Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/lU5TTLZ0pLjpcl8elVY89vQzFfw.roa
File: lU5TTLZ0pLjpcl8elVY89vQzFfw.roa (raw, json)
Hash identifier: 1gxDXxv7E0WKqH5Ez/rzkPyQ7RC4S/oO3dq++PTQQAs=
Subject key identifier: 95:4E:53:4C:B6:74:A4:B8:E9:72:5F:1E:95:56:3C:F6:F4:33:15:FC
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 08E9
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/lU5TTLZ0pLjpcl8elVY89vQzFfw.roa
Signing time: Tue 29 Sep 2020 10:01:14 +0000
ROA not before: Tue 29 Sep 2020 10:01:14 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18419
IP address blocks: 124.218.32.0/19 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2281 (0x8e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:14 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=954E534CB674A4B8E9725F1E95563CF6F43315FC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:7e:96:02:8d:55:10:e9:df:39:0a:36:63:e0:
66:d7:b0:1e:f7:57:b3:4a:bf:1b:4f:cf:4f:58:b1:
b7:24:81:3f:17:5d:c9:b0:0f:32:09:08:2e:e3:64:
21:27:5d:2b:93:0a:4c:b8:19:27:85:28:4f:80:b9:
70:bd:7c:54:58:a5:46:ea:64:e6:20:56:27:1e:71:
ae:bc:d3:a2:50:b7:e6:48:14:ee:4e:42:6e:cf:34:
9d:22:31:a5:f2:40:cb:62:11:cc:c3:22:67:31:74:
ae:7f:01:b2:7f:05:fc:94:58:48:4f:e8:96:46:18:
d9:91:98:14:27:eb:4f:3a:95:78:9b:2a:20:66:4c:
bb:9e:60:91:ba:25:88:ce:e2:c7:84:e3:85:4f:11:
a7:7e:40:87:27:d8:c8:31:92:04:10:f7:f4:2e:33:
f0:1c:44:ba:42:32:d6:d3:c2:33:b4:9f:de:9d:1c:
af:f4:04:e5:0d:10:ae:c4:ab:e8:40:f4:85:89:3c:
57:1e:51:5b:61:c4:d8:be:b5:84:0a:2f:e2:a9:dd:
ae:d1:14:73:b8:28:0d:7b:3d:a6:9b:d3:b4:33:1e:
45:97:9b:5e:33:76:91:82:b1:0d:6f:73:4e:3d:88:
02:2e:33:d9:ad:7c:b7:e0:b4:71:c9:c6:25:39:fe:
1b:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:4E:53:4C:B6:74:A4:B8:E9:72:5F:1E:95:56:3C:F6:F4:33:15:FC
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/lU5TTLZ0pLjpcl8elVY89vQzFfw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.32.0/19
Signature Algorithm: sha256WithRSAEncryption
68:57:41:cb:b3:2a:38:7e:14:31:1c:a7:ad:d0:c0:a3:22:35:
20:bd:a3:e3:52:cc:c6:9c:5f:88:5f:02:d5:99:f2:8b:eb:bd:
be:da:3a:36:bb:ff:77:73:16:d5:d1:b6:22:89:b6:52:38:a4:
53:24:30:c1:90:1a:b3:c6:3f:db:db:87:3b:01:4d:75:fb:1d:
c5:9a:a7:ab:b8:6d:5e:f9:f0:8f:7e:1b:0e:36:9c:cd:02:85:
12:3e:a8:67:66:1b:21:55:50:1f:67:5f:02:ae:20:c1:72:2b:
9c:2d:6f:93:a9:a0:a2:8e:ed:b5:53:f8:26:c4:dc:b8:ac:97:
d8:64:3b:ac:e1:91:75:41:9e:bc:c9:ca:98:b7:c0:5e:54:09:
92:04:0e:30:35:7e:1d:68:74:0f:51:e5:38:de:6b:3c:c8:3d:
18:9d:e4:0e:80:27:0e:2b:ee:0a:18:bb:de:13:43:87:43:1d:
c3:a4:de:41:2a:6e:03:85:05:2a:8c:43:f4:f6:f2:4e:8f:89:
2d:e4:f8:5d:ad:39:f9:cb:f9:11:45:da:3c:bd:75:54:e7:3a:
c3:5d:2e:bb:26:3d:31:cc:2a:2f:98:d7:5b:1f:67:08:f5:f8:
70:07:f4:1b:c4:ff:68:a4:2c:dd:58:cd:c9:cd:e6:4c:1f:39:
99:50:ca:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:45 2023 by rpki-client on console-ams.rpki-client.org