Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/lX3YiTPs9CxGIMbi2184t375VH0.roa
File: lX3YiTPs9CxGIMbi2184t375VH0.roa (raw, json)
Hash identifier: IXrJcTHdNcNDBP+RrFKPBcCX/NKk89sBvjNe2iNVxpA=
Subject key identifier: 95:7D:D8:89:33:EC:F4:2C:46:20:C6:E2:DB:5F:38:B7:7E:F9:54:7D
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 08FE
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/lX3YiTPs9CxGIMbi2184t375VH0.roa
Signing time: Tue 29 Sep 2020 10:01:20 +0000
ROA not before: Tue 29 Sep 2020 10:01:20 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17709
IP address blocks: 210.63.200.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2302 (0x8fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:20 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=957DD88933ECF42C4620C6E2DB5F38B77EF9547D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:5a:22:9c:c1:53:be:ce:90:3b:50:21:a1:7a:
09:e4:8e:9b:90:7f:8b:5e:73:1a:c8:29:df:5e:cc:
13:6b:b4:d8:33:58:bb:3a:90:49:78:7f:ac:86:69:
bb:e8:ad:13:78:e0:f4:e6:6e:35:2c:c0:4e:2c:5b:
c7:29:cd:11:fc:bd:79:d3:ed:3b:07:ae:59:7c:d1:
9e:98:09:19:63:31:46:5d:74:40:fb:5a:05:33:62:
5a:ec:e4:75:fa:21:29:4c:18:af:af:f9:df:15:2c:
37:e3:8a:01:43:2a:34:27:06:a9:1a:a3:42:48:21:
cc:42:f2:1a:c2:ef:b5:fa:3f:fd:f2:80:a4:ba:1e:
8d:18:7a:6a:b6:50:aa:3a:39:95:a1:d8:e0:be:d4:
26:e6:b9:d4:85:7b:9a:b7:0d:3a:31:72:17:9f:89:
1b:33:50:6b:b3:4c:54:37:3b:29:3c:57:cd:8b:98:
30:83:96:76:4c:97:49:a8:a5:c9:d1:1e:88:c5:fa:
02:7c:19:59:a4:da:0e:9e:ab:ac:a4:3d:c4:61:36:
9b:b3:8f:22:3b:fb:a0:b8:96:5a:ef:69:78:68:f4:
41:d3:f9:02:dc:d4:78:94:83:dd:b0:de:fa:16:a0:
84:d8:2f:71:24:95:6b:db:89:96:01:bb:46:92:44:
e0:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:7D:D8:89:33:EC:F4:2C:46:20:C6:E2:DB:5F:38:B7:7E:F9:54:7D
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/lX3YiTPs9CxGIMbi2184t375VH0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.200.0/21
Signature Algorithm: sha256WithRSAEncryption
ad:88:8f:19:f5:20:df:e0:e2:98:3d:c2:96:3c:51:e5:c4:b6:
32:06:1f:ed:17:27:48:07:fa:bb:ec:76:21:05:46:e4:77:d7:
fd:2d:d2:a1:21:91:0b:cd:0c:e9:3d:81:c1:66:6b:43:2e:3c:
01:b8:8f:6f:c8:b4:fb:2b:ae:c3:4f:53:f4:86:5c:eb:b9:5e:
8c:0e:42:e8:0d:3d:7f:43:83:e3:e7:0c:96:aa:b8:c9:34:ca:
68:87:5e:bf:d4:34:11:3f:d5:28:c3:90:b7:75:12:86:a6:5e:
dc:88:f0:86:8d:81:f9:5e:c1:75:f2:67:6f:6c:09:36:78:d3:
4e:f4:e5:7f:80:16:0d:65:72:79:ec:06:7e:13:bf:84:9b:06:
f0:86:b2:50:48:4e:10:3b:f2:97:8f:81:1d:a2:65:fd:0d:17:
4b:c7:f6:3b:64:62:1b:e7:c4:2c:c5:7f:6d:a0:0b:1a:3b:34:
a3:a2:7a:f6:2c:a9:94:c4:ee:c3:65:99:ba:0d:97:97:e9:a3:
bc:cf:fc:9d:be:35:a8:e6:eb:33:7a:7e:c1:0b:64:d2:23:e4:
2d:ad:98:7d:aa:44:00:cd:21:98:07:a7:0c:1f:cb:11:07:c0:
28:1a:63:0e:02:78:e7:fd:ee:25:ac:db:2f:6f:92:13:c1:7f:
6a:20:11:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:45 2023 by rpki-client on console-ams.rpki-client.org