Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/Tj7ukr3f20ScybRIM4xIhMgpZEM.roa
File: Tj7ukr3f20ScybRIM4xIhMgpZEM.roa (raw, json)
Hash identifier: mCjkH+ibZED6fHnYNWo8Wg5SHWO1wRU7xPXO7nC+OaM=
Subject key identifier: 4E:3E:EE:92:BD:DF:DB:44:9C:C9:B4:48:33:8C:48:84:C8:29:64:43
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 098D
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Tj7ukr3f20ScybRIM4xIhMgpZEM.roa
Signing time: Tue 29 Sep 2020 10:02:00 +0000
ROA not before: Tue 29 Sep 2020 10:02:00 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131142
IP address blocks: 210.200.0.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2445 (0x98d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:02:00 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=4E3EEE92BDDFDB449CC9B448338C4884C8296443
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:49:e8:e1:ce:56:27:2e:49:e8:85:0b:2f:fd:
b8:a6:5e:9e:51:34:51:a1:ab:5a:e8:e5:e8:97:2b:
cb:6c:8e:d1:4e:c3:57:7f:ea:30:5a:2c:69:d7:59:
e5:b9:3a:5b:35:3c:95:14:f5:e0:39:58:11:d6:48:
f5:15:55:3c:79:16:dc:a3:f8:cd:92:26:c8:0c:b6:
eb:a6:5c:7f:c1:d6:7a:ae:37:3f:87:a3:05:9f:fc:
f6:49:3b:c5:46:f9:19:f1:1f:ce:d5:6f:72:ea:e8:
2d:32:ea:cd:77:67:f1:48:fb:44:1f:96:57:91:6a:
d5:05:5f:ee:be:15:79:99:38:6c:e7:b1:fb:d0:0b:
ac:ad:d6:43:77:f4:02:1b:81:ae:d1:d4:77:49:b4:
64:0f:e2:53:1f:21:a8:56:57:7d:fc:47:ed:6c:50:
29:a0:16:4d:9c:99:5a:57:a3:41:04:24:0e:b2:e0:
d4:d8:bb:1e:6c:04:30:da:e5:00:0d:bd:e5:14:cf:
77:7b:a6:e3:3a:c0:0a:b3:44:39:31:3a:af:b7:5c:
dd:d7:67:12:16:60:a5:6f:a9:14:cf:ca:80:1a:09:
33:bc:2b:4c:4a:ad:dc:14:ac:cf:f3:de:f7:35:27:
1d:9e:a3:53:d4:4f:57:62:cc:bc:ff:93:5d:bf:31:
38:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:3E:EE:92:BD:DF:DB:44:9C:C9:B4:48:33:8C:48:84:C8:29:64:43
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Tj7ukr3f20ScybRIM4xIhMgpZEM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.0.0/22
Signature Algorithm: sha256WithRSAEncryption
35:1f:83:33:79:5b:c5:5d:5b:70:40:64:24:db:67:0f:2b:eb:
77:ad:8a:c9:eb:d6:d5:da:3f:5f:55:44:9f:cc:96:9c:4b:e1:
04:8a:1d:75:1f:2a:ec:fd:10:7e:c1:b1:bc:81:eb:27:6d:03:
9d:70:35:63:ab:4b:a5:75:f8:e6:eb:2d:58:8e:4d:2e:84:cf:
01:f2:ff:97:e0:53:6a:29:84:69:7a:ed:0f:3e:a2:0b:17:35:
d0:0b:d5:62:2b:11:56:c6:3a:6c:88:61:50:67:3d:42:9d:b7:
8d:c2:25:8f:d4:4c:c7:07:0b:09:13:f7:82:80:5e:47:23:1c:
f4:4e:97:de:cf:80:92:5a:e3:4c:71:2d:03:c4:09:5d:71:32:
6f:64:82:dd:ea:5a:cb:87:3c:1a:ce:63:1f:ee:b7:f9:d7:b2:
ca:31:fd:f6:00:85:db:9f:35:7b:8a:12:ab:47:83:58:78:16:
e9:80:4b:94:86:04:ab:a9:d4:43:2c:b5:8f:28:7b:d0:82:37:
2b:75:48:e1:1d:75:1e:81:37:51:d7:35:ee:db:6c:12:b4:80:
b1:9f:af:4d:67:de:8c:bf:34:63:1c:4e:0a:92:5b:5a:71:4d:
8c:fe:2c:c6:e2:1c:5e:fa:91:f4:96:3e:d4:22:72:1b:8b:c2:
bf:c1:8e:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:55 2023 by rpki-client on console-fra.rpki-client.org