Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/O53Lzue84sUHNGOwL27CeEYFiU0.roa
File: O53Lzue84sUHNGOwL27CeEYFiU0.roa (raw, json)
Hash identifier: RDR/8MzjH2DIXRR3BLStlmI44G2Aynpj0p/UWWwussQ=
Subject key identifier: 3B:9D:CB:CE:E7:BC:E2:C5:07:34:63:B0:2F:6E:C2:78:46:05:89:4D
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 08E4
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/O53Lzue84sUHNGOwL27CeEYFiU0.roa
Signing time: Tue 29 Sep 2020 10:01:13 +0000
ROA not before: Tue 29 Sep 2020 10:01:13 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17709
IP address blocks: 218.187.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2276 (0x8e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:13 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3B9DCBCEE7BCE2C5073463B02F6EC2784605894D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:e2:7c:75:33:00:05:b9:71:46:c3:24:df:9e:
0b:36:5e:8c:40:76:35:16:ee:4a:91:e6:8f:24:0b:
f1:9b:55:97:1d:6b:3a:d5:02:9a:5b:c8:dd:8d:12:
74:76:57:da:e5:d5:dd:49:1e:84:36:e6:6c:93:b5:
e5:18:7d:bb:4c:7a:b6:38:28:c7:56:20:c0:5c:f5:
35:03:5e:6b:ef:3e:8e:54:1c:f7:01:b1:87:42:9d:
c8:74:9a:d8:37:fe:b6:ea:a1:2c:96:5f:66:6b:cf:
d0:22:e9:55:fe:fe:3d:3c:5c:b9:34:0b:e0:50:f2:
73:1a:6e:d0:33:7a:67:b6:09:79:8e:3b:f5:43:00:
80:fd:d5:6b:b2:a8:fc:97:4a:58:45:3b:88:7b:44:
44:2f:bb:b0:c8:1d:00:65:50:da:a1:17:e2:62:1e:
cd:c0:40:82:2e:91:f7:d2:d9:62:5a:3b:19:44:41:
a0:5a:32:d7:4e:c8:d0:a2:52:26:b8:06:ba:bf:26:
e5:57:51:26:d4:9a:29:30:38:7e:53:62:4d:39:d1:
9b:ca:6d:b8:fd:ee:e9:51:1b:05:02:d1:30:28:a2:
bb:d7:99:15:9c:40:c8:0d:6b:d1:0a:38:c1:91:67:
df:48:d2:24:3d:32:41:93:d6:dc:97:b5:f7:d0:26:
58:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:9D:CB:CE:E7:BC:E2:C5:07:34:63:B0:2F:6E:C2:78:46:05:89:4D
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/O53Lzue84sUHNGOwL27CeEYFiU0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.187.0.0/16
Signature Algorithm: sha256WithRSAEncryption
42:19:f7:6b:11:71:ba:85:8d:f2:81:90:26:eb:96:6c:e9:57:
50:4e:d0:d9:17:44:b5:c4:14:54:f5:04:09:60:2c:4f:af:2f:
a7:7d:8e:e1:a1:ee:45:d2:1c:3f:7f:c1:60:19:b5:58:69:e6:
e9:df:ce:7e:86:33:e7:5e:a8:eb:e0:52:50:03:c4:7b:8f:c1:
bf:85:7f:76:52:f5:18:a5:74:bd:7d:22:a5:db:b6:9a:82:dd:
53:3e:80:c5:a6:fc:3d:04:3d:a8:d7:9f:ba:be:75:c4:06:d2:
d3:7b:97:d3:f4:4c:e0:88:8c:da:71:10:7b:5d:61:8d:5d:2c:
d0:04:51:89:3d:6b:04:a9:3c:23:e7:39:b6:36:32:d6:e1:ed:
d6:bc:f5:3e:c4:84:29:a3:46:d3:a3:54:71:18:f2:25:fd:e6:
02:80:86:0e:72:8a:49:02:47:53:83:bf:95:5c:db:ec:98:f8:
6e:3f:a5:2e:12:e6:61:35:bd:17:ce:99:ad:b2:90:c4:ba:12:
95:9c:7c:e2:87:b3:37:b2:95:6e:44:03:2b:a3:d4:02:71:6d:
8f:66:ab:c9:df:56:1d:5a:bb:f4:37:38:49:b6:b4:df:07:c9:
99:34:80:09:a5:15:fc:8e:dd:fb:b1:0e:8a:77:64:8f:f6:b2:
e3:f3:ff:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:44 2023 by rpki-client on console-ams.rpki-client.org