Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/m0lMdn5k7uX381TC3fpZ3jrmuS4.roa
File: m0lMdn5k7uX381TC3fpZ3jrmuS4.roa (raw, json)
Hash identifier: ADX8z1mdw99VeLJCbWaR7f3GxtW+BR9ccKDcFFDBoNM=
Subject key identifier: 9B:49:4C:76:7E:64:EE:E5:F7:F3:54:C2:DD:FA:59:DE:3A:E6:B9:2E
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0C7B
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/m0lMdn5k7uX381TC3fpZ3jrmuS4.roa
Signing time: Sun 07 Feb 2021 11:39:46 +0000
ROA not before: Sun 07 Feb 2021 11:39:46 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 7539
IP address blocks: 210.200.32.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3195 (0xc7b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:39:46 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9B494C767E64EEE5F7F354C2DDFA59DE3AE6B92E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:d7:f8:6a:cb:34:60:b6:16:d5:c8:7b:72:7d:
0f:58:57:79:e7:51:92:00:74:f1:6e:fe:d5:c1:20:
bc:68:51:ac:a9:5b:1f:ce:d7:b7:cb:9f:fa:40:fc:
6a:0a:41:43:66:0d:86:75:1d:83:17:af:68:4b:98:
f3:fe:a9:14:70:73:e9:07:06:b6:6f:b5:e7:82:d4:
eb:ef:4d:60:c2:6f:eb:04:e9:bc:b6:47:00:f7:e3:
fd:83:9e:db:8f:c6:94:78:30:f6:44:17:19:80:e8:
26:77:c2:64:77:ea:39:2a:63:1f:2e:a0:5e:d5:e9:
4d:ec:fa:f9:eb:dd:b5:a4:45:7d:16:87:26:7c:c1:
90:92:c3:05:ab:a7:9d:68:9d:c1:4f:49:46:83:3a:
15:2c:9a:01:23:76:7e:86:80:2f:a9:15:ff:25:7c:
02:0d:c8:46:d4:ea:f8:0e:d2:7d:68:14:1c:63:5c:
48:fb:3d:eb:b9:33:a6:35:60:fe:59:36:0b:fe:a9:
2e:e3:25:4c:fa:b4:54:a1:87:48:34:29:ef:a3:65:
54:61:c3:09:5f:67:9f:bb:85:e6:d7:b8:6d:57:a9:
1b:59:4b:f5:e8:bb:28:6f:bc:cc:3b:55:5c:a6:2e:
ca:3f:f7:fc:65:c2:c5:89:4b:95:b9:ed:11:38:f5:
2d:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:49:4C:76:7E:64:EE:E5:F7:F3:54:C2:DD:FA:59:DE:3A:E6:B9:2E
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/m0lMdn5k7uX381TC3fpZ3jrmuS4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.32.0/20
Signature Algorithm: sha256WithRSAEncryption
43:ce:d7:3b:ac:5b:87:be:e5:8e:70:8a:42:78:e8:a4:13:14:
d1:e2:18:b1:7f:db:09:25:c8:43:c5:83:7c:24:7b:e0:f9:f0:
d6:3d:60:fc:62:b7:e0:da:9f:3d:d7:ae:bc:b7:ad:36:af:d2:
35:a5:42:5c:80:02:71:4f:f2:84:dd:c4:be:da:b6:66:a5:ad:
9d:60:87:90:70:00:65:f3:77:0d:27:c3:7f:73:d0:f5:e5:2f:
29:70:66:98:4e:b1:36:16:63:62:88:61:7c:97:5b:bf:77:64:
79:0f:47:3d:c4:e5:41:fb:91:8e:64:ec:c0:e2:ce:26:3f:60:
30:24:bf:c3:f4:80:86:63:d5:c2:c2:4e:64:19:d3:0b:47:4f:
17:75:eb:31:e0:2d:48:1d:51:8a:1d:6e:df:d5:0e:19:5f:ca:
f8:59:f3:49:b0:5d:93:f7:0d:e6:12:b0:8c:82:3a:89:f8:0b:
e8:5d:9c:2f:e3:49:c4:82:5d:fb:83:44:3e:6d:02:04:62:7b:
c0:70:e1:37:ac:ed:20:79:2d:04:8d:56:f0:c8:5f:e0:d2:e6:
25:ba:bb:bf:42:5a:7e:d1:54:b0:88:b3:66:10:56:ce:81:bb:
53:d0:2d:44:1e:34:12:8d:74:5d:43:c5:f8:87:b7:c3:01:e3:
36:f0:ca:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:56 2023 by rpki-client on console-fra.rpki-client.org