Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/UliZFnTbGa-yNVRzctKgMxDG8I0.roa
File: UliZFnTbGa-yNVRzctKgMxDG8I0.roa (raw, json)
Hash identifier: IorTW+ss6vmYzdr1i4YGOihj4r80mplBjuPVYPJ63P8=
Subject key identifier: 52:58:99:16:74:DB:19:AF:B2:35:54:73:72:D2:A0:33:10:C6:F0:8D
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0BCB
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/UliZFnTbGa-yNVRzctKgMxDG8I0.roa
Signing time: Sun 07 Feb 2021 11:33:54 +0000
ROA not before: Sun 07 Feb 2021 11:33:54 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 7482
IP address blocks: 210.200.0.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3019 (0xbcb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:33:54 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5258991674DB19AFB235547372D2A03310C6F08D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:4d:e2:f0:c6:01:59:d3:ed:f3:01:78:69:ac:
bf:27:b4:3c:8f:6f:83:d1:af:24:db:67:c1:2f:37:
be:e4:f7:95:06:44:a0:03:17:60:16:ed:3e:c2:11:
89:04:b5:b1:17:73:52:a4:ba:f4:2c:e8:d7:19:47:
32:99:14:a9:97:87:73:7c:55:f4:31:19:4d:84:f7:
ff:75:22:c5:d0:06:e7:5a:33:c0:2b:15:4b:6c:a0:
19:8c:44:ac:ed:5e:48:2a:c2:28:f7:cf:5a:d2:ac:
fb:d8:b7:c1:5d:70:bc:0a:fb:fc:d8:86:89:a1:ef:
e1:e6:55:d2:1d:68:62:21:5c:3f:53:44:9a:9a:a9:
6a:71:f0:3f:24:1e:34:5c:a9:2c:c1:c8:77:fa:4e:
06:71:c3:18:18:9c:99:0e:40:5e:b8:4b:1c:09:fe:
08:29:c1:4e:8b:51:ab:55:e1:a4:69:ce:46:c7:55:
33:22:d6:bc:83:18:99:4a:49:5d:1a:95:c9:c3:77:
f4:48:07:75:32:18:79:2a:9b:5f:f9:fa:95:bf:4c:
cc:a9:ee:64:25:2b:b4:c4:07:3f:81:17:d4:67:19:
76:dd:3f:79:a9:d0:7a:8d:e4:8c:88:a1:b3:6b:29:
e0:30:44:3a:2a:7d:c8:55:04:f9:94:cb:3d:34:f8:
4b:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:58:99:16:74:DB:19:AF:B2:35:54:73:72:D2:A0:33:10:C6:F0:8D
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/UliZFnTbGa-yNVRzctKgMxDG8I0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.0.0/18
Signature Algorithm: sha256WithRSAEncryption
23:2a:e0:73:4f:9e:94:e7:63:21:af:36:b6:98:ad:08:a4:e7:
be:42:3c:e7:d8:27:2f:ff:ea:d7:8e:56:f3:cd:2f:4d:54:a6:
d9:38:41:57:85:ed:5c:fb:28:61:dd:7c:3a:36:e3:b0:99:0d:
8b:02:7a:13:a3:90:cd:1b:7d:e8:47:c1:d9:a7:05:01:78:8c:
d6:80:8f:56:c5:47:3a:95:ac:85:d9:30:1f:6a:bb:18:ce:c1:
79:55:98:32:2e:da:6c:08:6d:59:c7:02:b6:bf:dc:39:b5:a9:
e5:0b:dd:f5:45:66:82:01:47:17:87:97:c7:17:71:9b:ac:a5:
3e:64:5b:76:5e:5b:73:2e:bc:48:f7:1a:b4:aa:2b:21:e2:4b:
c4:70:3f:9b:73:2c:9a:e6:f6:ef:0a:d2:1f:a2:11:61:4a:98:
d3:2e:38:fd:68:21:44:15:61:83:bd:89:37:57:41:bb:e2:1b:
9f:5a:91:76:30:88:0b:a7:d7:3d:9d:c7:3d:e3:55:6c:1e:09:
be:96:06:d4:92:a0:1e:d9:65:8c:ed:48:b7:be:4c:ec:36:e9:
29:e2:45:68:73:e8:8b:e8:ff:b9:ac:4e:6a:6d:b4:ab:10:7b:
eb:f6:83:37:1e:3e:05:f4:ab:1f:58:e0:5a:5a:57:2b:b1:1d:
e6:3e:4f:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:55 2023 by rpki-client on console-fra.rpki-client.org