Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/UTA339r7c3BRAqnOeZpUq4mTr-Y.roa
File: UTA339r7c3BRAqnOeZpUq4mTr-Y.roa (raw, json)
Hash identifier: mGCe7pjio2/+6aZGkJrAoJ7/mqqYK83VsXum8fvDqa0=
Subject key identifier: 51:30:37:DF:DA:FB:73:70:51:02:A9:CE:79:9A:54:AB:89:93:AF:E6
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0CAD
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/UTA339r7c3BRAqnOeZpUq4mTr-Y.roa
Signing time: Sun 07 Feb 2021 12:40:20 +0000
ROA not before: Sun 07 Feb 2021 12:40:20 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131584
IP address blocks: 210.203.48.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3245 (0xcad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 12:40:20 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=513037DFDAFB73705102A9CE799A54AB8993AFE6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:fc:00:00:8c:b5:b4:a6:fb:2a:ba:f6:61:13:
a9:78:b1:f9:54:34:a0:89:88:52:48:64:ea:ce:e9:
3f:e2:2a:05:cc:44:54:3a:37:92:75:48:d5:0e:40:
d2:0a:56:b1:ea:d0:58:82:b7:14:3a:0c:30:c9:c7:
dc:a0:90:e6:f4:5f:9e:83:d1:05:fb:8c:b8:05:c9:
8f:44:c3:94:ed:27:4f:ef:10:b5:4e:84:68:1e:8e:
95:d5:bb:77:d5:86:30:b3:e6:f4:2a:ff:01:4c:b4:
7d:84:d6:7f:cd:be:b0:75:ef:a9:ec:12:8f:63:57:
92:a1:73:bf:89:72:8f:7e:bc:44:65:5d:f5:d4:64:
e7:b7:a4:c2:36:15:15:cb:71:52:fa:22:8b:17:55:
25:2c:93:49:20:82:42:fc:73:35:fc:14:5e:7b:17:
a7:b5:5f:33:6b:4c:72:bb:cc:ba:3e:e7:05:6d:c8:
41:9d:28:c4:15:94:58:34:9c:ce:10:ac:0c:94:6d:
28:80:64:ee:ca:76:99:b1:e7:fb:f0:da:8b:e3:b1:
45:4f:73:46:c9:67:52:1e:c3:aa:df:e5:87:19:11:
be:f2:a4:d9:04:a5:d9:b8:7e:ee:e2:6b:6d:21:22:
a3:45:88:5e:3e:84:0c:64:d0:6b:5b:15:dd:ab:06:
18:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:30:37:DF:DA:FB:73:70:51:02:A9:CE:79:9A:54:AB:89:93:AF:E6
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/UTA339r7c3BRAqnOeZpUq4mTr-Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.203.48.0/20
Signature Algorithm: sha256WithRSAEncryption
30:74:ec:a9:df:b6:fd:ec:77:28:10:87:45:85:03:f7:f7:7c:
71:aa:94:ee:14:20:26:17:77:d1:03:76:f5:7c:3e:20:5a:0d:
d8:3d:c0:80:bf:66:42:f9:8b:34:27:a9:1c:76:c7:99:d6:2a:
9c:dd:3c:68:a6:32:08:83:83:b2:cc:d2:ee:19:34:59:50:d0:
dd:fc:41:aa:cc:25:fe:5a:fb:dc:e7:04:e2:de:8f:d5:38:f3:
ba:25:23:e3:9b:06:6f:34:82:ed:ff:ef:79:a3:1b:af:4d:65:
fc:48:0f:9d:34:2a:7b:4d:ec:98:b9:45:df:33:57:fa:e4:6f:
bd:a5:67:ae:fc:3e:c6:17:6b:8d:b6:07:1a:de:4f:7a:8b:95:
41:6c:56:21:5f:62:a1:31:bb:26:db:96:72:44:e8:de:6c:cc:
40:30:f3:15:e2:a4:69:85:bf:99:a8:06:82:3a:e7:49:58:65:
a5:9a:6f:11:bf:d4:27:24:85:57:3a:8b:56:83:37:6c:57:62:
b7:a0:88:5d:f6:33:e3:c6:ff:d2:7c:41:25:56:14:86:70:3c:
f7:b7:6c:8e:5b:0a:c1:c9:d5:6f:43:ec:0b:8e:e6:c9:1f:c8:
79:82:4f:36:85:cb:a8:8a:70:27:d1:5f:79:0d:b0:a5:3b:88:
df:cc:42:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:45 2023 by rpki-client on console-ams.rpki-client.org