Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/ckxqc-nnamrap15bprX8Zz9NneU.roa
File: ckxqc-nnamrap15bprX8Zz9NneU.roa (raw, json)
Hash identifier: s3iabSmM/WuAC7KaqmwgoMGRJq3A8QKOjIwHpep4uzo=
Subject key identifier: 72:4C:6A:73:E9:E7:6A:6A:DA:A7:5E:5B:A6:B5:FC:67:3F:4D:9D:E5
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0940
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/ckxqc-nnamrap15bprX8Zz9NneU.roa
Signing time: Tue 29 Sep 2020 10:01:38 +0000
ROA not before: Tue 29 Sep 2020 10:01:38 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 7482
IP address blocks: 210.201.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2368 (0x940)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:38 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=724C6A73E9E76A6ADAA75E5BA6B5FC673F4D9DE5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:86:19:af:10:2e:17:bb:1c:08:1a:4f:19:62:
2f:16:00:88:61:ee:34:c9:01:20:7e:5a:60:9c:8a:
18:1d:6f:79:16:e2:3b:c5:8d:f5:f0:73:af:75:63:
e4:e2:f6:d9:6e:1a:f2:7f:57:47:98:3f:73:ee:cd:
29:c2:db:69:7c:5e:fe:8a:cb:94:28:0e:57:47:17:
9a:bb:42:df:18:ab:38:dc:14:94:ba:22:4e:e7:79:
f5:67:2a:84:f5:13:ee:62:63:46:1e:b1:30:55:5b:
ec:9c:bd:df:d9:b5:18:07:8a:96:e6:e4:bc:f4:eb:
10:2d:fe:5b:50:2d:51:65:69:4a:c2:9a:7d:d9:98:
61:c1:c6:3d:8b:8e:99:3f:77:b1:58:be:fe:ce:d5:
c5:4c:1f:8c:e2:0f:3a:18:9b:cf:66:7b:b5:02:ee:
d0:13:4f:1b:5a:4c:f8:8a:d5:b3:e1:00:97:f5:93:
f7:a1:fd:41:a1:f4:c1:78:68:9e:64:d1:23:05:29:
d3:83:df:9a:28:75:a3:f8:aa:6a:bc:d4:2b:34:df:
45:b8:1b:86:62:84:c1:20:ec:b0:f8:b6:32:71:33:
3d:7c:b4:0d:81:57:69:35:bc:cd:b1:81:ed:9e:69:
e5:bb:19:eb:c3:8b:d7:63:d2:7a:9a:0d:1f:4b:36:
6b:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:4C:6A:73:E9:E7:6A:6A:DA:A7:5E:5B:A6:B5:FC:67:3F:4D:9D:E5
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/ckxqc-nnamrap15bprX8Zz9NneU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.201.0.0/16
Signature Algorithm: sha256WithRSAEncryption
13:8f:a9:c4:5b:42:c7:cf:d3:4e:75:05:b8:3c:f6:3d:5a:8c:
04:bb:0b:61:f9:5e:6f:b0:81:96:d0:0a:9e:7f:91:63:56:bb:
f0:46:36:ae:4b:6b:7e:e9:8f:ba:45:9b:ba:e4:76:66:f4:ae:
b1:5c:bc:cd:85:ec:e4:19:50:5c:92:cb:2a:a9:31:63:43:90:
a8:22:86:bb:ef:84:ee:9a:91:58:0a:32:18:e6:80:36:60:d2:
c9:73:33:16:44:77:58:46:53:f5:39:38:35:42:5a:48:84:8c:
ac:60:12:c4:49:29:87:95:47:f1:d6:80:15:18:55:a0:fe:9e:
c0:ab:62:95:7a:63:a5:fb:8f:b2:bd:5a:1d:81:c0:7a:eb:65:
c1:60:d3:a5:e0:33:1d:10:43:a6:a5:68:58:be:62:e8:25:99:
8c:f1:5d:de:b6:53:78:c0:f8:dc:39:fa:ed:8f:17:9b:27:b1:
27:a3:fc:16:f3:1b:82:14:b1:ae:38:6b:1b:65:2c:70:a5:95:
a1:77:a0:e4:d2:6a:18:76:5b:18:2d:33:c9:12:20:da:0e:54:
d8:c2:b2:11:21:d8:fd:71:e5:ec:fd:e7:f3:1e:7e:4a:14:64:
18:85:c2:d7:5b:db:1b:c8:a4:75:72:15:42:ea:ff:4d:b1:f9:
27:d5:0c:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:55 2023 by rpki-client on console-fra.rpki-client.org