Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/LLfVtG-pSFDs943YUWWHaUAPrmg.roa
File: LLfVtG-pSFDs943YUWWHaUAPrmg.roa (raw, json)
Hash identifier: sOIn1UxS0EOgQeA7OOF90U4QkRpAHZbIoMNCCg21v9k=
Subject key identifier: 2C:B7:D5:B4:6F:A9:48:50:EC:F7:8D:D8:51:65:87:69:40:0F:AE:68
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0BAD
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/LLfVtG-pSFDs943YUWWHaUAPrmg.roa
Signing time: Sun 07 Feb 2021 11:33:33 +0000
ROA not before: Sun 07 Feb 2021 11:33:33 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 7482
IP address blocks: 203.79.192.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2989 (0xbad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:33:33 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2CB7D5B46FA94850ECF78DD851658769400FAE68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:30:95:89:7d:b2:07:d7:ed:ef:c4:a0:2b:24:
53:8f:f4:a2:66:16:11:02:99:56:28:61:be:40:e0:
83:d3:46:77:08:fa:b1:fd:94:9b:4e:cc:af:6b:3c:
95:76:bf:72:59:1d:84:39:2e:4f:df:52:4c:3e:96:
09:a8:ca:f6:ef:06:69:a1:ee:d3:e3:e3:4f:2a:2b:
a0:c8:f9:6e:43:e1:98:9a:b7:f7:97:c5:50:87:98:
39:57:bd:69:7a:82:8c:55:6a:b3:cd:f1:ee:47:06:
d6:03:be:61:8b:31:a7:c4:a3:98:13:74:1c:e6:0f:
fe:bf:df:cb:d5:23:44:e9:c5:6a:30:ce:43:87:18:
89:be:44:e4:2f:c2:05:17:32:98:3e:08:56:e0:be:
05:34:4d:37:43:c5:1c:b5:c6:45:37:a4:4c:b4:78:
e3:6c:ed:fc:32:95:00:4a:73:e9:30:c2:76:41:71:
cc:8d:8a:61:be:93:3e:93:68:43:29:bf:5f:59:bc:
fd:ca:c1:68:51:7d:b7:e0:1b:2a:b1:75:5d:f7:4c:
92:93:7c:80:c9:cc:29:19:fb:bb:4b:7e:26:90:d2:
9d:8d:e1:24:d2:bd:48:f8:4c:24:38:15:3a:c6:bd:
48:ce:c7:99:9c:22:ad:16:52:8d:cb:a0:ff:01:a3:
28:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:B7:D5:B4:6F:A9:48:50:EC:F7:8D:D8:51:65:87:69:40:0F:AE:68
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/LLfVtG-pSFDs943YUWWHaUAPrmg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.192.0/18
Signature Algorithm: sha256WithRSAEncryption
32:cc:e9:e6:0f:7a:7b:2c:50:cd:3d:36:b2:a3:9c:ff:40:eb:
8a:9b:3b:8e:06:30:c2:34:e0:38:6f:4d:f7:2c:f9:91:27:33:
5e:e1:3a:88:20:29:b2:ce:ec:02:9f:b7:7f:c0:19:21:58:f7:
b8:34:d6:dd:6f:c9:74:52:5b:73:da:89:3a:54:18:6d:c0:f8:
6f:75:96:94:9d:42:9a:24:c4:80:3e:e8:8b:e8:f7:2c:86:2e:
5d:96:9b:45:2e:51:82:ed:83:be:a9:a6:e7:e4:23:ba:a9:b7:
22:66:b9:b7:52:70:d7:12:04:56:6f:97:1e:dc:15:f7:1a:16:
e6:0e:f1:f3:82:37:81:67:64:aa:96:62:37:97:1f:2d:3f:3e:
67:f8:7f:1f:fc:c5:d4:a5:ae:11:63:7a:7c:ba:37:ff:5a:94:
9b:21:44:01:46:3e:6c:32:71:17:a1:cc:2e:58:89:c8:17:93:
c0:b7:bb:8c:d4:61:f9:fb:98:9a:23:4a:ac:9c:00:80:17:0e:
72:17:47:97:94:ee:74:30:c0:9e:2e:bf:34:b0:81:bc:87:21:
f1:36:cd:37:6a:45:a7:48:9a:6a:17:e4:2b:e1:a9:65:d1:16:
ce:7e:c0:3a:2e:91:08:d4:29:39:07:5a:20:5e:cb:bb:d6:f9:
d3:e6:9f:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:44 2023 by rpki-client on console-ams.rpki-client.org