Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/Lc0BtWAflOZWUWGA5vMwzcDh7wY.roa
File: Lc0BtWAflOZWUWGA5vMwzcDh7wY.roa (raw, json)
Hash identifier: dOhbCm6yL0hA7nXQwMa8sXV5toatR2dUfiDeyo4AHms=
Subject key identifier: 2D:CD:01:B5:60:1F:94:E6:56:51:61:80:E6:F3:30:CD:C0:E1:EF:06
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0C05
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Lc0BtWAflOZWUWGA5vMwzcDh7wY.roa
Signing time: Sun 07 Feb 2021 11:34:37 +0000
ROA not before: Sun 07 Feb 2021 11:34:37 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9311
IP address blocks: 210.201.136.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3077 (0xc05)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:34:37 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2DCD01B5601F94E656516180E6F330CDC0E1EF06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:27:52:7a:ec:77:03:ea:0a:66:ed:43:b9:a3:
92:53:0e:f3:f7:31:2f:9c:f0:56:fe:a1:9f:db:ff:
8f:0d:51:45:19:e6:1a:18:06:f8:d7:79:ed:aa:1d:
c4:a7:f7:4c:68:68:e5:68:7c:ed:82:1a:63:51:33:
54:29:a2:5b:d9:34:81:cf:23:25:33:a0:cf:84:95:
d1:45:9c:7f:c4:b0:c3:a2:bc:52:4e:2e:cf:ef:7a:
39:45:c1:2f:22:83:38:0e:00:d4:b3:ae:70:6b:88:
59:5d:de:c9:2c:44:cd:d9:ab:5c:7f:91:98:dd:4b:
77:9a:90:ce:00:08:d4:74:f5:90:59:0d:bc:80:3a:
09:da:70:69:27:37:12:90:35:54:b9:12:8d:75:d7:
cf:8c:9c:15:f0:e6:62:2b:99:f9:ac:1c:8f:3d:d1:
65:d0:5a:9e:ea:72:08:1b:2b:a5:2b:ed:b5:b6:21:
c4:a1:00:4c:14:f5:40:00:7e:4e:f9:9d:8b:bd:bd:
34:a5:a1:66:3d:48:fd:d7:ee:81:69:48:8e:35:df:
7e:3d:63:58:8d:2d:80:c5:e5:c9:f1:5b:ab:80:83:
54:c4:fd:3f:3b:cd:60:6f:77:00:73:86:b2:8f:79:
0e:cc:1b:ac:74:76:d6:e4:5b:3e:f5:a5:c3:eb:34:
c5:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:CD:01:B5:60:1F:94:E6:56:51:61:80:E6:F3:30:CD:C0:E1:EF:06
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Lc0BtWAflOZWUWGA5vMwzcDh7wY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.201.136.0/22
Signature Algorithm: sha256WithRSAEncryption
65:25:ac:44:9c:da:93:8a:57:21:ce:8d:82:49:8d:76:70:00:
36:07:f0:cd:44:da:ac:10:fa:62:1f:3d:51:c1:59:93:97:c6:
cf:7b:0f:f4:04:a5:f2:d4:e4:99:9c:0e:34:17:82:18:20:a4:
a4:ce:12:59:4c:52:ab:22:9b:7a:cc:cb:4d:1b:4d:f5:a7:ee:
83:d8:7c:43:e8:22:a1:b9:1f:aa:66:24:a5:06:b2:68:ce:06:
57:06:19:4e:6a:a5:b4:79:45:f0:b5:22:07:ef:29:50:8e:44:
d4:3f:6c:d3:48:15:e9:98:79:2f:c9:ef:9d:d6:c5:58:1b:7b:
41:86:89:7b:48:06:5d:15:35:8d:46:32:25:f0:5b:16:e5:c3:
90:d3:39:4d:b2:82:40:50:da:9f:05:57:b7:cc:50:93:df:55:
ff:ad:a5:b7:a5:de:a0:63:69:66:c7:be:38:d1:d5:f2:a2:6d:
b2:e2:70:f5:ea:dd:e7:43:1e:10:d8:4a:00:05:6b:f9:07:77:
dd:01:9d:1e:f2:7a:90:ef:81:42:07:84:44:42:f6:4b:2e:20:
d0:37:db:33:3b:53:92:60:b8:f5:ae:9f:24:51:1a:d1:83:6a:
41:fb:78:99:b2:3f:5c:bb:e3:b5:31:9c:a9:05:18:c7:5e:8f:
30:bd:df:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:54 2023 by rpki-client on console-fra.rpki-client.org