Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/imuojZkjOGycPv-yOvBgzHh3x7Y.roa
File: imuojZkjOGycPv-yOvBgzHh3x7Y.roa (raw, json)
Hash identifier: dss8PB2BQmNrAGzThN4C9kkbygR76nOYkeE76U5wHWc=
Subject key identifier: 8A:6B:A8:8D:99:23:38:6C:9C:3E:FF:B2:3A:F0:60:CC:78:77:C7:B6
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0B9F
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/imuojZkjOGycPv-yOvBgzHh3x7Y.roa
Signing time: Sun 07 Feb 2021 11:33:23 +0000
ROA not before: Sun 07 Feb 2021 11:33:23 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17709
IP address blocks: 202.178.128.0/17 maxlen: 18
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2975 (0xb9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:33:23 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8A6BA88D9923386C9C3EFFB23AF060CC7877C7B6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:00:c5:9d:c8:cd:2a:71:5e:6d:5c:98:cf:d4:
23:a9:f5:7f:08:7b:80:7a:fd:83:e9:44:7b:72:4e:
54:8c:94:67:4f:f2:82:ef:02:65:3c:c2:8a:3b:dd:
0e:6a:73:9e:ac:d9:3f:dc:6f:92:d2:19:fe:74:db:
a5:c9:d2:21:8a:9d:14:b5:2b:07:2e:73:b9:c1:4b:
90:97:41:3e:e4:1a:b4:17:41:69:71:67:82:3e:63:
b4:e1:e1:b1:6d:0d:30:a1:47:a4:19:25:0d:1f:0d:
4f:e4:86:21:4d:a6:5a:36:d2:3d:2b:d3:6e:bb:d9:
1d:0e:47:97:4e:a1:c6:17:0d:03:9f:a6:8e:20:4d:
91:3e:fc:07:0e:65:2a:f6:6f:88:49:6f:7e:0e:7f:
55:1e:cc:0c:df:95:29:86:88:7a:88:6f:83:8b:86:
06:23:26:cf:d5:30:ad:2d:da:47:6e:df:af:94:ca:
46:57:53:73:25:80:65:75:ac:87:9c:51:7a:26:29:
ec:60:f6:28:2a:66:00:76:6e:81:69:3f:2b:89:95:
75:7a:bb:c5:b7:50:b1:8f:85:47:04:73:6a:25:b4:
a5:45:f9:75:96:25:64:6a:0b:e1:dd:db:f1:07:dc:
fe:7f:ef:d4:72:7b:35:1c:5d:c5:8d:f9:41:f5:7b:
83:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:6B:A8:8D:99:23:38:6C:9C:3E:FF:B2:3A:F0:60:CC:78:77:C7:B6
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/imuojZkjOGycPv-yOvBgzHh3x7Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.178.128.0/17
Signature Algorithm: sha256WithRSAEncryption
68:7d:a3:b7:3e:1f:71:93:ef:70:6b:50:64:ba:8b:2e:98:c1:
8e:2f:a7:f6:ce:8e:57:65:45:24:65:27:48:20:54:ad:39:46:
63:a5:d6:d6:14:24:b8:4b:39:0f:ea:be:91:aa:17:38:4b:21:
81:7e:49:a1:70:1d:13:55:21:3d:9b:d8:f8:56:33:ae:30:36:
a9:a7:0f:ca:30:c4:8b:04:2d:2b:03:92:f6:65:52:f2:0b:9d:
51:e9:29:79:7b:ab:de:20:f5:d2:bd:4a:d2:b0:ad:f5:5e:bb:
25:79:6f:bd:35:ec:59:c2:d0:c2:ae:91:16:c8:d3:07:f0:a0:
c2:e9:a5:d1:82:cc:60:87:16:f7:00:1c:46:7d:f6:81:05:9d:
da:55:c8:6d:c4:c6:3a:44:63:40:63:6b:32:d3:6c:09:1e:9e:
a2:83:12:84:9a:d8:72:c4:a6:b6:03:4b:28:84:19:54:7b:c7:
0d:ae:e2:57:6d:d5:dc:2b:99:27:3b:25:7b:b0:61:bd:4a:87:
d5:cb:1c:32:82:d4:cb:5b:2b:bb:9c:73:90:1f:bc:c7:13:ab:
9b:68:24:39:a3:22:78:51:8c:62:30:54:5a:18:e2:00:fe:f8:
b4:02:a5:e0:16:f4:8c:18:a1:2c:48:35:39:8b:11:e9:c1:30:
db:f4:3f:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:45 2023 by rpki-client on console-ams.rpki-client.org