Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/PwCD_V5GfMsrjBOgkjzD_vlZwR8.roa
File: PwCD_V5GfMsrjBOgkjzD_vlZwR8.roa (raw, json)
Hash identifier: kCTovlz0wLoe9tG5kauVeY59zKXqN9gPUMyyVwV+fVo=
Subject key identifier: 3F:00:83:FD:5E:46:7C:CB:2B:8C:13:A0:92:3C:C3:FE:F9:59:C1:1F
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0CC7
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/PwCD_V5GfMsrjBOgkjzD_vlZwR8.roa
Signing time: Sun 07 Feb 2021 13:00:17 +0000
ROA not before: Sun 07 Feb 2021 13:00:17 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17709
IP address blocks: 210.58.104.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3271 (0xcc7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 13:00:17 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3F0083FD5E467CCB2B8C13A0923CC3FEF959C11F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:87:0f:14:89:31:fd:c4:78:71:4f:43:78:71:
41:7f:b5:5b:50:93:a4:4a:75:98:52:e9:0b:33:fa:
82:ad:0b:d6:5b:67:7d:df:51:14:a5:ed:fc:f3:4d:
fd:43:50:f0:ef:27:85:16:8c:3a:25:07:7a:62:ed:
ad:7b:0e:f7:dc:f4:2f:37:8e:7d:96:dc:61:c7:6f:
ad:59:7b:0d:73:c3:49:87:91:d2:61:0b:55:1e:bc:
30:e1:e4:79:3c:f1:e8:27:78:fd:3a:4c:42:56:3b:
70:1c:c9:15:64:73:13:31:78:21:2c:cd:be:3d:d9:
d4:a8:f8:4f:e5:1b:1f:24:15:3c:a6:b2:2a:d3:1f:
fc:d9:19:a7:26:06:e9:70:b6:8a:a7:98:44:be:b5:
1f:83:4f:83:21:97:44:8f:a5:9e:ff:32:cb:ee:26:
4a:32:51:41:30:97:94:8f:1e:aa:e8:20:41:71:cd:
4b:6c:40:4c:da:56:77:43:20:0e:a4:ab:b6:68:76:
39:4c:bb:aa:a7:92:0e:c9:7c:03:35:bc:2e:90:16:
6c:a8:81:2d:42:cb:93:74:c9:3f:74:a3:56:1c:8b:
be:32:7a:b9:48:34:4f:b3:c0:74:0b:48:23:c3:ca:
a4:3a:b7:67:1d:9f:13:c7:65:4d:9f:35:69:45:4b:
92:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:00:83:FD:5E:46:7C:CB:2B:8C:13:A0:92:3C:C3:FE:F9:59:C1:1F
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/PwCD_V5GfMsrjBOgkjzD_vlZwR8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.58.104.0/22
Signature Algorithm: sha256WithRSAEncryption
8a:9c:fc:17:e9:52:88:30:e7:b9:3a:d3:b5:52:8c:61:02:e8:
e3:79:53:60:b5:98:46:0b:c7:9e:fb:9e:9e:3e:01:5e:3d:f1:
09:c4:13:15:38:1c:d6:4b:ee:9c:b6:e3:7a:68:69:e2:8c:8b:
a3:14:d6:71:d0:70:a9:bb:b8:60:fe:11:6e:1a:f6:2d:36:e7:
3c:88:9b:1d:31:24:ee:93:09:03:97:5b:69:ca:1f:90:aa:83:
fa:a2:5a:2f:b8:05:5a:54:4a:4c:3a:64:95:d7:94:13:de:d8:
15:b7:3b:4e:b7:f6:f4:30:31:3f:e3:3d:d4:e2:45:cd:f2:dc:
0b:9e:1b:aa:40:3f:38:23:e5:d0:dc:04:23:26:87:25:b2:8b:
1c:60:0f:29:d8:0a:b5:87:ce:f7:86:60:4a:4b:05:e4:65:cf:
31:67:be:62:60:c3:94:32:4a:9f:06:ac:b6:41:92:f1:0b:93:
de:67:57:89:36:4a:44:bd:7a:42:1d:b0:f3:05:54:a0:a7:d8:
be:32:2c:a9:18:32:b9:3c:63:47:47:da:5b:2e:d3:6d:b5:30:
3e:6e:04:a2:53:16:47:92:28:04:07:d4:9f:df:b6:61:96:15:
7b:f3:7d:6b:2e:0d:bc:85:cc:c4:b3:6e:32:af:fc:2a:63:f6:
59:78:b7:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:44 2023 by rpki-client on console-ams.rpki-client.org