Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/LhMzfklXHqyfhoTjOYdjWQVdyno.roa
File: LhMzfklXHqyfhoTjOYdjWQVdyno.roa (raw, json)
Hash identifier: e/UpCStVrKRoJAUGxo79vpI/Le9rSCjj8ispaFmtspI=
Subject key identifier: 2E:13:33:7E:49:57:1E:AC:9F:86:84:E3:39:87:63:59:05:5D:CA:7A
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0C6B
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/LhMzfklXHqyfhoTjOYdjWQVdyno.roa
Signing time: Sun 07 Feb 2021 11:39:31 +0000
ROA not before: Sun 07 Feb 2021 11:39:31 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 7482
IP address blocks: 210.58.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3179 (0xc6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:39:31 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2E13337E49571EAC9F8684E339876359055DCA7A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:a7:2b:23:61:cc:2a:c9:3b:3a:de:b9:3a:cb:
ab:48:90:e9:1d:02:d5:e5:be:08:25:b8:45:e2:75:
7a:d3:f7:8e:38:37:84:42:69:3b:c1:51:74:7d:11:
20:cc:16:86:de:75:36:12:78:3a:a5:a4:e1:89:22:
87:dc:0a:1a:14:3e:27:f0:89:3e:8f:d4:d4:bd:68:
d5:ff:ca:75:ba:0c:07:07:38:37:1d:58:9f:0e:62:
d2:66:a3:85:b3:ff:a9:8d:ae:30:d9:59:e3:90:1e:
c6:ba:10:66:e1:2c:0d:3a:29:b2:97:e9:97:d8:6e:
f7:d6:da:a9:a3:cf:c2:d2:d4:4d:30:ab:c7:c2:ef:
c6:08:ca:81:d7:a3:fb:e3:19:cb:68:0f:58:2c:8f:
60:07:50:55:14:7a:f4:90:fb:7a:2c:73:0c:66:e3:
79:40:6e:44:1b:c8:cd:58:ec:7d:3b:ba:95:0d:ff:
04:6f:a5:9a:65:9f:14:28:99:94:32:04:9b:fb:28:
c0:ec:4f:f8:de:c8:bb:8b:64:ae:68:98:b4:c1:4c:
1d:e7:78:24:2f:a3:45:0e:04:f8:f7:1c:63:3e:10:
95:bd:9d:9c:44:67:a9:72:a3:56:24:6d:77:bb:7c:
c6:7a:52:75:fa:f2:8d:bd:9c:26:f7:b6:e1:2d:23:
6d:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:13:33:7E:49:57:1E:AC:9F:86:84:E3:39:87:63:59:05:5D:CA:7A
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/LhMzfklXHqyfhoTjOYdjWQVdyno.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.58.0.0/16
Signature Algorithm: sha256WithRSAEncryption
af:f0:18:d3:03:65:59:0f:02:a2:f9:58:1e:fb:c7:81:9e:37:
f1:77:49:39:55:6e:42:84:b0:8b:48:90:6e:69:6d:03:8c:23:
4a:b9:9a:25:ab:db:8e:90:56:11:4b:84:0b:88:81:a9:2f:15:
3b:04:8f:20:14:66:51:06:6e:d6:ef:f8:a8:66:a8:67:e7:6b:
37:5c:c3:e1:fa:33:d0:35:14:98:58:16:47:43:04:46:4e:2d:
30:06:c9:3a:c0:65:c7:7f:14:14:ff:ad:6e:38:8f:fd:2a:e6:
5e:e7:51:7a:57:85:dc:e7:de:29:57:47:5b:86:2d:fd:5e:ba:
af:28:27:b6:81:dc:d4:de:86:c1:f4:52:d7:37:7a:c1:ff:3a:
9f:7a:e9:6d:e0:ea:b4:f3:c0:71:3d:4b:5b:67:f2:b2:02:dc:
a6:75:0b:75:bb:bb:99:d8:ed:bd:f1:dc:53:96:54:bf:97:a9:
4b:f9:35:69:00:e4:13:0a:41:0d:8c:e7:30:7c:34:f9:67:45:
bc:90:0a:ce:f0:99:e8:7b:91:60:87:22:72:46:af:4f:9c:f6:
67:74:25:a8:9b:e7:97:db:28:54:24:08:16:4a:38:45:4f:8a:
d3:aa:6f:d9:c0:3b:ee:a5:86:2a:c2:12:ef:ae:47:ae:dc:89:
72:80:95:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:54 2023 by rpki-client on console-fra.rpki-client.org