Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/fBYou8hMDOxXkqyWugjdE1zUcnM.roa
File: fBYou8hMDOxXkqyWugjdE1zUcnM.roa (raw, json)
Hash identifier: VIBprAyp+Xyq0w+vm/5hF/4plnQvwNomsz5TSqIbnIY=
Subject key identifier: 7C:16:28:BB:C8:4C:0C:EC:57:92:AC:96:BA:08:DD:13:5C:D4:72:73
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0C21
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/fBYou8hMDOxXkqyWugjdE1zUcnM.roa
Signing time: Sun 07 Feb 2021 11:34:59 +0000
ROA not before: Sun 07 Feb 2021 11:34:59 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17709
IP address blocks: 210.202.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3105 (0xc21)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:34:59 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=7C1628BBC84C0CEC5792AC96BA08DD135CD47273
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:6e:80:47:f9:68:4f:e6:b1:1c:9a:d8:84:36:
5c:4c:c2:ce:fb:bb:da:82:4c:6f:bb:c9:68:ca:88:
ba:0a:4a:50:48:96:25:35:86:e2:7d:a8:72:13:58:
80:85:ea:31:17:b9:21:a3:72:e7:7f:9b:b1:18:fe:
13:ac:64:45:0b:f4:af:42:a1:36:cf:17:5d:41:51:
55:fc:0b:fa:8a:11:dd:89:6d:a7:cf:61:dc:dd:94:
11:c6:a9:b6:ba:3d:3c:4f:6e:ad:f5:2a:25:5b:e9:
08:11:3f:4f:72:d3:02:6d:26:4e:08:9b:f6:82:fb:
cd:bf:dc:a3:26:1d:ef:12:ae:48:c6:49:ad:04:33:
62:cf:41:28:01:83:06:6a:e3:90:8f:60:e1:eb:21:
3a:46:68:29:65:23:fc:6c:f7:a4:f4:d9:42:a6:47:
d7:bc:24:0a:77:14:3e:b9:e6:8a:44:9b:a7:00:b0:
6b:d6:4e:d2:0e:3e:e6:64:43:5f:b1:e5:46:f9:ab:
1e:b3:28:2a:c8:c4:d2:ad:76:a6:a7:0b:b5:25:58:
60:89:98:73:e8:24:f3:1e:57:26:01:ef:12:b3:89:
c8:5d:8e:bd:81:6b:26:07:70:f1:f2:d8:01:d5:79:
bf:e5:6c:d9:e2:42:48:a7:0b:fb:98:3a:91:9b:1e:
d8:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:16:28:BB:C8:4C:0C:EC:57:92:AC:96:BA:08:DD:13:5C:D4:72:73
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/fBYou8hMDOxXkqyWugjdE1zUcnM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.202.128.0/17
Signature Algorithm: sha256WithRSAEncryption
2c:ad:53:ca:79:f5:e2:c3:9b:b8:a2:53:fb:b6:c0:5b:a3:70:
8a:6e:a0:c4:f0:95:70:b7:b5:4f:4b:48:32:66:d2:31:16:5a:
6c:be:40:14:95:93:db:3e:5e:44:2b:a2:ec:48:8e:e8:a9:cb:
84:1b:78:49:9e:3f:d5:34:48:4f:1f:be:06:dc:95:6d:48:5d:
11:c8:4b:ca:06:94:54:17:a7:c3:88:87:46:94:fa:cc:19:d2:
95:34:bd:b4:8c:58:a1:74:8f:b7:c5:70:1e:68:76:ab:11:b9:
92:be:ab:8b:7b:a0:20:da:ba:ab:e1:ef:2c:13:35:a5:32:ca:
f0:23:4c:be:a6:63:80:06:b3:c7:99:29:87:5b:35:df:4a:b7:
69:1c:9b:a1:24:f6:a3:2f:71:9b:15:52:83:33:88:05:b4:70:
f2:47:19:b2:fe:9d:05:41:26:02:35:bc:2e:3b:42:96:8c:38:
35:63:a9:3d:da:af:f2:cf:1d:58:44:bd:f0:08:15:4d:8c:a6:
05:eb:d6:fd:7b:15:2a:db:c6:77:13:b0:b3:a5:46:91:30:a3:
58:af:6a:72:9d:92:78:5c:02:45:85:3c:76:52:66:45:c7:30:
ec:9e:37:07:e5:33:36:01:7c:d9:5e:ff:bf:72:51:cd:99:7b:
cb:71:d6:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:45 2023 by rpki-client on console-ams.rpki-client.org