Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/cszHIQzuPKunKGUvfAvVxwQGs5c.roa
File: cszHIQzuPKunKGUvfAvVxwQGs5c.roa (raw, json)
Hash identifier: jy8OU4wrhedvkQElIAs1nAp/jW3PUuVfR1+irDlSm9g=
Subject key identifier: 72:CC:C7:21:0C:EE:3C:AB:A7:28:65:2F:7C:0B:D5:C7:04:06:B3:97
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 08DB
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/cszHIQzuPKunKGUvfAvVxwQGs5c.roa
Signing time: Tue 29 Sep 2020 10:01:09 +0000
ROA not before: Tue 29 Sep 2020 10:01:09 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 7482
IP address blocks: 203.79.216.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2267 (0x8db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:09 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=72CCC7210CEE3CABA728652F7C0BD5C70406B397
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:c3:ab:96:68:99:87:24:31:e0:c3:b9:fd:8b:
7c:4c:65:81:6e:b1:a6:77:24:55:6a:31:8d:3c:36:
19:2d:74:f2:5c:e5:02:b0:6d:96:b9:45:05:85:a5:
98:8c:22:20:ea:10:6c:af:d8:5a:70:c6:6f:65:b5:
80:c4:6d:18:d9:bf:a8:d2:36:3a:8e:f2:1c:e3:07:
68:70:dc:22:b1:ce:45:f5:fc:f6:fa:bf:80:42:96:
e6:90:7e:cc:0a:d9:4f:d9:86:47:c1:51:48:0b:3e:
22:47:38:3b:47:40:4a:69:af:27:46:0d:67:80:c9:
5c:f7:1f:31:73:34:60:e0:45:cc:41:d4:ba:a4:7e:
87:33:9e:91:7e:99:6e:2f:ec:a7:bb:82:4b:42:2d:
10:17:44:7c:a9:b2:02:33:78:d7:ed:41:1c:11:7c:
69:95:13:5c:9c:8e:90:5e:35:4e:cd:42:74:c8:7e:
31:40:f0:7a:62:6e:b2:60:75:99:73:40:22:51:e4:
72:55:d1:dd:a1:23:56:81:95:ef:6b:85:be:f3:a1:
12:59:78:5c:96:9e:32:fd:7f:f0:19:71:f7:8c:83:
f2:79:af:50:b0:1a:b1:9e:92:8f:fc:05:8b:ed:ed:
3e:e0:f2:86:b7:6d:a2:22:4c:70:27:a4:18:a2:56:
3d:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:CC:C7:21:0C:EE:3C:AB:A7:28:65:2F:7C:0B:D5:C7:04:06:B3:97
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/cszHIQzuPKunKGUvfAvVxwQGs5c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.216.0/22
Signature Algorithm: sha256WithRSAEncryption
46:27:c8:8b:df:b6:6c:d5:69:ea:fb:bc:84:3d:a7:97:e1:7a:
a2:2c:98:d0:70:0d:87:de:27:21:05:41:cc:73:30:fa:3c:80:
f8:f2:66:11:cc:04:14:92:33:5b:72:62:1a:6f:ea:86:7d:ed:
a5:1e:79:7a:79:f9:94:f3:7c:c5:78:56:f2:bf:ae:fd:9a:23:
a1:58:8c:b1:38:71:08:bb:97:9e:d6:25:65:bb:2a:f1:ef:6f:
fe:74:81:b6:76:c3:dd:c7:fd:69:4f:f8:21:f9:0f:ce:7e:0b:
d4:99:d9:8e:14:a7:a7:4d:b1:86:05:0d:f5:81:bb:fc:fd:c5:
af:81:db:af:3f:1d:7b:a5:07:35:3c:d2:2b:1a:e7:72:e3:65:
7e:62:f2:b1:8d:82:78:ce:a0:ff:2c:77:5d:80:41:65:d6:45:
a7:76:83:19:7b:0f:ad:62:2b:23:a6:30:49:d9:39:15:41:83:
79:6a:5e:4b:24:e5:30:40:c9:7b:8f:55:a4:a3:ed:57:48:ee:
14:a0:12:f4:5f:b2:62:1f:66:11:df:9c:f0:ad:0c:ca:3d:f3:
08:3c:4d:8d:1b:b7:16:3e:67:9f:14:51:cc:5f:7e:9a:4e:7e:
65:be:3a:53:2f:83:2c:0a:d5:a9:e4:b4:ce:73:14:57:82:48:
fa:b4:c3:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:55 2023 by rpki-client on console-fra.rpki-client.org