Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/gy1IJG0Hh4CGUW3OZE_hInLYbG8.roa
File: gy1IJG0Hh4CGUW3OZE_hInLYbG8.roa (raw, json)
Hash identifier: Z5yDc2rN+p28EtHnpVxnEA0pZh9Qt1u6ReAYtN6Xsv8=
Subject key identifier: 83:2D:48:24:6D:07:87:80:86:51:6D:CE:64:4F:E1:22:72:D8:6C:6F
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0923
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/gy1IJG0Hh4CGUW3OZE_hInLYbG8.roa
Signing time: Tue 29 Sep 2020 10:01:30 +0000
ROA not before: Tue 29 Sep 2020 10:01:30 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 7482
IP address blocks: 203.79.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2339 (0x923)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:30 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=832D48246D07878086516DCE644FE12272D86C6F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:8b:4d:cb:8a:0e:50:9c:3c:24:9a:6d:70:f2:
73:30:da:cd:89:7b:ca:31:ff:f5:31:60:a5:d3:08:
78:39:f6:8a:a2:cf:9d:51:29:79:c1:1d:14:db:86:
5e:b2:cf:97:15:4b:82:64:32:96:b4:54:7a:ec:0b:
12:9d:f4:10:06:91:31:0d:ab:a1:1d:3f:7f:d8:46:
e0:1d:db:c6:7b:0a:49:c8:9a:6c:3c:65:48:43:a9:
e8:16:44:ba:a1:d8:7c:66:b7:90:e3:08:c4:73:63:
9c:bf:25:3a:52:e1:b4:79:62:ce:f0:5b:ef:e0:ab:
a2:ac:3f:d7:d9:1a:e8:a4:b7:ec:05:d3:49:82:55:
43:fc:5f:53:d4:c7:71:58:fe:e3:ee:8b:1d:48:14:
c5:76:96:ee:5f:11:91:45:28:59:ad:a4:6c:39:98:
e1:78:8c:8a:a7:60:aa:85:0b:fa:77:51:34:7d:8e:
de:dd:5e:68:83:8e:4d:1c:2a:81:9b:06:8e:a6:a3:
ca:33:77:dc:c9:19:1d:88:0c:85:26:1d:3b:a0:3a:
d4:67:87:fb:43:55:76:0d:cb:00:ee:28:b7:58:ef:
83:b4:e2:d1:e7:21:47:8c:ca:44:01:21:32:4a:55:
49:f9:61:90:fc:45:37:67:47:6e:02:8c:22:68:1f:
09:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:2D:48:24:6D:07:87:80:86:51:6D:CE:64:4F:E1:22:72:D8:6C:6F
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/gy1IJG0Hh4CGUW3OZE_hInLYbG8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.128.0/17
Signature Algorithm: sha256WithRSAEncryption
09:40:7e:36:ae:8c:dd:d1:b4:89:61:b0:ba:7e:8c:32:92:3d:
fb:f9:5a:1f:b4:12:ae:75:86:a6:34:f7:11:19:53:c7:25:4a:
a2:f5:ab:0b:de:c3:8d:6b:6f:a9:4a:f7:ad:da:e3:2f:64:8b:
f6:7a:e9:e2:87:c9:1e:00:e8:3d:5e:5c:eb:9a:75:7c:c3:39:
11:b5:54:3a:32:cc:78:07:1b:70:cd:e8:c3:a5:a1:a4:55:f9:
ba:62:22:49:fc:e4:1c:fc:8d:73:fe:b8:ba:aa:d1:a4:44:08:
66:a2:f5:e9:25:d4:9f:65:0c:ad:d1:52:26:d7:8f:bb:c1:a3:
e0:9a:d6:b0:5f:74:8f:ce:50:01:91:1c:c7:18:1f:3d:08:07:
5f:59:1b:f9:cc:7c:9e:88:17:d3:9f:b0:60:b2:af:e3:3c:1d:
79:d0:fa:99:75:f1:99:c4:44:05:6f:b0:21:72:35:66:99:81:
2c:3f:a7:7d:4f:1c:8b:28:22:4f:57:c1:a8:53:06:51:ef:98:
a1:f6:66:15:de:4e:dd:f8:7d:56:ca:5d:aa:65:e8:1d:06:e3:
bc:45:ea:a9:8c:8f:3c:ea:a2:ea:a0:f0:4d:65:c8:87:a1:c5:
59:02:c4:75:4a:2d:c8:dd:38:cd:44:d9:ab:1d:82:74:9b:04:
bb:8a:2c:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:45 2023 by rpki-client on console-ams.rpki-client.org