Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/mE63b5yztVU7oc3_zcSqEYePhrA.roa
File: mE63b5yztVU7oc3_zcSqEYePhrA.roa (raw, json)
Hash identifier: 9mlk2nEoOCuMuha/mJg0rZ7txUX3yB9ik0Xxt/q5hY8=
Subject key identifier: 98:4E:B7:6F:9C:B3:B5:55:3B:A1:CD:FF:CD:C4:AA:11:87:8F:86:B0
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0CB5
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/mE63b5yztVU7oc3_zcSqEYePhrA.roa
Signing time: Sun 07 Feb 2021 12:47:24 +0000
ROA not before: Sun 07 Feb 2021 12:47:24 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18419
IP address blocks: 218.35.160.0/19 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3253 (0xcb5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 12:47:24 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=984EB76F9CB3B5553BA1CDFFCDC4AA11878F86B0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:ba:be:e9:67:e2:b8:e6:23:63:ed:04:db:d9:
28:fc:92:89:f9:72:06:65:81:3a:d4:89:d0:e1:34:
74:a4:09:2e:a0:bb:9f:14:6f:11:34:f3:75:f0:ec:
ba:d6:a7:3b:de:8f:e3:ba:a5:c9:c2:2f:d1:45:0a:
1a:55:d1:c9:97:cd:b4:6d:17:fc:8b:b2:fc:24:2f:
73:a1:e8:e5:60:0e:d9:a6:d5:38:b2:73:fa:4b:8f:
b1:8b:82:94:6c:ef:38:60:ba:84:6c:d9:6a:d4:01:
a6:f2:3e:c4:85:b0:a6:7a:02:43:12:e3:42:a4:47:
29:67:5b:52:17:3f:f1:30:44:e7:a8:e6:8a:2e:e7:
2b:dc:c3:69:5f:fc:1a:a5:a7:0e:2b:cc:dc:b2:da:
1f:57:9f:9d:c4:58:94:20:d1:29:5e:a4:89:25:95:
fc:98:d0:33:0d:44:62:3a:d6:b0:eb:0e:bf:2e:d6:
a2:5f:8e:50:84:a5:53:fc:87:ea:12:34:81:91:78:
7d:d1:c4:9f:7f:bd:e4:79:92:9b:52:76:c7:8f:6c:
6b:7d:64:56:6a:26:41:2a:ab:fe:2f:1e:ff:1b:d7:
6c:5f:7a:87:57:e5:68:0a:98:da:0d:20:fa:ed:51:
ed:4b:50:d4:a1:99:fa:06:be:a3:d8:00:9b:91:3f:
83:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:4E:B7:6F:9C:B3:B5:55:3B:A1:CD:FF:CD:C4:AA:11:87:8F:86:B0
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/mE63b5yztVU7oc3_zcSqEYePhrA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.35.160.0/19
Signature Algorithm: sha256WithRSAEncryption
11:aa:70:59:74:65:92:87:ba:ed:5d:f6:55:8c:37:f8:a4:05:
7a:2f:94:ee:e5:a4:6c:74:3d:ff:45:14:f9:14:53:5f:13:a7:
6f:4d:2d:32:f0:38:20:4c:dc:e9:62:f7:59:64:3a:47:1d:fc:
96:d3:2a:eb:1d:2b:8b:35:f9:3a:88:c2:90:68:b8:2c:36:94:
15:17:ee:12:c5:97:5c:ce:27:91:8d:92:4b:f2:a4:23:24:86:
52:a2:fc:b0:c9:b9:24:59:74:45:fd:5a:39:bb:54:6d:68:5f:
77:e8:12:f5:2d:dd:a7:84:b0:ef:af:fd:5b:40:a4:a7:09:b8:
9e:64:3a:31:54:a0:6b:4e:39:c0:0b:fe:5e:b7:c0:34:eb:01:
91:a3:6b:7e:88:db:99:82:9d:b1:27:0a:00:50:c8:e7:9b:bc:
4a:74:08:02:de:bd:45:e3:a9:95:f6:15:09:c6:1f:45:9e:d5:
85:cf:2d:47:2c:5a:cc:3d:94:06:d1:de:6d:35:75:99:ca:4f:
dc:c2:75:41:ee:82:7a:03:cf:12:11:d6:8a:eb:0b:6c:43:6e:
b6:cc:ea:51:60:d0:13:8d:24:58:33:18:b9:33:22:08:e8:b3:
d1:05:f2:9c:c9:99:cb:47:d5:18:86:ac:db:ed:c8:8a:f3:17:
c4:53:8b:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:56 2023 by rpki-client on console-fra.rpki-client.org