Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/T5RH2A8nJ4tgvcYff805Liiz-nQ.roa
File: T5RH2A8nJ4tgvcYff805Liiz-nQ.roa (raw, json)
Hash identifier: 6OPGeyx8o1GEquKPGLksYnLWFQC1ZH0a2Pl94Hqr7I8=
Subject key identifier: 4F:94:47:D8:0F:27:27:8B:60:BD:C6:1F:7F:CD:39:2E:28:B3:FA:74
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 098B
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/T5RH2A8nJ4tgvcYff805Liiz-nQ.roa
Signing time: Tue 29 Sep 2020 10:01:59 +0000
ROA not before: Tue 29 Sep 2020 10:01:59 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17709
IP address blocks: 210.201.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2443 (0x98b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:59 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=4F9447D80F27278B60BDC61F7FCD392E28B3FA74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:03:82:3d:70:86:b7:92:42:2b:f3:33:54:0b:
6b:45:7e:94:0e:41:3a:ae:73:53:99:30:1b:ed:31:
13:21:1b:e0:85:78:7f:21:03:d1:2c:fa:6b:af:af:
cf:66:f7:20:51:a3:42:b1:b1:b7:f0:f0:31:09:50:
d2:9b:92:f3:76:ed:a5:3b:b1:c6:41:f5:17:8c:39:
ff:b3:b1:96:04:14:2c:74:b5:27:43:4a:e6:2b:8b:
7c:b3:a0:96:33:3e:10:78:a5:bc:6b:62:39:13:77:
db:32:32:c3:cc:08:13:4b:d4:d2:ca:58:f1:79:56:
cf:89:1c:5f:c3:86:66:27:5e:18:c2:6f:4a:52:57:
e3:b4:5d:c6:36:41:8e:05:b4:99:d4:b3:1b:dd:db:
8c:73:2a:3c:e9:d7:4c:b4:aa:db:d1:e6:99:24:54:
62:87:7d:13:6e:e7:f6:d0:c9:d4:43:4f:73:4c:32:
aa:3a:a0:23:39:c0:4b:e5:98:65:e2:47:4d:f6:76:
a2:43:75:db:10:1b:76:1d:d8:15:59:fd:b1:e0:01:
36:e3:a8:72:f0:fb:00:2a:b2:ca:74:c2:62:eb:6d:
99:64:56:70:7c:dc:f5:fe:53:9f:2e:8e:2b:65:fa:
fb:55:1c:21:7f:fd:0f:47:06:96:5d:62:9a:85:89:
d6:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:94:47:D8:0F:27:27:8B:60:BD:C6:1F:7F:CD:39:2E:28:B3:FA:74
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/T5RH2A8nJ4tgvcYff805Liiz-nQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.201.0.0/16
Signature Algorithm: sha256WithRSAEncryption
56:d2:9b:a6:af:bf:3a:26:7e:ea:a7:94:e0:7f:36:fb:20:df:
27:dd:c1:13:ac:f0:2c:a8:9a:74:cd:3a:8d:50:a7:b4:e7:7b:
da:08:b4:67:be:21:e9:c5:58:4b:65:ac:0e:63:87:88:c1:ac:
81:27:f0:92:2c:58:f0:73:61:99:b0:51:39:11:95:28:36:bc:
6b:24:55:6f:34:0c:fd:01:10:1e:b5:f3:d8:30:60:6a:93:82:
bc:fc:4f:23:b7:84:2d:79:6b:49:49:0e:30:7e:8c:ac:39:11:
a9:2b:da:4e:be:34:39:6c:40:4a:40:7f:90:6d:9f:d5:55:e3:
cf:1f:67:59:9e:17:7c:f9:9d:be:bf:d7:e3:6d:f7:30:36:15:
12:34:d5:b9:cc:79:c7:44:47:05:97:48:31:74:d6:65:d8:0f:
24:6c:22:fb:b6:41:91:31:cc:88:3d:5a:36:b7:3b:8c:63:20:
f6:12:14:57:17:6f:96:2c:ff:2f:c3:0f:ad:ce:9e:b6:f3:fa:
0c:68:20:77:68:38:cb:15:b3:b6:21:32:d5:4d:a4:ed:24:3c:
ef:92:02:3f:5e:72:76:40:3b:e9:69:e1:96:33:25:a8:b6:23:
0c:e8:15:2e:4a:c7:3b:a0:ef:ec:cd:48:da:f9:b7:bf:6b:3d:
df:60:f1:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:55 2023 by rpki-client on console-fra.rpki-client.org