Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/LYP9eM8T4NRpwQLG_Le_qjUkvxw.roa
File: LYP9eM8T4NRpwQLG_Le_qjUkvxw.roa (raw, json)
Hash identifier: r/OnJrkt1qb1KpkgY7HlRe6IPBYxJOoORionltiHZ7k=
Subject key identifier: 2D:83:FD:78:CF:13:E0:D4:69:C1:02:C6:FC:B7:BF:AA:35:24:BF:1C
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0E50
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/LYP9eM8T4NRpwQLG_Le_qjUkvxw.roa
Signing time: Wed 29 Sep 2021 02:40:14 +0000
ROA not before: Wed 29 Sep 2021 02:40:14 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 22787
IP address blocks: 210.58.91.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3664 (0xe50)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:40:14 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=2D83FD78CF13E0D469C102C6FCB7BFAA3524BF1C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:84:08:2f:6a:d4:b5:ad:14:0d:98:a3:99:4d:
8c:b0:19:82:7f:5e:fe:59:42:38:d0:1f:15:ca:a6:
b6:1e:45:bb:f5:f4:9d:76:8d:da:47:ff:16:8b:08:
56:c5:f4:9d:2a:27:2a:8a:c7:3e:d4:19:31:85:41:
9e:f9:33:57:8a:f6:07:e4:09:61:d8:b5:87:0e:fa:
d5:4b:2f:61:12:f3:8d:3a:e8:48:64:8e:38:e3:4f:
a5:01:aa:4e:bd:71:40:9f:62:27:01:ff:fb:ef:1f:
a9:7b:c9:4e:1d:41:0e:4d:0b:9b:87:c0:63:f2:f1:
fc:66:7b:c4:32:77:5a:29:ce:01:be:bc:b4:d7:c2:
79:39:fc:cf:c5:60:3f:ce:2a:7f:15:29:73:1f:f3:
1f:c5:c5:76:b5:3f:70:10:a4:33:7b:6f:19:3f:77:
77:6b:f0:6b:08:ba:f0:e2:f1:76:0a:3a:96:c7:93:
3d:c6:d2:05:7d:26:2a:60:69:92:5b:10:11:c9:9f:
91:be:63:23:eb:f9:a2:19:f1:d4:ef:ee:73:f9:e2:
36:06:52:47:23:30:b0:6c:25:36:a8:89:04:f3:f2:
a3:28:12:04:e9:0b:b1:b5:5f:8c:09:af:2e:47:3d:
5c:d8:69:a8:8c:27:19:5b:c9:b9:15:a3:ad:48:7e:
6c:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:83:FD:78:CF:13:E0:D4:69:C1:02:C6:FC:B7:BF:AA:35:24:BF:1C
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/LYP9eM8T4NRpwQLG_Le_qjUkvxw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.58.91.0/24
Signature Algorithm: sha256WithRSAEncryption
76:e1:e7:ac:22:f2:b1:92:b5:f1:5d:ba:1f:10:d5:1b:76:89:
68:c6:56:20:53:41:cb:0b:a3:de:eb:90:56:c0:b6:38:38:91:
53:02:75:33:55:a1:e5:ad:31:c8:12:fa:de:44:c0:02:af:64:
26:cf:f0:62:bb:03:89:3a:ac:f1:a3:ac:67:d4:11:a7:c1:6b:
49:f3:28:9c:0c:21:1e:31:0b:6d:61:c8:f1:85:15:98:85:5c:
be:d1:f6:f7:c0:20:8c:5e:dc:04:4c:4d:7d:21:d9:3f:dd:19:
7e:63:70:c7:c2:43:f1:10:b2:6b:a7:13:7b:f7:df:f7:80:b6:
58:34:f8:24:24:3c:0e:8f:35:db:ff:1b:62:38:d1:a6:32:d7:
54:d0:bb:ad:76:f0:7a:7a:88:8f:1e:5d:8b:0a:bb:ae:7f:2a:
be:c2:e2:f8:1b:48:e2:49:c3:46:83:06:50:d9:0b:24:8b:df:
0b:d0:05:71:67:39:79:c7:36:5a:c0:1b:33:b1:e0:16:e4:e5:
58:dd:69:b1:c1:7f:f9:66:38:1c:65:2d:60:d6:bd:10:96:02:
90:68:5c:5f:85:55:a8:97:21:40:95:23:42:28:52:41:31:33:
37:1e:3d:05:54:93:04:e6:66:b1:f2:eb:96:b3:f5:ef:15:14:
77:d1:d0:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:54 2023 by rpki-client on console-fra.rpki-client.org