Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/d8r2gxf2uC2277XNzBeb9tdzmnE.roa
File: d8r2gxf2uC2277XNzBeb9tdzmnE.roa (raw, json)
Hash identifier: dV9qnNtf0UyzNMvR3HHnxHJfbqKHEsicAN9vLeHtmjA=
Subject key identifier: 77:CA:F6:83:17:F6:B8:2D:B6:EF:B5:CD:CC:17:9B:F6:D7:73:9A:71
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0BC5
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/d8r2gxf2uC2277XNzBeb9tdzmnE.roa
Signing time: Sun 07 Feb 2021 11:33:50 +0000
ROA not before: Sun 07 Feb 2021 11:33:50 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 7482
IP address blocks: 203.79.240.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3013 (0xbc5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:33:50 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=77CAF68317F6B82DB6EFB5CDCC179BF6D7739A71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:22:cf:d3:6d:40:2f:75:e2:b1:ef:92:7c:cd:
ee:81:92:74:6c:67:a1:2f:96:bf:c3:79:6f:1c:fe:
f0:d3:02:10:de:31:e3:04:5e:c8:ac:77:a3:56:ec:
48:30:67:3c:bf:0b:0a:20:e5:dc:64:b8:65:e7:cf:
f9:a5:57:a7:e8:b8:af:e8:2b:a1:fd:ae:04:0c:cf:
18:9e:46:9d:d0:ad:b7:2c:dc:41:b3:ce:6b:f5:b3:
42:a5:a8:03:6b:d2:aa:18:39:8a:3b:a3:73:77:4d:
cb:43:ee:7d:a9:1a:60:c5:12:63:f9:c2:6f:34:49:
91:df:e0:61:76:11:79:b2:49:d2:32:41:d3:07:25:
fe:a8:02:7b:04:5b:62:d0:18:b6:23:9e:b0:de:35:
95:79:35:ca:1d:99:ea:03:dd:ec:73:68:5f:35:56:
8d:87:2b:83:6e:8f:cf:43:35:76:bf:5e:fe:13:66:
8f:45:7c:77:8d:33:73:3c:01:23:6a:bd:e1:6a:4b:
9f:1d:a9:5a:59:51:ad:94:3a:c7:c8:c8:a0:92:93:
3a:9a:87:34:ac:93:7c:66:16:0c:02:30:c9:d7:70:
ef:fa:dc:45:49:a4:a2:1e:13:5d:d6:1f:03:47:ba:
b2:10:a6:fe:6b:7b:7d:6f:06:c4:34:b3:ac:43:d6:
0d:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:CA:F6:83:17:F6:B8:2D:B6:EF:B5:CD:CC:17:9B:F6:D7:73:9A:71
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/d8r2gxf2uC2277XNzBeb9tdzmnE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.240.0/21
Signature Algorithm: sha256WithRSAEncryption
5a:73:40:91:bb:ca:57:d4:e3:aa:8a:fe:5e:b3:6c:c8:82:9e:
3b:d9:6d:3c:ba:e0:12:9d:8e:eb:cc:32:de:54:01:c6:ac:36:
fb:d8:c7:d3:85:f0:97:1d:17:57:d2:ce:6a:36:31:44:b9:33:
e3:74:18:13:14:fc:b2:8c:9d:0e:1c:75:57:c0:ef:a4:34:a1:
71:ab:a1:0b:1f:25:82:c2:78:4c:a1:ed:21:b3:63:26:20:eb:
b4:68:df:e9:28:59:28:4c:0a:7a:f3:22:ed:ca:fd:6f:05:c2:
eb:e1:8d:d3:24:27:ec:25:ce:0f:96:2c:80:47:31:ff:11:c4:
d2:00:b7:2b:27:44:f2:27:fd:98:95:5d:18:be:44:af:48:76:
bb:2c:a9:42:ac:e5:c3:ed:4b:1a:fe:2f:0e:e6:11:bb:a4:a3:
8e:24:c2:19:c6:c9:d1:32:9c:5c:68:1d:47:af:69:69:87:6c:
41:cb:92:1a:b4:3a:8c:9a:50:b3:f4:8f:af:8d:73:13:21:3b:
26:33:e7:a2:66:5f:d7:c9:11:d6:3e:62:ee:4b:16:6d:34:bb:
89:29:0c:09:44:1c:64:5d:68:7f:48:d1:87:1b:7e:8c:20:a5:
57:08:0a:09:7c:29:a5:7e:a6:f8:73:73:af:2b:8f:a7:8a:fb:
1c:d0:9e:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:45 2023 by rpki-client on console-ams.rpki-client.org