Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/ImVbsd-YDST6aRhgdfKjtlYj9bo.roa
File: ImVbsd-YDST6aRhgdfKjtlYj9bo.roa (raw, json)
Hash identifier: o60Ct5Bvw/6wfs7On0bSHNP9xMSp57wY9QGeJbxD60w=
Subject key identifier: 22:65:5B:B1:DF:98:0D:24:FA:69:18:60:75:F2:A3:B6:56:23:F5:BA
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0BF1
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/ImVbsd-YDST6aRhgdfKjtlYj9bo.roa
Signing time: Sun 07 Feb 2021 11:34:21 +0000
ROA not before: Sun 07 Feb 2021 11:34:21 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 7482
IP address blocks: 210.201.0.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3057 (0xbf1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:34:21 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=22655BB1DF980D24FA69186075F2A3B65623F5BA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:41:bc:18:98:8a:39:cd:3c:82:6e:fa:58:0d:
09:e3:61:dd:38:3b:a6:5c:c0:4b:df:ea:bf:c6:ba:
3e:1e:72:74:e8:bd:91:e7:f2:84:ac:c8:37:99:81:
17:e5:e2:57:54:26:10:c9:ed:18:48:e8:b8:03:30:
16:56:b1:96:51:aa:f2:6d:88:6a:28:55:c2:b5:49:
31:12:20:71:cb:cc:62:96:ad:62:2c:4a:ec:4f:9e:
20:52:8c:36:0f:74:52:45:1b:1e:7d:ce:91:89:30:
ff:f5:46:f1:74:a6:c4:f9:74:fe:c6:f3:43:ec:fe:
aa:8b:23:7b:d7:5d:ba:d4:37:78:0f:0f:7d:df:25:
9d:fc:d3:84:b7:f3:1a:0c:d7:09:e7:63:ae:f2:fd:
e8:38:a8:fe:4c:93:bb:c5:30:2d:78:60:94:24:74:
39:01:e6:7e:e6:ed:d1:b5:a7:c0:71:05:c1:df:ce:
c0:91:1d:5e:bc:23:dc:79:03:cf:72:7c:a3:1c:9d:
37:1a:12:94:f0:44:d6:80:e7:ec:a0:3a:a7:17:ce:
99:e1:42:d1:33:f2:76:47:d1:00:d7:a7:99:bd:ed:
cb:9d:86:e5:55:e8:0c:19:84:b2:43:43:76:d9:03:
a0:da:2d:99:b5:de:00:92:8d:98:d1:88:b2:b5:d1:
de:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:65:5B:B1:DF:98:0D:24:FA:69:18:60:75:F2:A3:B6:56:23:F5:BA
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/ImVbsd-YDST6aRhgdfKjtlYj9bo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.201.0.0/18
Signature Algorithm: sha256WithRSAEncryption
42:40:3f:b0:d7:4f:19:08:cd:77:1c:1a:39:8a:5d:51:16:a6:
e0:a0:04:c6:d2:b6:12:72:bb:34:35:f1:92:20:39:17:39:20:
39:3a:a6:6e:9e:73:69:95:d1:10:b5:1f:95:67:77:15:f0:16:
ea:9c:60:f6:98:0e:1a:4c:a0:f3:e9:9a:7d:f3:35:4b:3b:2b:
5b:59:41:ee:d6:dd:e5:e3:18:ae:91:df:aa:e9:48:fd:48:3e:
45:02:a3:6b:f3:a4:84:1e:c7:64:5f:4e:ae:4c:87:96:4c:1b:
2c:f8:c0:08:27:27:ad:b9:77:33:80:4c:c1:fd:4e:2f:e1:b1:
31:67:f1:32:57:d0:65:6d:c6:07:bc:ac:27:b9:7a:7d:0a:3c:
30:d3:68:b5:cd:c1:b2:e9:d9:88:84:05:be:9a:19:e6:95:48:
b6:78:b3:3a:0a:12:50:3f:29:35:01:74:0c:e4:02:9f:85:92:
ec:b2:90:77:98:90:14:9a:e3:6d:38:6b:cf:2d:69:99:1b:9d:
2a:82:14:50:34:d7:4b:36:02:57:b6:bf:f6:72:d7:1d:3d:58:
d3:78:f6:81:61:d2:8b:55:74:09:83:0b:97:fa:07:78:e0:99:
10:a6:e1:84:d4:5e:fc:72:49:28:b1:d3:08:ed:2b:5c:e8:b7:
ef:02:cc:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:54 2023 by rpki-client on console-fra.rpki-client.org