Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/ZUjiWsABUZHtfALcLOejcGf4Mew.roa
File: ZUjiWsABUZHtfALcLOejcGf4Mew.roa (raw, json)
Hash identifier: fZlsAvYxUsoA9uKRmygy/gC1fexW5xD1torcMS0EpVw=
Subject key identifier: 65:48:E2:5A:C0:01:51:91:ED:7C:02:DC:2C:E7:A3:70:67:F8:31:EC
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 08FB
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/ZUjiWsABUZHtfALcLOejcGf4Mew.roa
Signing time: Tue 29 Sep 2020 10:01:18 +0000
ROA not before: Tue 29 Sep 2020 10:01:18 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17709
IP address blocks: 210.58.104.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2299 (0x8fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:18 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=6548E25AC0015191ED7C02DC2CE7A37067F831EC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:a5:fb:2e:01:58:04:ec:a8:3b:67:48:73:37:
7c:a3:cc:a4:2b:8a:61:fd:b1:f1:ea:c4:e8:12:c9:
e0:bd:23:70:bb:ec:1d:5d:b4:00:5b:ae:c1:42:3b:
10:68:04:9a:0f:21:40:ad:c6:60:29:6a:6f:c9:18:
e5:b4:ec:86:af:21:cc:cf:b8:2c:1f:cd:ee:00:a0:
77:64:1b:b8:d0:21:60:d1:6e:f2:a6:5d:4c:99:c4:
40:e4:4b:ee:c5:65:0d:54:0f:f4:d6:e3:45:49:d5:
65:e5:f1:26:a8:77:13:e1:c1:92:b1:dd:55:b9:47:
1a:a8:02:5d:b7:8d:14:28:e7:a5:84:05:31:a4:d8:
65:c7:a4:4a:0e:92:f9:60:11:cd:34:b2:95:c2:1a:
88:d6:ea:69:a2:23:b6:06:4a:c3:db:f6:d7:4a:5e:
72:47:9e:a3:65:e1:25:b2:9a:d8:b6:df:df:d6:84:
4a:86:1f:89:e9:31:99:04:d8:09:7f:33:8e:6a:5d:
cd:0f:75:9e:46:02:66:6a:db:d8:52:89:8f:9c:fa:
a4:02:61:57:28:74:6e:a7:0c:9e:1c:03:ac:54:70:
b3:b8:9f:f2:2a:0d:b3:5e:9a:78:67:60:62:d3:b7:
dc:80:c2:86:60:2a:c8:c4:06:a9:2e:17:8f:5f:9e:
f3:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:48:E2:5A:C0:01:51:91:ED:7C:02:DC:2C:E7:A3:70:67:F8:31:EC
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/ZUjiWsABUZHtfALcLOejcGf4Mew.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.58.104.0/22
Signature Algorithm: sha256WithRSAEncryption
96:4f:60:dc:32:16:ba:a1:36:2d:47:1c:24:39:36:47:a5:ab:
28:d6:ad:d1:f2:ec:a6:bb:ba:87:75:3e:5e:5e:14:37:c7:b0:
15:3d:ae:0c:c7:fc:8e:23:a4:c5:a0:a1:51:53:51:21:62:7a:
21:e8:ac:7f:cd:ec:f6:95:87:d3:ae:60:a6:83:be:f1:79:d2:
a9:18:38:11:18:04:5f:75:f1:42:5c:26:cb:7e:72:09:f8:e6:
da:72:ed:d8:db:5b:fd:ec:09:f5:1d:e2:fe:3b:08:62:00:bc:
42:64:2a:c8:6a:d0:fa:66:d0:a3:a7:5a:b8:e6:9e:28:f6:6d:
e8:9e:ae:7e:ef:f0:3b:b2:5a:3c:8d:df:a1:d3:90:cc:42:3f:
e8:d5:a4:07:6b:e9:ba:dc:4f:34:75:8f:c8:e8:b0:ef:81:04:
c2:12:30:6a:71:8a:10:00:55:8e:72:74:09:59:b7:4c:07:16:
6a:cb:ad:b5:80:c1:a8:1e:2f:0a:6a:24:df:10:1f:fc:a0:09:
a8:06:15:a2:78:5d:6b:6f:22:84:bc:a6:79:f1:5b:96:fe:c8:
94:8b:c8:36:96:44:39:a3:86:f8:54:1f:16:ac:44:8b:5f:3f:
2e:ef:be:d9:7e:08:2d:71:49:97:d5:9f:37:46:ba:03:fb:f7:
f2:e0:6c:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:55 2023 by rpki-client on console-fra.rpki-client.org