Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/dnl0KKGYyrVv_MgFuKN_glQwJOg.roa
File: dnl0KKGYyrVv_MgFuKN_glQwJOg.roa (raw, json)
Hash identifier: UDV2wG9qeXHxJO7wihu9IiL3uDAKWrPTYxc6g/y8JNw=
Subject key identifier: 76:79:74:28:A1:98:CA:B5:6F:FC:C8:05:B8:A3:7F:82:54:30:24:E8
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0945
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/dnl0KKGYyrVv_MgFuKN_glQwJOg.roa
Signing time: Tue 29 Sep 2020 10:01:39 +0000
ROA not before: Tue 29 Sep 2020 10:01:39 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131142
IP address blocks: 223.22.0.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2373 (0x945)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:39 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=76797428A198CAB56FFCC805B8A37F82543024E8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:de:e8:5e:b0:8c:1b:b8:ce:b0:c4:99:a8:3e:
0b:fa:50:f6:23:1b:71:79:0b:e7:53:21:cf:a7:97:
ad:5c:f9:42:e2:f7:33:58:b2:23:eb:6a:40:22:9a:
be:f6:87:0a:41:d8:af:88:aa:c8:dc:80:5d:be:3b:
e4:05:29:5d:1a:22:ea:12:59:f2:e0:1f:f9:f7:1d:
5e:96:cf:aa:35:a0:a6:6c:4e:55:04:95:9a:fe:b9:
82:96:f9:68:f6:fe:ae:af:36:9f:91:bb:fa:16:33:
5e:8d:a9:75:13:4d:df:11:5c:a7:b4:f0:5a:c1:3c:
8c:82:a9:a8:22:7c:e3:cb:32:7b:f1:7c:1e:8a:c1:
54:67:1b:28:a9:f7:b5:c6:1b:ea:c8:54:aa:87:83:
c4:61:61:1b:3c:35:51:41:65:23:0a:02:0c:ba:dd:
b6:12:ee:f4:04:63:72:b0:12:c6:a1:a2:37:91:ad:
83:92:b5:2b:8d:fc:c8:64:e9:08:fa:a9:3e:f2:9f:
f8:8c:c1:d2:2b:ec:a3:dd:46:8a:38:8c:67:79:1e:
2c:9e:85:00:90:f1:90:00:b7:99:96:c2:e7:80:d1:
58:b4:12:3e:06:b0:b9:96:22:3b:05:c3:3b:fc:ee:
7a:fb:90:98:b5:de:dc:73:5b:b3:b2:7c:e9:a9:da:
65:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:79:74:28:A1:98:CA:B5:6F:FC:C8:05:B8:A3:7F:82:54:30:24:E8
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/dnl0KKGYyrVv_MgFuKN_glQwJOg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.22.0.0/20
Signature Algorithm: sha256WithRSAEncryption
84:00:7d:ec:d5:46:a5:e7:73:e9:c8:8b:82:92:0a:de:a8:8c:
3b:c7:97:24:ad:bd:6c:21:86:68:3f:ac:a3:7d:38:3e:49:59:
61:4c:00:00:8a:6e:e5:db:66:33:c6:0c:39:7a:45:b9:6c:78:
12:13:3c:91:b5:c6:0f:66:93:2c:3d:87:8e:a2:01:33:a5:6c:
8c:f9:34:44:23:06:fb:85:23:d2:20:b6:47:3e:ce:1b:89:46:
fd:eb:e8:cc:9b:2f:42:29:f3:ae:f4:f3:b7:6f:d5:bc:b4:ea:
90:96:24:1a:dd:d0:8b:b9:9b:40:3b:81:6a:d9:27:ae:33:28:
fa:29:78:d8:3d:41:7c:7d:8e:e4:6a:0e:b3:45:89:1b:63:d7:
f4:ad:fc:47:31:c5:7e:7c:1f:23:2c:e7:3c:f0:81:fd:32:70:
0e:0b:fc:c9:d1:d4:e8:16:da:dd:9e:ce:a4:44:85:05:29:d9:
56:61:18:81:35:57:89:8f:95:7b:a9:e7:12:f0:c6:7e:71:bf:
c2:fb:cb:da:0e:bc:bf:bf:13:42:b9:ff:ed:0e:c0:a3:56:a3:
bc:eb:66:5d:94:70:7e:61:2a:b4:33:34:85:90:6e:73:38:44:
31:14:40:5e:83:9a:54:b3:94:7a:43:15:38:d4:92:11:c2:0c:
6e:ee:0e:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:45 2023 by rpki-client on console-ams.rpki-client.org