Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/c3U1rgZSlw916bTkbjfc7QM2kxQ.roa
File: c3U1rgZSlw916bTkbjfc7QM2kxQ.roa (raw, json)
Hash identifier: mA1iomQ4lz361Ac5K3glUeb6qIiHG13lKdsOKFHbaHg=
Subject key identifier: 73:75:35:AE:06:52:97:0F:75:E9:B4:E4:6E:37:DC:ED:03:36:93:14
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 091F
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/c3U1rgZSlw916bTkbjfc7QM2kxQ.roa
Signing time: Tue 29 Sep 2020 10:01:29 +0000
ROA not before: Tue 29 Sep 2020 10:01:29 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18419
IP address blocks: 124.218.0.0/19 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2335 (0x91f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:29 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=737535AE0652970F75E9B4E46E37DCED03369314
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:8f:06:26:52:01:ef:7d:44:f5:4f:7e:89:d4:
e1:f5:0a:6f:2d:79:17:e4:b9:24:25:55:05:9f:d3:
d5:a7:a9:26:70:11:a1:18:54:24:d2:f1:09:b4:a0:
72:1c:1b:10:3f:a4:55:de:ce:1c:92:e7:d4:33:27:
b5:35:ac:32:b8:64:cf:1c:b7:ed:4b:e3:31:04:07:
ad:ab:69:c9:02:0d:37:d4:f8:0d:ee:86:df:e6:1b:
c7:33:87:f3:16:a0:84:3e:6f:31:a5:30:cd:77:f7:
80:ff:8c:63:59:43:12:06:f8:d6:9d:6a:99:23:0c:
3d:1e:01:40:7c:35:43:b8:c0:81:d3:ef:3a:a7:7e:
75:ab:16:f5:2a:47:e6:2f:9b:ec:10:bb:ef:6c:a4:
56:33:f8:89:86:3a:d1:c8:67:64:cc:a0:76:72:d1:
b8:ce:da:89:db:25:3b:61:b6:7d:01:38:7c:9a:06:
55:62:a3:72:ca:43:92:62:d8:0a:a6:28:d6:49:ad:
41:2e:90:ff:ca:e1:a6:3c:1f:34:30:63:d8:2b:db:
7e:a5:4b:fc:d3:56:a8:9c:53:92:c6:5e:43:8e:cf:
1b:c3:32:45:c4:25:45:24:53:30:5a:d3:65:33:9e:
61:c0:3a:34:54:b1:6f:c1:ea:d8:24:38:00:d1:92:
45:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:75:35:AE:06:52:97:0F:75:E9:B4:E4:6E:37:DC:ED:03:36:93:14
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/c3U1rgZSlw916bTkbjfc7QM2kxQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.0.0/19
Signature Algorithm: sha256WithRSAEncryption
99:45:85:10:a9:22:cd:33:af:6a:0e:c4:34:35:3f:39:86:c2:
82:12:1a:59:d0:4f:07:87:57:01:c4:15:dd:05:a5:1e:7d:2e:
ee:92:f7:af:bb:02:3b:c7:2d:32:ea:dd:c5:3f:19:4d:cd:8e:
f0:8b:59:85:a7:5d:9b:44:8e:ce:5c:6e:07:69:a6:ff:7c:13:
1d:42:4c:8e:1e:17:d2:17:c1:0f:32:27:0f:b5:28:9e:b5:e7:
2f:5a:19:7a:5c:b9:a4:02:ee:cd:ba:28:28:f6:2b:56:62:2f:
fa:30:ba:44:15:f3:ec:56:6d:41:0d:75:31:3c:39:f4:1d:96:
e7:f7:31:53:34:ad:44:7d:a1:3c:34:29:ff:eb:09:25:62:b2:
57:9e:7b:cd:a9:32:d8:4e:5c:1f:51:7e:cc:7e:9e:13:c3:27:
e7:c0:96:5c:0f:e6:af:9d:66:d9:f9:ed:5f:98:01:16:6a:0e:
8a:27:c3:8a:1c:7b:03:54:de:e0:66:4e:0f:f9:11:1b:e4:15:
55:1e:3e:e9:d8:63:6b:97:03:97:d7:da:98:6b:0a:c7:4c:6c:
36:5a:b3:d5:52:aa:1e:2a:2e:f4:9b:90:23:c4:da:b0:5e:47:
54:6f:fb:d8:9e:a3:1a:31:38:06:16:66:ab:30:93:e8:a1:fc:
1b:1d:57:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:55 2023 by rpki-client on console-fra.rpki-client.org