Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/j1_vLtK5aIE-5uzSPoy70vz6H3g.roa
File: j1_vLtK5aIE-5uzSPoy70vz6H3g.roa (raw, json)
Hash identifier: 5SQiMAC0ob4kJ58GyNZYKEFe18079+UTdKyGXkU8Y0Y=
Subject key identifier: 8F:5F:EF:2E:D2:B9:68:81:3E:E6:EC:D2:3E:8C:BB:D2:FC:FA:1F:78
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0BD7
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/j1_vLtK5aIE-5uzSPoy70vz6H3g.roa
Signing time: Sun 07 Feb 2021 11:34:03 +0000
ROA not before: Sun 07 Feb 2021 11:34:03 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 7482
IP address blocks: 210.200.64.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3031 (0xbd7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:34:03 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8F5FEF2ED2B968813EE6ECD23E8CBBD2FCFA1F78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:95:5a:a4:b1:0f:83:51:ae:25:ba:a3:b5:5c:
d1:f6:60:9f:ab:e7:9c:f5:90:95:66:df:f8:f9:7c:
8d:f8:6a:7d:48:da:36:5a:71:6a:9c:df:b6:a5:a7:
e3:58:3e:ac:53:cb:d4:55:34:e9:90:bd:b6:dd:d3:
24:b7:7a:61:21:8e:40:f5:67:7b:c3:e1:09:ff:15:
b1:a3:1a:dc:41:7a:a8:27:14:00:c2:e7:61:81:7c:
32:fd:37:ff:6e:7f:94:5d:94:a3:d3:31:98:47:ad:
81:36:60:c2:22:59:10:41:8e:55:23:d9:75:6f:44:
41:9c:cd:c6:4d:80:4f:a7:b5:62:f9:82:b7:a3:c4:
bf:0a:11:c5:a9:f5:c2:da:00:0d:43:09:3d:ca:55:
a7:e7:d2:4a:6b:b4:0b:9d:93:e2:ec:46:53:07:84:
47:c3:7c:db:c2:3d:89:00:7f:0c:50:51:be:f0:02:
f9:74:46:bf:ff:59:8d:e5:20:e6:ce:77:5a:6e:c7:
48:58:fb:6a:70:84:b3:e7:35:7d:ee:30:2d:06:05:
23:9b:4d:7e:2b:6c:e8:45:81:ef:9f:e7:9d:55:16:
e1:ba:30:15:9e:22:c4:c0:a7:26:04:4b:52:61:9b:
62:0b:70:b3:50:9d:62:7e:53:5d:7c:24:8b:78:ce:
a2:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:5F:EF:2E:D2:B9:68:81:3E:E6:EC:D2:3E:8C:BB:D2:FC:FA:1F:78
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/j1_vLtK5aIE-5uzSPoy70vz6H3g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.64.0/18
Signature Algorithm: sha256WithRSAEncryption
87:42:1f:fb:01:84:bf:fe:ce:1c:0f:a0:69:fc:17:c4:23:33:
88:53:e9:46:a2:2a:66:77:54:4d:bd:5c:52:6c:79:0a:b4:f1:
e7:89:f5:ce:3a:fd:ac:9d:1d:e0:a5:7c:45:64:df:92:07:df:
88:e1:e4:ac:e1:5d:ab:02:5a:85:ac:3c:72:46:d7:ca:87:42:
c7:40:27:53:fd:02:de:92:72:55:8e:4b:62:f5:36:a0:12:c0:
4c:2f:e3:df:f9:37:2b:fe:87:60:41:b9:92:81:57:c4:d3:92:
b8:89:72:e9:21:54:97:3e:34:67:7a:45:19:8d:a8:69:7e:dc:
24:6c:99:4c:68:bb:71:39:54:af:51:23:d0:99:d6:3e:5c:44:
f6:ca:0f:7b:28:74:72:33:00:47:14:10:5d:00:cb:35:40:29:
7b:cb:ab:22:7e:4d:9b:14:15:68:f2:fb:ab:a2:ef:19:53:ce:
64:80:3e:7e:18:5f:f0:59:31:eb:1d:40:21:ba:8a:53:22:6c:
8b:c8:14:ec:1d:16:46:48:b0:c4:52:b7:17:4d:12:33:f2:30:
e9:e0:07:0c:21:20:d8:6a:72:6b:0d:76:f3:06:ff:29:b7:77:
ec:0b:27:6d:56:39:96:36:4d:71:17:4a:fb:e0:39:32:e0:b4:
9d:be:e1:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:56 2023 by rpki-client on console-fra.rpki-client.org