Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/laA0nv8qGH7dtjK6PXy31U3-L5g.roa
File: laA0nv8qGH7dtjK6PXy31U3-L5g.roa (raw, json)
Hash identifier: E58sX1GqtTEKZKOR4p9RT4ALNZCc/bpP6XqzxuhPPfs=
Subject key identifier: 95:A0:34:9E:FF:2A:18:7E:DD:B6:32:BA:3D:7C:B7:D5:4D:FE:2F:98
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0ED4
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/laA0nv8qGH7dtjK6PXy31U3-L5g.roa
Signing time: Tue 22 Feb 2022 01:17:43 +0000
ROA not before: Tue 22 Feb 2022 01:17:43 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9922
IP address blocks: 124.218.80.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3796 (0xed4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 22 01:17:43 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=95A0349EFF2A187EDDB632BA3D7CB7D54DFE2F98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:b4:0a:9a:9d:56:e6:8f:7d:6f:d8:72:b8:ec:
74:57:2a:c2:30:cd:97:4a:44:73:db:3f:e0:03:ff:
bd:64:be:9c:34:61:2a:35:b0:68:8d:3c:72:33:87:
9d:d9:d2:88:44:eb:9f:72:b5:45:65:53:06:54:e7:
e1:24:53:62:4d:b9:6f:2e:71:71:1a:3d:a7:cc:c8:
fe:78:24:75:a7:79:bb:40:86:27:df:d9:11:fe:1e:
52:3a:e8:1f:d7:f3:12:c3:09:f9:1a:b6:26:68:e7:
6f:b4:f2:30:42:dc:8e:0d:14:d0:88:47:0b:a5:36:
09:ca:58:34:79:1e:8a:6b:b3:dc:c7:92:87:66:88:
c9:d8:03:4c:1e:43:9d:03:db:57:66:bd:b0:40:ec:
e4:f5:3b:22:e6:ec:48:8f:ff:5f:cd:ca:1b:89:ee:
81:6f:96:cc:90:bb:da:c4:2b:73:db:50:f4:e2:16:
4a:13:3d:1c:92:bf:7c:53:a4:ae:8c:4f:be:cd:63:
49:16:e5:c7:e7:df:24:9a:81:ed:68:94:17:e9:90:
4b:e9:fb:53:ee:e3:08:2e:c9:b2:6d:0c:8c:f5:ae:
96:fd:ee:f0:46:fc:34:f9:97:20:54:28:a7:5f:48:
5c:f5:cd:fc:d7:dc:fa:c8:d3:e5:54:a7:c6:ad:af:
c2:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:A0:34:9E:FF:2A:18:7E:DD:B6:32:BA:3D:7C:B7:D5:4D:FE:2F:98
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/laA0nv8qGH7dtjK6PXy31U3-L5g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.80.0/20
Signature Algorithm: sha256WithRSAEncryption
6e:0a:56:9f:83:d7:38:2d:a4:fa:f1:26:ed:d7:bc:e9:67:0f:
2d:36:59:f8:42:9b:40:32:20:e8:51:cb:13:33:20:e5:3e:c0:
07:3d:77:26:bd:b7:81:8c:e5:c3:33:4f:8a:cc:93:3f:0a:2d:
81:a3:99:6c:9e:43:a5:61:36:bd:74:53:a2:26:cf:43:58:7c:
95:9f:03:8b:16:56:ab:d9:96:4a:8b:50:40:01:dc:6b:04:ab:
ae:06:e8:1e:ed:33:79:cb:ba:8e:17:e8:a3:1a:36:df:70:b2:
8e:2a:8e:62:a5:f3:67:2c:f5:2f:67:0b:d6:e2:33:e6:26:56:
87:9c:66:db:63:8b:d1:bf:58:b8:a2:5e:be:84:50:e9:32:3c:
b0:df:db:df:f4:fb:54:c7:ca:b8:b3:8f:6c:0d:30:36:6d:69:
50:e6:32:cf:18:d2:16:93:3f:e0:a9:46:46:4a:b3:85:7a:22:
a0:af:5d:aa:38:f0:57:a9:a4:29:cb:c6:5a:d8:ec:e6:6e:7e:
85:7f:ab:c5:5a:75:67:4e:9c:43:3a:fa:78:0c:cf:f7:ea:c5:
22:05:04:0f:45:ba:2f:06:82:eb:62:16:44:60:98:b0:71:52:
26:8a:45:cc:14:7c:09:82:44:b2:a5:eb:bc:ee:02:d1:c0:fd:
8a:ab:cc:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:45 2023 by rpki-client on console-ams.rpki-client.org