Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/WEqUBrSvRopsGFAaOlAZ0rrLX5g.roa
File: WEqUBrSvRopsGFAaOlAZ0rrLX5g.roa (raw, json)
Hash identifier: sLQwjDWtCkBCxx4/JTEV7Ip5BdDLm9yEMz+1/L08XPI=
Subject key identifier: 58:4A:94:06:B4:AF:46:8A:6C:18:50:1A:3A:50:19:D2:BA:CB:5F:98
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0968
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/WEqUBrSvRopsGFAaOlAZ0rrLX5g.roa
Signing time: Tue 29 Sep 2020 10:01:48 +0000
ROA not before: Tue 29 Sep 2020 10:01:48 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131142
IP address blocks: 223.22.252.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2408 (0x968)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:48 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=584A9406B4AF468A6C18501A3A5019D2BACB5F98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:13:1f:2f:63:d8:ed:e6:37:24:c4:95:ca:ce:
f6:30:99:19:fc:11:de:dc:84:72:32:3c:18:38:99:
06:02:b7:b2:fd:8c:ad:3c:ce:92:a9:c9:31:30:4e:
3f:12:7d:64:b1:26:0f:3b:48:5c:0c:e2:30:75:31:
dc:dc:df:f0:e3:39:27:78:ad:96:9b:90:68:3a:65:
23:05:8e:f1:53:9e:30:5c:52:42:b8:f2:4f:3e:d7:
33:00:93:7e:8f:e3:5b:50:e1:e1:73:e5:d3:40:ac:
d8:79:41:3d:d2:cc:84:df:76:15:a8:92:e7:81:87:
1b:e4:84:17:42:35:1e:94:7d:ff:67:69:b9:62:00:
43:bf:d7:7a:f8:4a:4f:1b:76:f3:52:33:91:0c:fd:
d0:28:08:35:72:40:b0:d3:e4:27:e5:94:40:ee:23:
6a:43:3b:46:88:c6:78:35:8f:3e:36:63:a5:6e:9f:
2e:b1:66:ae:97:7c:28:24:2f:7c:66:33:fc:f1:4a:
ab:a1:53:56:13:5c:f1:20:83:af:69:b9:b0:3e:30:
9a:3c:bc:d8:64:03:9e:44:db:04:19:34:86:5f:fb:
ef:86:06:f1:57:0c:8f:8f:15:17:aa:ff:94:41:aa:
cf:df:31:22:5c:05:79:ac:3c:85:4b:f8:78:9d:ee:
3c:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:4A:94:06:B4:AF:46:8A:6C:18:50:1A:3A:50:19:D2:BA:CB:5F:98
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/WEqUBrSvRopsGFAaOlAZ0rrLX5g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.22.252.0/22
Signature Algorithm: sha256WithRSAEncryption
7d:b6:38:d3:ff:f5:ab:99:83:2c:8a:07:a2:78:18:de:b9:44:
ad:06:78:84:78:ba:ed:d9:e7:2a:41:cd:7b:1d:f3:47:4a:85:
7e:fd:f2:29:14:71:5e:53:08:03:80:79:e2:e8:57:0d:95:08:
c3:12:de:8e:86:3d:b8:a2:90:e2:c3:c5:77:a1:9b:85:85:79:
65:2c:5e:85:67:f8:da:c2:c7:17:8a:4b:b1:7c:84:05:f8:de:
d4:d5:12:e3:4b:32:9f:f5:cc:03:9e:3e:53:df:7c:15:93:cc:
1b:5f:68:27:9f:e7:9d:a0:f9:92:83:59:bc:ad:d3:04:71:fd:
3e:25:49:35:0f:d6:a7:d2:f4:a3:56:aa:db:52:41:36:ce:f2:
4d:71:ea:32:30:78:9b:c3:17:45:8d:da:60:88:fa:4b:0c:26:
05:48:8e:b5:81:db:44:4a:4c:76:d2:74:ea:0f:78:e4:be:9b:
59:0e:cc:c1:9e:40:93:5d:c0:46:a6:32:2d:63:4b:e9:e9:fe:
25:4c:f3:ed:f5:aa:3e:88:0a:72:cf:d0:a6:63:03:30:00:eb:
68:88:30:f4:fb:c6:ac:45:36:3f:23:a4:4c:a8:c5:e1:2d:3e:
89:15:4d:81:6a:92:a4:4e:32:ce:57:3c:7d:52:3c:20:07:41:
12:fe:6c:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:55 2023 by rpki-client on console-fra.rpki-client.org