Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/NKpOr_Lj66gjYbQMrmO2Eh8R1-E.roa
File: NKpOr_Lj66gjYbQMrmO2Eh8R1-E.roa (raw, json)
Hash identifier: gF2H9G7TikbU3zJdE/7fDrv25WOM4aQprVfsUtBPg50=
Subject key identifier: 34:AA:4E:AF:F2:E3:EB:A8:23:61:B4:0C:AE:63:B6:12:1F:11:D7:E1
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0CB1
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/NKpOr_Lj66gjYbQMrmO2Eh8R1-E.roa
Signing time: Sun 07 Feb 2021 12:47:19 +0000
ROA not before: Sun 07 Feb 2021 12:47:19 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18419
IP address blocks: 124.218.0.0/19 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3249 (0xcb1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 12:47:19 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=34AA4EAFF2E3EBA82361B40CAE63B6121F11D7E1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:96:89:e8:6e:17:0a:36:4d:b1:59:56:61:0b:
ca:7c:f1:dd:bf:4e:0a:63:b7:39:ac:4e:1a:6c:81:
78:66:0f:b1:ef:20:d8:b9:38:90:c6:07:01:fd:b6:
49:87:c3:06:38:49:9f:8e:9d:b1:f9:c4:9c:19:3a:
0c:d0:bd:f4:38:8e:5e:09:82:83:a4:b8:1c:60:4d:
c3:85:41:30:cf:b2:87:84:43:35:59:17:d2:95:41:
f8:70:bb:57:8d:00:42:ce:42:cb:de:f4:63:61:72:
fb:db:fe:0d:c1:d1:a3:d0:ba:70:d6:49:6c:39:db:
20:b2:16:9a:e6:0c:95:db:96:f7:b8:ad:28:9b:e7:
27:d4:df:bc:d7:7e:1a:61:4b:db:92:3b:f2:7b:af:
ae:47:8b:89:86:7b:a1:ec:83:c7:00:29:51:93:7c:
22:d6:0b:b9:f4:3b:9e:12:a6:02:df:35:59:19:6a:
29:45:40:a0:e0:63:be:6c:80:c8:e4:a8:f6:19:d0:
7f:98:56:6c:88:18:78:da:7a:48:6d:01:03:e0:cd:
3d:74:a6:10:8c:72:9e:6d:79:ec:e2:31:8d:a1:c8:
cb:f3:ed:be:64:55:3e:39:3b:f4:2d:5f:25:02:7b:
c0:38:65:6c:78:a7:d1:15:e3:6d:dc:84:96:46:4a:
bc:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:AA:4E:AF:F2:E3:EB:A8:23:61:B4:0C:AE:63:B6:12:1F:11:D7:E1
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/NKpOr_Lj66gjYbQMrmO2Eh8R1-E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.0.0/19
Signature Algorithm: sha256WithRSAEncryption
08:10:15:4c:7b:6b:f9:51:fe:46:a1:7f:ef:f0:d1:e2:b0:ec:
c0:a4:74:30:d9:17:91:d8:d4:12:88:58:50:58:93:53:29:96:
3d:6a:6b:b8:b6:0f:7b:16:cd:e0:9c:5d:7e:98:78:66:ff:e5:
22:23:0c:cc:38:bc:c0:a1:b3:56:5f:f8:00:3e:19:c6:59:11:
90:91:0d:b0:ae:b3:7a:5b:1e:b5:06:05:35:4a:14:01:fc:19:
1e:57:2a:34:96:30:66:9b:3b:62:88:0f:5a:d3:29:fb:c1:b8:
e6:fa:31:02:f7:09:a7:28:9a:b4:bd:de:4e:a1:d8:9d:83:f5:
7b:59:9b:c3:bb:7d:8f:06:e4:73:6f:e9:87:3e:bd:64:39:9c:
84:c9:43:97:eb:fd:4b:80:c8:16:e3:aa:e8:a5:95:d1:40:ee:
69:75:ff:31:c3:75:d0:68:06:1e:e1:22:cb:9e:36:08:68:73:
d7:6b:42:99:95:b5:1e:e2:2c:8a:17:5a:97:d1:53:a1:e0:a9:
d7:e5:bd:1c:19:51:7a:ce:37:b2:72:19:5a:8e:f8:ae:20:a2:
e6:d9:53:80:67:1e:52:bd:9c:95:77:a0:12:61:02:5d:9e:c2:
56:51:a3:43:47:e1:a7:74:45:0c:1a:71:fa:b5:10:30:95:44:
e3:59:79:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:44 2023 by rpki-client on console-ams.rpki-client.org