Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/SJdS0apBRaWf1WcPjq4zBf-y8Ec.roa
File: SJdS0apBRaWf1WcPjq4zBf-y8Ec.roa (raw, json)
Hash identifier: pA9gSA//c5QOONdwc+retuGC6HGFqIIE3Cb7bP/u6wE=
Subject key identifier: 48:97:52:D1:AA:41:45:A5:9F:D5:67:0F:8E:AE:33:05:FF:B2:F0:47
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0C8D
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/SJdS0apBRaWf1WcPjq4zBf-y8Ec.roa
Signing time: Sun 07 Feb 2021 11:40:03 +0000
ROA not before: Sun 07 Feb 2021 11:40:03 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131627
IP address blocks: 219.91.64.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3213 (0xc8d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:40:03 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=489752D1AA4145A59FD5670F8EAE3305FFB2F047
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:12:7e:03:be:82:a3:3a:35:ae:56:67:0d:a2:
65:24:9e:c7:ad:f1:30:7e:14:09:8f:56:bd:98:45:
61:d0:f6:8c:25:f6:33:ec:7d:62:63:40:22:16:71:
a4:26:d4:09:ef:78:a2:36:24:11:8d:06:dd:f0:a3:
39:9d:01:7b:5c:72:65:2b:2c:12:93:ac:c0:b4:46:
5d:6b:4d:a8:8a:3f:8c:9f:a0:2d:9a:46:7e:2d:5b:
40:6b:7b:4b:57:26:1f:62:31:5b:a3:db:24:87:e5:
eb:4a:9c:be:89:9a:6e:b0:f6:38:40:28:e9:e3:21:
2b:cd:cf:b5:52:1b:b3:53:c4:f2:b8:45:ad:f3:9a:
66:ec:a0:5e:20:c4:df:fe:59:cf:2d:bf:ba:81:16:
b5:23:88:4b:2f:dd:ce:e8:19:db:b2:d7:3f:1c:5f:
b1:8f:c6:7e:c9:67:16:cd:62:83:40:89:67:08:c5:
fc:ad:6a:9a:79:3b:49:45:56:ca:c6:36:48:70:13:
91:2a:90:3f:ca:71:90:69:a9:df:6b:5f:a6:fc:3d:
ea:aa:27:e8:ab:08:fe:10:a7:b8:82:f2:ff:c8:a6:
fe:21:71:2c:ac:84:05:2a:19:e6:22:27:77:b4:45:
d5:b9:d4:65:40:22:9d:1c:ba:fb:30:15:68:0d:4c:
dc:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:97:52:D1:AA:41:45:A5:9F:D5:67:0F:8E:AE:33:05:FF:B2:F0:47
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/SJdS0apBRaWf1WcPjq4zBf-y8Ec.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
219.91.64.0/22
Signature Algorithm: sha256WithRSAEncryption
71:db:4c:39:20:62:9a:14:19:2b:05:83:19:fd:e9:f3:62:bc:
58:ff:35:90:e5:ea:27:c4:39:6c:64:f3:0e:5e:e7:28:b3:09:
ce:32:2d:a6:ff:9c:d2:7e:1b:3a:87:8e:06:90:2f:87:c5:9a:
5c:d7:e0:8c:cc:5f:22:21:d5:03:fb:64:ba:2b:e5:2f:2c:a5:
a3:3b:d1:ce:64:d2:f8:92:10:3c:71:8a:32:5e:ce:84:c8:2c:
e8:00:3e:3c:e2:d3:0e:4a:fd:e9:50:a8:f0:fb:a5:0f:c2:f3:
dd:37:e1:85:9e:91:7f:78:9d:a8:19:bc:2b:5a:3c:2e:bd:41:
8f:2c:31:a3:47:dd:8c:b6:13:97:ba:f0:52:dd:fe:61:71:dd:
5f:82:05:15:9f:40:45:6b:76:84:09:cc:f5:df:85:06:51:08:
fc:bc:6b:e4:ed:f7:91:76:2e:08:a6:06:4e:7f:cf:0a:c1:f0:
7a:8a:96:ee:2b:41:7a:96:52:4b:cd:bb:4b:3c:25:1d:5c:8f:
50:d0:e9:0d:fd:66:d2:c4:f1:5b:3f:79:b9:a8:af:74:d0:67:
ba:46:12:93:14:5c:e7:c7:5a:dc:9c:93:0d:ab:e1:3c:da:48:
fc:1c:62:62:12:f7:6a:65:50:7e:19:f8:60:d9:aa:89:fe:06:
b5:e4:30:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:55 2023 by rpki-client on console-fra.rpki-client.org