Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/WXMzTUrebWtL7OQmF-ccuJPICEg.roa
File: WXMzTUrebWtL7OQmF-ccuJPICEg.roa (raw, json)
Hash identifier: QzUzEYsNz5WzSL9zifVjH+I/S2/wPl6QRAHKMZ73LMA=
Subject key identifier: 59:73:33:4D:4A:DE:6D:6B:4B:EC:E4:26:17:E7:1C:B8:93:C8:08:48
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0E22
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/WXMzTUrebWtL7OQmF-ccuJPICEg.roa
Signing time: Wed 29 Sep 2021 02:40:00 +0000
ROA not before: Wed 29 Sep 2021 02:40:00 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 7482
IP address blocks: 210.203.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3618 (0xe22)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:40:00 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=5973334D4ADE6D6B4BECE42617E71CB893C80848
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:f6:fb:11:c4:26:c3:10:34:ea:4b:26:64:b9:
7f:71:00:76:9e:d4:b2:d1:d3:1c:35:a0:fa:55:89:
e2:2d:af:65:f4:27:72:05:0d:f8:95:84:08:3c:5d:
ed:44:6d:02:a5:0a:26:2e:02:61:18:1f:f7:b4:ca:
78:6f:6e:e4:10:1b:12:a1:23:cb:fb:73:42:42:2d:
96:39:f5:53:1c:63:ae:c9:65:14:ce:e3:b8:bb:c3:
67:8b:5b:e6:66:7f:80:97:ae:8c:7b:6d:5b:ff:e2:
69:68:bc:f6:be:d7:54:6f:48:42:9c:34:b4:54:db:
bb:61:bf:2e:d6:67:4f:c6:03:c8:26:7a:95:6b:a8:
7a:03:f5:85:43:33:1f:27:06:4f:dd:a0:7b:f2:16:
32:52:79:86:90:22:ea:d5:eb:6b:9b:5c:77:e5:a5:
0d:f9:98:6b:29:40:a2:60:38:d3:af:19:47:58:4b:
51:ea:d7:81:c0:4a:03:e5:db:78:80:d2:89:63:de:
c1:ba:85:85:6a:cc:c9:e3:8e:da:be:80:6c:1b:0d:
29:24:2d:05:be:4d:59:c0:14:5f:d9:ce:e4:c7:8a:
b9:33:53:e8:55:cf:ea:1d:b8:04:ba:f0:07:d7:9b:
4d:64:ef:4d:bd:1a:91:64:e4:b0:d4:4d:3b:67:bd:
b9:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:73:33:4D:4A:DE:6D:6B:4B:EC:E4:26:17:E7:1C:B8:93:C8:08:48
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/WXMzTUrebWtL7OQmF-ccuJPICEg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.203.0.0/17
Signature Algorithm: sha256WithRSAEncryption
be:d1:33:9b:0c:6a:3b:ea:b4:f6:48:c2:f3:df:84:34:c0:04:
a1:61:54:a1:64:55:bc:84:21:17:f1:9b:c4:0f:57:8b:ac:a4:
09:79:73:0c:74:4b:f3:26:e5:82:31:27:a2:da:b3:82:a8:2e:
bf:45:7e:31:f8:e3:a6:e7:4c:cf:b7:34:20:36:c8:2a:82:3f:
ee:be:dc:72:09:3c:b7:67:4e:27:e3:13:56:a2:07:de:3f:87:
ed:c9:7f:00:12:bb:c7:d5:d0:53:c9:15:51:a6:58:ac:43:0f:
15:4a:ab:e4:33:66:fd:48:6b:ac:fa:1b:dd:4f:8d:42:fb:0e:
c7:05:93:50:8c:0b:01:5d:df:6a:07:2a:0c:49:74:79:5f:43:
84:10:a1:0f:c0:0c:3e:a7:44:2c:63:22:df:44:6f:4b:da:77:
0d:9a:8d:14:d2:71:91:a6:45:f4:a3:57:5b:1a:98:96:35:22:
d2:8c:b0:74:9d:61:44:fd:4a:ee:41:48:5a:8d:76:82:d4:e8:
38:81:e5:6d:ac:fe:35:48:4f:1d:4c:cc:5b:17:30:ec:3a:29:
41:a0:09:cb:e8:74:6e:b0:3c:3d:87:2d:a6:e8:e7:44:36:a1:
4f:c0:89:30:12:ca:9b:30:43:42:f1:14:a6:82:ac:3a:44:3b:
cf:47:58:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:55 2023 by rpki-client on console-fra.rpki-client.org