Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/eWF9ySmAfkNQQ-yQn2pYEd9T-x8.roa
File: eWF9ySmAfkNQQ-yQn2pYEd9T-x8.roa (raw, json)
Hash identifier: 4YDIbfQWsymm+uzsNSbzvQrF3Ipmx+mjqcbht2Ahcm8=
Subject key identifier: 79:61:7D:C9:29:80:7E:43:50:43:EC:90:9F:6A:58:11:DF:53:FB:1F
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0DE3
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/eWF9ySmAfkNQQ-yQn2pYEd9T-x8.roa
Signing time: Wed 29 Sep 2021 02:39:41 +0000
ROA not before: Wed 29 Sep 2021 02:39:41 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 7482
IP address blocks: 210.201.128.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3555 (0xde3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:39:41 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=79617DC929807E435043EC909F6A5811DF53FB1F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:9b:81:9f:75:14:86:de:01:06:71:38:1b:ff:
a7:e6:b5:01:39:3d:a4:32:85:b5:92:b5:3d:9e:02:
0a:1a:b5:b3:c2:29:2a:9b:db:96:9d:c4:ea:3c:5b:
f4:b8:b7:b6:be:98:21:1a:6c:89:38:e6:e8:dc:1e:
cc:27:05:36:9a:6f:55:82:eb:c7:00:4c:69:36:e7:
1e:bb:90:a8:0e:73:4e:42:32:f1:4a:b6:52:c3:d6:
24:8f:52:e4:bf:e6:ad:99:6e:5e:5a:df:e4:72:28:
e0:a6:81:eb:3f:1a:40:d3:5b:1c:1c:9e:f4:57:14:
45:3c:e4:62:4c:93:c9:00:3e:c3:d7:ca:fc:82:15:
fe:58:80:26:51:1e:e5:72:46:a0:d7:45:94:98:e5:
9d:a0:a4:25:bd:85:05:b9:dc:d1:ea:d4:49:8c:b5:
78:36:95:4a:5b:97:f2:68:af:12:1e:56:ba:04:e0:
a9:8a:05:66:33:14:f0:3a:a8:9a:45:2d:cc:0c:75:
d6:95:1d:1a:71:4f:87:9d:14:57:df:3e:12:9b:f0:
d2:39:b8:66:09:86:d5:75:76:9c:77:15:26:f8:10:
62:f8:71:fe:7f:51:32:c8:aa:85:6f:18:5d:f1:b7:
26:7e:28:3f:8a:21:1a:80:10:b7:c9:26:da:9e:31:
f5:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:61:7D:C9:29:80:7E:43:50:43:EC:90:9F:6A:58:11:DF:53:FB:1F
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/eWF9ySmAfkNQQ-yQn2pYEd9T-x8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.201.128.0/18
Signature Algorithm: sha256WithRSAEncryption
b2:37:1a:ae:50:b9:a8:8f:24:94:b9:fb:2e:0d:44:ed:c2:9e:
2b:55:a7:a1:32:57:a0:89:1c:d0:a8:0d:7f:e8:31:b7:bd:45:
82:9b:bf:3d:c9:a4:78:29:1e:0c:38:41:cc:bc:d0:07:0d:e5:
8d:bb:2e:e1:de:b0:f9:19:63:48:b5:57:de:c6:44:96:08:8e:
ff:71:e1:7c:45:58:0c:dd:63:c4:ab:24:6d:e5:0b:90:ab:e8:
f3:75:85:ed:11:2a:b8:88:00:1f:5e:b6:5f:d1:64:55:e3:f6:
05:83:1b:1e:48:12:d9:5f:0e:05:18:7e:82:63:62:27:4f:27:
2b:d4:b3:8a:88:fb:05:6a:6f:9a:79:f0:dc:33:b2:19:36:68:
7b:fe:3b:d4:d1:24:29:b2:19:6f:ed:25:43:c8:b4:06:e9:0c:
da:36:93:39:03:f0:00:90:3c:9c:a0:26:a3:9b:3b:1c:e6:8b:
83:d4:56:1c:5a:d4:20:69:6e:cb:64:25:ab:ca:e9:05:ff:58:
c2:ae:16:2d:7d:09:d2:44:16:ad:71:ac:0c:0d:3b:6a:6a:62:
3f:6d:cf:ef:c8:82:23:00:45:cf:1f:13:61:e1:1a:ba:63:3b:
36:e9:17:b6:be:f9:80:66:a3:a5:26:7e:3d:e1:8f:cc:6e:59:
88:ab:6f:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:56 2023 by rpki-client on console-fra.rpki-client.org