Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/UecpDbOo-msIgrdvBEPsS3uD8eE.roa
File: UecpDbOo-msIgrdvBEPsS3uD8eE.roa (raw, json)
Hash identifier: 9ze4tPgVW/7KdhxgsUIO5bIYrbjt40D9le+KsztFrV0=
Subject key identifier: 51:E7:29:0D:B3:A8:FA:6B:08:82:B7:6F:04:43:EC:4B:7B:83:F1:E1
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0C8B
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/UecpDbOo-msIgrdvBEPsS3uD8eE.roa
Signing time: Sun 07 Feb 2021 11:40:01 +0000
ROA not before: Sun 07 Feb 2021 11:40:01 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131627
IP address blocks: 219.91.0.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3211 (0xc8b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:40:01 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=51E7290DB3A8FA6B0882B76F0443EC4B7B83F1E1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:f1:04:27:71:4b:bb:6c:e3:f6:ed:c5:89:34:
49:06:11:89:a5:0b:1d:80:11:8b:92:fd:5a:c1:26:
4b:8c:56:5d:35:4a:d2:70:09:6f:c7:53:db:07:f6:
aa:3a:d1:b6:3a:de:02:65:15:b8:39:fe:01:df:4d:
1c:97:8b:e4:95:5c:9e:c0:2e:43:98:4c:77:04:b7:
66:ea:c8:05:cb:17:55:a9:42:25:fd:2d:6e:6f:49:
1a:1b:bc:ad:63:77:b1:b1:af:b7:ad:55:60:8d:30:
00:13:66:e9:14:90:7b:fc:cd:7e:4e:c1:8e:72:99:
b6:f3:b1:a5:2f:e9:8b:2e:8d:08:ea:4c:00:d6:91:
74:2c:ac:66:8f:24:43:d1:a8:33:c5:d5:03:be:94:
d0:b8:ad:52:b5:5c:d6:ed:1c:5a:66:3a:be:ef:0f:
cd:2e:e2:21:12:a9:83:58:11:a4:61:44:65:88:6e:
0a:97:60:1b:c5:9d:27:c1:ea:ca:ed:b1:84:64:4f:
d8:26:e5:79:d6:01:78:1c:c1:c3:12:e9:c2:61:10:
c5:e4:e3:c9:52:a2:71:e2:7a:d3:2f:8e:0f:a5:64:
7b:f7:71:31:a1:43:ba:68:0a:eb:55:98:5d:be:6b:
92:e8:f5:79:93:0d:02:b6:5a:4a:5e:27:0f:a0:34:
6d:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:E7:29:0D:B3:A8:FA:6B:08:82:B7:6F:04:43:EC:4B:7B:83:F1:E1
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/UecpDbOo-msIgrdvBEPsS3uD8eE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
219.91.0.0/18
Signature Algorithm: sha256WithRSAEncryption
83:97:9d:45:d4:75:72:c2:85:eb:0d:f1:29:15:ff:8e:f1:e7:
25:35:51:81:66:45:ad:af:bb:c7:35:7b:70:0a:29:aa:8c:d0:
eb:f9:ed:e1:4f:db:c0:ca:b4:56:90:2c:3e:f0:64:61:6c:10:
a5:c5:22:50:4f:4f:23:a0:f1:f3:40:2f:89:b2:8f:d8:e2:eb:
92:08:8a:66:38:0c:26:08:7a:2b:7c:2d:c0:d1:b6:6d:65:c8:
5d:32:7a:fb:13:f2:02:73:f8:2b:e8:59:05:c1:ab:70:18:5b:
33:e4:0b:95:be:86:ac:bf:e6:13:15:66:36:72:04:2a:06:57:
3d:e3:73:3a:a2:7a:38:f4:2f:08:6c:22:aa:3c:aa:af:6d:da:
98:88:95:af:33:10:c6:b1:4f:1a:ca:f8:8b:a7:4b:a6:1c:60:
f5:85:e1:8b:d6:fb:60:db:45:6f:e0:9f:12:c6:df:05:0a:32:
fc:a5:35:43:78:27:47:eb:a7:a1:e8:67:ad:97:e0:3e:48:73:
4b:80:73:cf:d1:12:c7:f2:b3:6d:20:4b:a5:19:72:e2:af:5a:
67:29:63:3e:ba:b4:f4:5d:77:da:02:16:82:59:00:de:e3:33:
e0:59:7f:a7:c8:30:6b:c8:58:f0:7e:a8:29:24:8b:20:7d:99:
8c:4e:bd:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:45 2023 by rpki-client on console-ams.rpki-client.org