30:28:fe:29:fc:27:b7:a5:
b6:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:7D:C0:10:1A:5D:78:74:0D:A0:9E:B5:10:CE:0A:4C:ED:25:CE:8D
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Gn3AEBpdeHQNoJ61EM4KTO0lzo0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.35.128.0/18
Signature Algorithm: sha256WithRSAEncryption
9e:8f:2e:7f:c6:f6:a9:62:96:a6:8a:95:a0:95:a3:44:90:6d:
68:3f:8f:84:ae:94:ae:c2:66:b5:c7:de:1e:be:7f:3a:5e:92:
8a:11:c3:e6:04:e5:37:58:9c:02:4e:ec:36:e4:7e:8b:26:00:
3e:46:96:9b:0a:2e:f2:9b:6c:45:e8:79:ed:9c:d6:a7:22:82:
5b:59:50:a6:7c:ca:73:ae:97:e7:f9:92:79:f2:a3:22:8f:80:
3f:83:49:31:dc:a7:9e:11:a4:18:ac:84:a6:92:a5:c1:b8:90:
d8:4e:0a:17:74:45:06:ee:0a:b9:0b:59:f7:3f:23:57:6f:88:
a7:84:50:95:fb:7a:b0:4b:34:b0:b8:ec:0c:73:42:e8:a1:d0:
4b:3b:dc:82:4a:8e:a2:33:df:eb:71:33:f2:9d:63:7e:42:ce:
79:45:5a:af:f8:00:02:7f:2f:48:0f:de:fa:ee:e9:7d:6d:8c:
2c:7e:76:77:a0:f2:f6:82:1e:cc:09:dc:2c:69:6b:6f:c0:b5:
9e:01:f8:80:a9:9b:90:8e:fc:a0:22:2c:06:be:31:03:e7:7e:
8d:0d:ca:91:56:30:bd:ba:4b:29:d5:9c:98:f9:86:0a:b3:0b:
6c:8a:9f:14:24:e4:4e:bd:b0:f9:6e:96:b9:26:e9:e9:8b:ad:
9d:4a:05:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:54 2023 by rpki-client on console-fra.rpki-client.org