Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/fqfYQ0uI5yyft1i8hFT2lJOcKT4.roa
File: fqfYQ0uI5yyft1i8hFT2lJOcKT4.roa (raw, json)
Hash identifier: BMc/5RwFLhch7dg4FoSMrI2+0zoTm5MuKm9UCkIcoFA=
Subject key identifier: 7E:A7:D8:43:4B:88:E7:2C:9F:B7:58:BC:84:54:F6:94:93:9C:29:3E
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0DB8
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/fqfYQ0uI5yyft1i8hFT2lJOcKT4.roa
Signing time: Wed 29 Sep 2021 02:39:29 +0000
ROA not before: Wed 29 Sep 2021 02:39:29 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 7482
IP address blocks: 203.79.192.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3512 (0xdb8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:39:29 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=7EA7D8434B88E72C9FB758BC8454F694939C293E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:62:4a:7b:f8:d7:d9:06:38:66:a1:3a:2b:78:
37:b2:32:4c:77:ca:fd:a3:9e:48:df:bd:88:9f:6a:
56:16:d4:b6:3c:30:1c:ed:34:fa:5f:48:fb:20:5c:
52:87:8b:da:b2:f4:2d:82:5c:ae:59:7d:bd:68:d8:
42:fa:f8:3b:69:7a:00:a9:f0:a3:aa:64:f2:a4:1c:
85:2f:9e:81:f2:46:78:a0:6c:9f:e5:55:56:5f:90:
8d:3d:ee:08:89:3a:09:bf:bf:77:74:00:0f:ff:3a:
83:2a:23:77:b8:62:65:7a:97:9e:e7:82:74:2f:a9:
b9:a3:4d:45:74:7c:27:7c:61:50:21:97:9d:67:6f:
ce:23:ae:46:8c:f0:3c:d4:0c:0f:8b:af:15:e0:41:
5a:6d:48:8a:4c:03:51:43:db:66:8c:bd:3c:11:e3:
27:da:81:7c:63:dc:51:97:cf:4a:0c:77:14:e6:ab:
bf:0a:4f:a7:f3:e4:91:0c:98:83:40:92:a3:f4:d3:
bf:3b:c7:e4:16:0a:fc:c9:78:8d:c1:94:6e:9e:f6:
fe:9d:d3:11:03:e0:b8:73:1a:11:b3:1f:37:ed:c4:
55:b1:72:e5:cb:b3:62:00:63:0b:b0:ca:78:b9:98:
8d:42:b9:49:f8:d9:77:e4:9d:25:a8:84:25:1e:51:
4e:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:A7:D8:43:4B:88:E7:2C:9F:B7:58:BC:84:54:F6:94:93:9C:29:3E
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/fqfYQ0uI5yyft1i8hFT2lJOcKT4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.192.0/18
Signature Algorithm: sha256WithRSAEncryption
6d:bd:33:9d:80:2f:3d:2e:d0:82:9f:9f:d5:2e:01:fb:67:fd:
7e:85:9a:fd:93:7c:aa:da:9d:68:3e:76:c1:c8:ba:dd:e3:dd:
fe:71:dc:fc:03:ab:d2:1e:3a:34:33:cd:9e:7c:69:27:b9:7f:
8a:15:54:3f:dc:e3:aa:eb:4f:7f:b9:8f:2b:5a:23:c4:43:ca:
ab:2a:d8:f4:4d:f1:41:88:12:c7:49:bb:da:12:c5:46:59:2f:
e9:70:3b:2e:9b:57:e2:f4:2e:f7:51:d4:a7:ba:6a:ef:ce:94:
87:b2:c4:49:9e:b8:f6:96:10:19:0b:f2:3f:97:00:bb:01:d5:
94:17:1e:73:eb:ce:2e:a7:41:92:e4:b9:11:95:97:90:6e:d1:
18:2b:0f:3b:9f:2e:24:75:83:9e:08:2d:51:23:bb:eb:0d:7c:
7f:cd:00:e2:a3:81:6a:db:22:48:be:76:8f:90:82:99:ad:c8:
27:f9:47:d9:75:30:fc:4f:9b:e8:1f:6d:ca:68:60:1b:2e:8b:
3d:65:b8:04:ca:07:3e:3d:49:b9:23:52:0c:8a:0b:d0:77:82:
33:20:10:6f:c3:c5:5f:2c:02:84:dc:4e:b2:37:d0:2d:26:6e:
a2:87:11:47:7c:23:b5:c2:53:e4:7d:56:35:7b:47:f4:cc:04:
05:48:85:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:45 2023 by rpki-client on console-ams.rpki-client.org