Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/RmihJAnxEBlPSrZn6AVtJfy8FaY.roa
File: RmihJAnxEBlPSrZn6AVtJfy8FaY.roa (raw, json)
Hash identifier: 5RreaAir90fLv6Gm8429ehoevoM/bQPypq6U6+yOFXY=
Subject key identifier: 46:68:A1:24:09:F1:10:19:4F:4A:B6:67:E8:05:6D:25:FC:BC:15:A6
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0E21
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/RmihJAnxEBlPSrZn6AVtJfy8FaY.roa
Signing time: Wed 29 Sep 2021 02:40:00 +0000
ROA not before: Wed 29 Sep 2021 02:40:00 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 7482
IP address blocks: 210.202.64.0/18 maxlen: 18
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3617 (0xe21)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:40:00 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=4668A12409F110194F4AB667E8056D25FCBC15A6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:33:fd:5a:be:61:5e:4d:7d:c7:77:69:28:fe:
36:fe:fa:09:72:ed:a7:f3:78:75:b4:20:b2:62:aa:
d3:61:77:c6:18:86:d1:7a:58:a2:f1:7b:68:7a:16:
b5:eb:25:1d:9d:8e:83:c3:82:1e:b2:5c:b3:40:86:
a6:bb:0c:d9:dc:16:a6:b1:22:8f:02:90:0d:16:50:
76:92:00:c3:81:7e:30:7a:11:b9:55:4c:d0:36:5e:
46:bc:4e:c8:04:ff:d6:98:e9:1f:6d:33:df:f9:db:
9a:96:a8:da:09:3e:b3:1c:7c:12:65:0a:7f:97:b8:
c5:58:b7:41:1b:e4:d1:73:cd:b2:16:fb:4a:20:67:
7b:45:0f:94:b3:2d:ef:c7:70:58:ba:ef:38:4c:14:
9b:9b:39:a2:9d:22:05:4f:73:4d:69:04:4c:54:23:
f7:52:f1:30:79:29:0d:cf:71:67:b1:3c:50:2b:bd:
fd:eb:cc:84:d0:f5:4c:6a:b9:8d:e9:fe:70:c9:32:
0a:b4:31:4b:0c:ae:3e:ea:d9:ed:72:52:7e:dc:74:
4c:0a:d2:9d:82:bf:8d:d5:6c:10:b8:00:57:dd:e4:
90:6f:b6:f2:e9:6d:99:31:a1:0f:9b:06:ed:ff:99:
2a:ba:9f:82:1d:86:24:36:54:62:b7:9c:7f:97:83:
bd:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:68:A1:24:09:F1:10:19:4F:4A:B6:67:E8:05:6D:25:FC:BC:15:A6
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/RmihJAnxEBlPSrZn6AVtJfy8FaY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.202.64.0/18
Signature Algorithm: sha256WithRSAEncryption
38:c1:8a:54:fd:ea:68:99:b8:c4:4c:89:fe:74:2d:86:aa:e3:
9a:04:f8:cf:b8:58:76:97:9b:dd:6f:d8:78:ce:1a:38:1a:07:
84:c0:2d:cb:9f:f6:19:84:76:2c:04:fa:98:34:3f:0f:3e:ea:
cc:00:f8:9d:a9:8d:b1:98:ec:b5:75:67:c3:65:e7:21:f1:9f:
88:48:b0:62:cd:ac:2f:e1:7e:47:d6:72:3f:81:5e:0e:e7:11:
74:59:b3:11:a5:94:b6:0f:71:44:0d:86:13:db:a3:fb:d5:b1:
ef:5c:b9:f9:f2:b8:d5:a8:4f:a5:2c:a5:c2:7d:44:17:fd:fe:
56:a1:6c:3e:53:de:46:d2:52:0b:fe:6a:76:0f:a2:14:fb:a1:
09:41:4d:1f:60:cc:81:a3:26:b3:81:57:f9:b5:f3:49:9d:ed:
a1:da:e8:c1:b8:f1:86:df:69:3f:88:35:c4:cb:98:34:cd:95:
91:5a:a1:5e:2b:73:a4:fb:5f:10:0e:cc:3c:c5:47:4b:73:69:
9a:40:8c:1f:06:89:02:f4:df:2d:70:05:d7:8c:58:16:32:37:
c2:a6:d5:21:66:a4:1f:af:f8:5d:a6:ad:bc:4e:74:0c:c6:43:
54:d6:58:35:9f:b1:ae:cb:7b:c5:ae:b0:8e:d3:70:8a:1b:4f:
4d:65:a8:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:55 2023 by rpki-client on console-fra.rpki-client.org