Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/dl0L9ciFgupaVGHAahJsuECsv3c.roa
File: dl0L9ciFgupaVGHAahJsuECsv3c.roa (raw, json)
Hash identifier: /i1CYnykjSsJlHdmpbOyTBJxmyPA6LFYaRbvyNGbki4=
Subject key identifier: 76:5D:0B:F5:C8:85:82:EA:5A:54:61:C0:6A:12:6C:B8:40:AC:BF:77
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 098C
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/dl0L9ciFgupaVGHAahJsuECsv3c.roa
Signing time: Tue 29 Sep 2020 10:01:59 +0000
ROA not before: Tue 29 Sep 2020 10:01:59 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 7482
IP address blocks: 203.79.128.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2444 (0x98c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:59 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=765D0BF5C88582EA5A5461C06A126CB840ACBF77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:86:25:b5:9c:fa:34:0f:b8:3f:66:90:7f:23:
44:11:08:f8:b8:35:86:e4:35:89:cf:78:d5:09:ee:
ec:ee:c6:4f:55:5e:98:92:62:88:89:07:f2:2f:45:
e8:cf:85:4f:01:39:57:f5:0b:44:37:7d:47:50:71:
29:d0:8d:19:d5:86:c2:13:b7:23:50:a2:85:ea:20:
e5:53:c0:50:0f:9f:f3:fd:0a:bc:b8:98:fe:c2:ca:
b8:77:12:dc:bb:71:92:0f:d8:c7:b8:42:be:1b:35:
3d:24:4d:87:a5:12:d1:df:bf:c4:19:d3:09:cf:df:
c5:b3:4a:6d:e1:28:59:06:92:24:54:6f:fe:14:86:
ee:c8:d3:1a:89:c5:61:e1:37:dd:7b:52:25:19:43:
a5:94:b2:bf:c5:86:6f:56:50:5e:5d:72:6a:5f:e4:
c0:d3:4f:ab:67:73:f0:0b:51:0b:4d:94:03:5d:eb:
12:94:9a:9b:cf:ce:ba:2a:5d:e8:b3:af:31:59:cf:
1a:22:3e:4c:ff:be:33:9a:5a:4d:43:57:1d:ef:a6:
62:30:ca:22:b8:ee:f1:50:e7:d5:96:7b:f6:32:a3:
1a:c0:f6:1d:22:58:a6:d9:1d:85:e0:2d:aa:9e:05:
33:55:76:ce:e1:c8:75:bc:d8:9b:19:b6:b0:fa:91:
6b:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:5D:0B:F5:C8:85:82:EA:5A:54:61:C0:6A:12:6C:B8:40:AC:BF:77
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/dl0L9ciFgupaVGHAahJsuECsv3c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.128.0/18
Signature Algorithm: sha256WithRSAEncryption
61:4f:db:ee:8f:35:88:18:b6:e1:c1:00:34:36:53:a5:0a:a4:
16:3f:48:d7:42:a7:e9:05:e0:ea:84:5b:cc:02:e2:43:d6:bf:
57:e8:f5:d0:b2:94:67:3f:77:dc:27:8e:bc:e1:cb:fd:35:02:
64:1d:66:8a:b0:0a:27:06:21:60:fa:4f:43:09:26:5b:5d:ea:
0c:12:02:90:65:77:92:82:c0:e6:88:9a:c8:59:7d:c3:9c:cd:
42:97:77:32:68:99:39:29:e7:5b:98:2a:05:b0:0e:7c:87:47:
92:67:db:4d:64:90:90:d9:3c:db:08:15:9a:85:15:7e:5d:a7:
0f:46:a4:e6:7f:8c:93:cf:02:ac:26:f9:c6:ac:9f:5c:98:ea:
bc:05:68:16:92:09:1a:67:c9:c8:09:db:98:c9:a6:17:73:f8:
cd:21:b5:51:29:87:92:36:15:26:d6:89:c1:8d:e2:0d:43:10:
76:28:14:1a:6a:6f:62:35:56:94:7d:43:99:fd:d4:05:ac:c5:
79:3c:0e:9c:10:93:46:92:e1:cd:59:1e:4a:82:93:f8:f7:a5:
39:0e:ee:90:2d:e1:92:d6:d9:bc:b2:5e:1b:34:a2:af:9d:73:
06:19:f6:7c:b2:db:9f:86:c4:85:a3:8b:cb:75:0b:6b:0c:a2:
62:66:09:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:55 2023 by rpki-client on console-fra.rpki-client.org