Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/e-97lalzTBGmCSfYQAevkYAjtJs.roa
File: e-97lalzTBGmCSfYQAevkYAjtJs.roa (raw, json)
Hash identifier: njtTn8DXJUJapOztIH86JTSV7dly7lCayXUhLJN8QkI=
Subject key identifier: 7B:EF:7B:95:A9:73:4C:11:A6:09:27:D8:40:07:AF:91:80:23:B4:9B
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 08F2
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/e-97lalzTBGmCSfYQAevkYAjtJs.roa
Signing time: Tue 29 Sep 2020 10:01:16 +0000
ROA not before: Tue 29 Sep 2020 10:01:16 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 7482
IP address blocks: 210.202.96.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2290 (0x8f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:16 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=7BEF7B95A9734C11A60927D84007AF918023B49B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:73:36:32:9b:b0:7d:57:98:e8:a4:42:82:65:
41:3e:2a:2b:9e:10:81:1f:32:52:33:d2:8b:a5:ec:
6c:f0:1a:13:6c:a5:91:51:85:78:4b:5a:d3:ff:65:
c5:c5:e8:9b:bd:1f:7b:f1:d0:b7:42:f7:a5:39:76:
c5:68:fc:83:96:78:6b:1d:23:b8:44:57:b5:20:78:
3c:cc:e3:9b:ad:64:b4:57:cf:bd:fe:02:0d:66:3d:
63:f4:c1:da:68:20:5f:3d:2d:9a:cc:f2:02:47:bc:
4b:7b:95:e6:73:8d:37:33:09:b2:34:84:2b:ac:b0:
97:59:60:08:47:a6:27:45:cc:f0:d3:6f:31:b0:25:
75:94:fe:94:93:44:ec:b3:c2:5f:83:71:39:79:a8:
ef:0d:5b:08:7f:67:e5:b0:37:24:17:ba:74:7f:f2:
67:92:ef:11:02:47:52:73:77:6b:2b:a3:ba:0d:8b:
a5:4b:39:3f:52:4d:df:fb:04:f1:a8:d6:f7:00:78:
f8:37:11:50:aa:7d:b4:3b:5e:51:32:cb:dc:80:4b:
88:62:42:35:2c:08:04:b9:31:52:37:8f:b9:89:cb:
7b:a7:2e:70:43:89:70:32:cd:07:f4:76:24:2c:5a:
d2:2f:be:8f:16:b3:b2:96:dc:d4:24:1c:2f:f8:34:
c5:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:EF:7B:95:A9:73:4C:11:A6:09:27:D8:40:07:AF:91:80:23:B4:9B
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/e-97lalzTBGmCSfYQAevkYAjtJs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.202.96.0/20
Signature Algorithm: sha256WithRSAEncryption
b8:76:7f:c8:c4:af:cc:b3:6d:57:cc:0b:ba:eb:19:28:ba:e7:
f5:cd:f3:49:c8:b2:c0:c5:86:1a:43:f4:95:32:71:51:47:dd:
43:54:ce:d7:cc:33:62:a7:ba:ef:1b:64:81:9c:78:31:d6:91:
17:99:90:df:12:98:43:93:a0:0a:4a:68:ac:2c:1b:23:3a:58:
37:03:9e:b0:ad:23:b2:52:23:00:b6:0b:04:78:fa:f8:fd:0e:
c7:9f:65:94:b0:00:53:18:bb:0a:88:14:ba:c4:9d:13:fd:ac:
85:f9:42:39:21:af:8a:5a:5e:9e:22:f9:21:80:e0:71:5c:de:
6a:0b:15:7d:1f:9f:ac:98:29:e1:05:c0:1e:49:83:f9:c0:ac:
0f:21:2f:63:70:25:2b:86:81:f3:b1:9c:63:06:13:e8:ae:d1:
4e:2e:9b:f5:ea:bf:4b:78:56:95:ef:dd:f1:4c:d2:16:d6:76:
d6:b9:2c:7e:41:8e:77:70:09:95:6c:fe:c0:4c:73:9c:3c:62:
44:fc:e3:f4:87:fb:bf:1a:a2:bd:24:67:9b:8d:2e:3e:13:f8:
d7:84:84:e4:81:46:95:c1:48:4f:2b:23:ec:aa:70:4c:54:6f:
1b:c0:af:2c:5a:e4:98:df:70:20:8e:90:ec:98:a0:2a:85:4f:
25:ed:dc:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:55 2023 by rpki-client on console-fra.rpki-client.org