Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/HDwsgBwpjcrigY0iQjdzxC6x1CA.roa
File: HDwsgBwpjcrigY0iQjdzxC6x1CA.roa (raw, json)
Hash identifier: K88ge2dn0uQ3DcgZBqTwGYDEFED+Rabu4x9nLYlyWAo=
Subject key identifier: 1C:3C:2C:80:1C:29:8D:CA:E2:81:8D:22:42:37:73:C4:2E:B1:D4:20
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0BAB
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/HDwsgBwpjcrigY0iQjdzxC6x1CA.roa
Signing time: Sun 07 Feb 2021 11:33:31 +0000
ROA not before: Sun 07 Feb 2021 11:33:31 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 7482
IP address blocks: 203.79.128.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2987 (0xbab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:33:31 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=1C3C2C801C298DCAE2818D22423773C42EB1D420
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:2d:bd:e8:cc:6d:be:f4:2c:fb:79:f3:01:1a:
61:15:9e:dc:81:97:ec:65:81:29:f9:95:42:9e:2f:
6b:25:55:b7:8b:b9:c6:2c:bc:01:0b:75:c4:84:02:
60:63:03:18:ef:b1:f0:93:02:56:df:8c:f1:3f:f8:
41:c1:f7:70:dc:f0:ea:b8:f1:b6:46:40:b1:62:9d:
4a:08:87:6a:39:dc:70:8b:ec:53:bb:61:9e:bb:ef:
dd:55:f4:65:69:5b:05:ed:d7:12:69:6e:46:30:1c:
ac:59:89:52:c4:83:dc:79:e2:2d:49:76:f6:d7:00:
f2:25:86:ab:a5:01:af:f3:e9:cd:72:77:5e:03:f9:
26:d4:0d:59:d2:ba:b4:a5:7f:e1:8c:b3:72:49:6e:
7e:70:ed:00:04:88:2b:80:cb:0b:b5:e4:5d:d8:fb:
fd:58:c0:11:ef:ff:8d:eb:81:21:53:1b:15:0b:fe:
e5:6a:51:b7:c6:b9:af:fb:a9:aa:f4:88:b6:af:9f:
ed:7d:16:40:0d:e4:48:78:ce:3d:43:3e:33:ff:ec:
ce:38:a7:cc:c7:96:4b:21:f4:06:ab:08:3c:bc:4d:
04:52:6d:9b:58:b6:2d:56:21:de:73:81:6a:ce:9a:
28:71:7f:c9:80:27:ca:58:eb:6a:0e:30:3e:d0:ac:
b2:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:3C:2C:80:1C:29:8D:CA:E2:81:8D:22:42:37:73:C4:2E:B1:D4:20
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/HDwsgBwpjcrigY0iQjdzxC6x1CA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.128.0/18
Signature Algorithm: sha256WithRSAEncryption
6d:49:c8:da:28:00:5c:5a:91:94:78:2a:5a:56:3c:d7:51:d1:
57:2d:c5:0d:7d:11:99:c4:71:1e:ce:3a:15:5d:e9:6e:27:d0:
06:a4:ad:2a:14:84:74:c7:c1:e7:1a:aa:53:b0:b4:a9:8a:61:
17:0a:08:44:44:32:a4:99:58:e7:1c:79:bb:50:41:13:1e:a4:
14:7c:69:32:d3:4d:38:55:e8:7f:02:87:c2:36:47:f3:bf:da:
c3:af:45:15:28:22:d1:41:f4:23:0d:f8:41:49:26:a6:bd:e3:
01:a9:18:4c:74:3d:31:d8:7d:6b:c2:44:ba:a3:fc:6d:8e:54:
07:60:6a:ba:85:91:7c:d2:f4:f8:a3:4f:3b:64:ae:2f:6e:a5:
88:9f:ba:50:1a:21:4f:91:07:ab:bf:49:ec:52:83:bf:0c:b0:
97:07:a6:cb:66:12:ed:c3:10:72:db:97:ac:b9:24:5d:0e:76:
ae:6b:8d:82:bc:78:6c:f2:eb:37:d9:a1:48:9c:be:6d:ef:f5:
43:f0:ef:ba:43:66:72:22:67:aa:de:ea:50:55:91:de:48:05:
64:df:74:74:a7:21:50:08:cb:f4:2d:ee:98:d6:9f:d6:e7:6f:
69:6b:e5:3e:51:8a:af:0e:3d:49:af:e7:16:1a:eb:21:78:d1:
fa:3f:a8:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:54 2023 by rpki-client on console-fra.rpki-client.org