Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/kprEe7jPGnQYMwMZUuTCPBuTvtk.roa
File: kprEe7jPGnQYMwMZUuTCPBuTvtk.roa (raw, json)
Hash identifier: b9k0M3oaRL0jPcxtce/+OlHy+/9poyLEA2FcLpVWVxs=
Subject key identifier: 92:9A:C4:7B:B8:CF:1A:74:18:33:03:19:52:E4:C2:3C:1B:93:BE:D9
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0E02
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/kprEe7jPGnQYMwMZUuTCPBuTvtk.roa
Signing time: Wed 29 Sep 2021 02:39:51 +0000
ROA not before: Wed 29 Sep 2021 02:39:51 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17709
IP address blocks: 218.187.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3586 (0xe02)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:39:51 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=929AC47BB8CF1A741833031952E4C23C1B93BED9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:fb:7d:7a:f2:81:6d:97:86:96:ba:6c:f2:e9:
7e:c7:5a:cc:45:cf:5d:dc:da:5b:57:85:82:af:63:
be:fe:4b:37:18:77:cd:42:43:17:81:8b:2b:89:f1:
7a:80:e9:b6:ca:e6:a4:d0:c0:1e:cf:64:40:ea:a8:
c7:3d:56:a0:be:7f:3e:d2:02:59:fd:05:f5:55:4c:
4a:38:d1:9c:cf:80:51:db:51:eb:5a:a5:93:0e:3f:
92:50:ca:e9:07:65:56:48:32:f9:be:d8:43:76:b8:
2d:93:61:a0:0e:ae:e8:ad:e8:21:a6:3e:f4:de:81:
1d:c2:d1:0d:cd:98:7a:f3:73:9d:d8:39:fc:33:6e:
9f:89:82:2a:8d:f1:40:0c:7c:c6:5c:70:a1:37:8b:
8e:07:a2:9a:a9:ba:4d:1d:c2:36:5b:48:70:7f:fa:
da:63:33:eb:c2:73:df:92:25:7d:b7:28:d7:44:84:
9d:4d:1b:f5:b9:ea:fd:af:8f:27:e4:f4:9f:5e:14:
ee:ff:f6:31:65:72:aa:89:16:5b:c1:78:c8:a6:91:
23:0e:a2:8b:55:f1:24:a0:00:9b:da:65:e8:b8:6e:
90:1e:b1:45:6a:27:bd:1d:34:e9:9a:58:95:67:3a:
4d:06:c7:c3:36:1f:71:48:d8:21:e8:03:6c:ec:ca:
68:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:9A:C4:7B:B8:CF:1A:74:18:33:03:19:52:E4:C2:3C:1B:93:BE:D9
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/kprEe7jPGnQYMwMZUuTCPBuTvtk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.187.0.0/16
Signature Algorithm: sha256WithRSAEncryption
92:13:d4:2e:bf:4d:9a:9d:a9:d2:7d:5f:87:25:95:30:74:c9:
52:97:04:9f:78:a6:9c:4c:00:27:e3:0a:73:95:49:b8:af:6a:
a1:7b:c7:45:4b:1a:fd:67:c2:0e:31:5f:79:f5:72:9b:75:b6:
4e:6b:2f:36:67:b4:1c:2a:b2:0e:25:b5:46:38:71:63:d0:e8:
c3:bb:a3:39:1f:4a:79:60:2a:36:7a:95:79:fe:1a:b7:32:5c:
5c:6d:47:23:1a:7b:53:59:10:91:0b:3a:ac:93:b9:1c:00:90:
9f:70:be:9a:36:b3:d3:7d:dd:b2:df:a8:66:7c:03:b2:ca:9d:
bc:1c:1a:e4:6f:ab:95:ed:2e:88:f7:bf:bb:63:0d:7e:07:3f:
20:26:0b:be:93:e9:28:a1:93:17:61:c0:d3:89:b8:ac:35:39:
c8:68:ed:ca:47:fb:12:a7:7b:fd:5d:62:7a:6a:fa:79:58:8b:
e7:62:81:01:67:bd:0a:ad:2d:15:70:3f:79:39:b8:34:d9:c5:
78:cf:da:9d:34:a6:84:32:1d:6a:57:d2:38:18:c3:e4:5d:ff:
1d:d2:24:d5:b0:40:38:fd:c9:45:c3:5c:dd:62:54:65:3f:2a:
da:ed:65:11:b2:41:95:00:98:66:b1:af:9c:bd:c5:be:fa:45:
c7:c9:34:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:45 2023 by rpki-client on console-ams.rpki-client.org