Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/VVhYZohqL5-DPJjxB7JXvfhNe5M.roa
File: VVhYZohqL5-DPJjxB7JXvfhNe5M.roa (raw, json)
Hash identifier: HwbHHSQ3Y726pUZEhCE64cNexXB2+FequDQc+keOtUk=
Subject key identifier: 55:58:58:66:88:6A:2F:9F:83:3C:98:F1:07:B2:57:BD:F8:4D:7B:93
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 095B
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/VVhYZohqL5-DPJjxB7JXvfhNe5M.roa
Signing time: Tue 29 Sep 2020 10:01:44 +0000
ROA not before: Tue 29 Sep 2020 10:01:44 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 7482
IP address blocks: 203.79.232.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2395 (0x95b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:44 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=55585866886A2F9F833C98F107B257BDF84D7B93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:7e:4a:e8:52:64:9c:6a:90:ba:9d:b4:7a:c2:
94:03:1f:f1:46:d1:54:a9:ef:f6:c2:dc:53:a0:8a:
c5:f6:97:5f:09:d4:5b:8c:38:55:fe:4f:e1:c3:3f:
4d:96:9a:14:a1:77:e0:b5:4b:80:73:28:7c:2d:e5:
73:93:a8:2a:46:45:3a:3c:a2:18:3c:9d:8c:6a:7e:
a2:d1:32:0e:94:48:8e:68:c4:b5:af:56:6e:ba:1d:
8e:96:97:e5:5f:94:8a:53:a7:4c:46:dc:a7:63:49:
a4:c3:be:08:5c:07:75:d6:c4:ef:22:fb:52:88:e5:
cb:de:0b:48:c6:43:b4:c9:ea:31:ad:c9:4c:f5:ca:
fe:f6:e4:c9:d3:65:44:7d:d8:10:18:11:b7:f2:c0:
1d:86:9f:d0:a7:c7:26:b0:d4:9f:3c:26:6b:7c:bb:
48:73:65:2d:5c:ab:39:f6:4d:11:22:b4:0d:9a:3f:
3b:3b:16:09:67:f7:d7:7c:27:5c:4c:89:ed:a2:bb:
dc:4c:4d:ba:6e:3d:03:0c:4a:50:e4:ff:ce:d7:b2:
88:47:dd:64:d0:36:46:c0:e4:8f:4a:5d:c0:29:15:
84:8a:78:e8:bf:fd:fa:15:5e:e7:a1:9b:96:7d:88:
de:bb:24:da:0e:77:f0:94:87:d8:d6:99:6d:09:5c:
be:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:58:58:66:88:6A:2F:9F:83:3C:98:F1:07:B2:57:BD:F8:4D:7B:93
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/VVhYZohqL5-DPJjxB7JXvfhNe5M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.232.0/21
Signature Algorithm: sha256WithRSAEncryption
86:df:51:9d:e6:67:80:3e:a7:15:11:db:52:dc:95:c3:b7:a5:
b6:24:0b:a5:b1:b5:22:41:66:e2:9b:86:10:ad:e3:b8:a4:3d:
b6:8d:07:4f:a1:fc:f7:60:18:f6:59:d7:52:26:07:67:09:3a:
72:da:bc:2b:80:10:ec:f3:86:29:9f:a8:5c:d5:78:84:8e:62:
c2:a2:11:b7:50:7f:ff:73:65:f8:d8:07:3d:96:ce:55:bb:48:
ed:e1:ba:c0:ec:fa:14:6d:8d:31:78:22:1c:cf:f2:83:3b:16:
2c:8a:d2:88:ae:d2:c3:25:90:28:e8:5e:ac:15:88:1b:29:16:
7e:49:68:26:f8:7e:9c:bb:b0:0b:ac:10:06:a2:6a:1d:d0:40:
fd:a2:b7:4c:42:6e:3e:2f:24:69:c9:75:51:a1:cd:0b:ae:36:
43:58:97:64:c9:8b:30:6a:9c:4d:42:e4:5d:58:a7:f7:56:e6:
5d:8b:51:c9:58:77:3a:6e:ed:24:3b:36:e9:6f:df:fd:a9:e3:
36:d6:b9:12:11:78:41:3a:99:7d:10:9a:9d:9b:84:9b:ca:68:
87:bf:6e:8b:a1:92:c5:38:f8:1a:9b:35:1d:d3:3a:5c:12:48:
d4:8b:9d:46:f5:51:59:f3:83:e1:b0:2d:5f:e7:b7:5f:18:a2:
97:81:fd:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:45 2023 by rpki-client on console-ams.rpki-client.org