Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/nix-zHYRcDbmk0eD3WLg6S5LWIs.roa
File: nix-zHYRcDbmk0eD3WLg6S5LWIs.roa (raw, json)
Hash identifier: l/E9oBhjpcXdUoZ81JeX12w/moE4SzDc9iceZE/NJ18=
Subject key identifier: 9E:2C:7E:CC:76:11:70:36:E6:93:47:83:DD:62:E0:E9:2E:4B:58:8B
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 08DC
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/nix-zHYRcDbmk0eD3WLg6S5LWIs.roa
Signing time: Tue 29 Sep 2020 10:01:10 +0000
ROA not before: Tue 29 Sep 2020 10:01:10 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 7482
IP address blocks: 210.200.192.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2268 (0x8dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:10 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9E2C7ECC76117036E6934783DD62E0E92E4B588B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:58:33:52:af:8a:23:91:a4:eb:7c:15:0c:3e:
a0:f4:80:01:27:53:9c:6c:42:15:f3:9e:41:b2:4a:
18:71:db:95:61:2f:b2:f0:16:29:19:52:9a:2c:70:
70:1a:fb:61:ca:8f:30:26:7b:b9:5e:89:41:ce:2b:
7f:34:f8:b7:40:bc:4e:4d:e5:8d:a0:ed:da:b3:f9:
9a:a2:c6:7f:8c:e9:cf:96:dc:18:f2:0c:80:9f:63:
02:b4:3b:93:d6:3c:60:0f:1d:5b:c2:a2:e5:47:58:
54:d8:ce:c1:7b:84:a7:b3:cd:10:15:f5:48:33:96:
39:8a:57:e3:89:72:6f:8e:2d:56:4c:c4:9f:73:89:
c0:cb:aa:30:6b:88:b3:bb:07:9b:1e:29:dd:3d:b2:
48:5e:1e:56:ee:81:b6:57:f9:b8:66:f4:0e:90:cb:
9f:76:77:d5:d1:f3:4e:7b:ce:4b:de:53:5c:f1:81:
6b:1d:3d:a5:3d:a9:75:df:5f:c5:44:54:e9:52:47:
ba:c6:7d:47:54:e3:8d:6d:48:62:bb:e2:dd:f2:4d:
e7:8a:83:5f:0a:92:10:1a:55:93:29:04:d2:3a:fb:
a0:b0:26:f1:9b:42:b4:5a:ff:b8:9f:7b:b9:e4:e4:
96:98:55:99:a1:59:45:46:3c:6c:fb:fb:ae:33:c1:
c3:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:2C:7E:CC:76:11:70:36:E6:93:47:83:DD:62:E0:E9:2E:4B:58:8B
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/nix-zHYRcDbmk0eD3WLg6S5LWIs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.192.0/18
Signature Algorithm: sha256WithRSAEncryption
03:e3:c7:5c:e0:9a:87:11:8f:c2:3f:2d:c5:02:08:01:df:60:
c1:ac:4c:71:b7:bb:d6:fd:21:c3:8c:47:7c:78:a8:33:a4:a3:
dc:ab:42:88:41:ef:50:06:a9:7f:bf:b6:05:9f:1d:46:da:6d:
02:a3:34:b6:89:84:8a:d7:eb:28:75:0d:6a:a1:a6:89:5b:7f:
2b:92:2e:c5:d6:3a:79:ed:d3:c3:8b:a0:38:68:35:0f:2f:eb:
8d:1e:d6:66:7c:e3:18:6b:e8:9d:55:f1:d4:3f:28:94:7c:de:
df:97:e0:8a:9b:c0:8b:88:6f:f7:88:8b:7d:5d:fa:c1:3c:74:
29:ee:ee:a7:29:16:b2:3f:14:5c:bf:f7:02:83:af:0f:e2:af:
60:d1:b3:4a:7c:0b:c3:c8:c4:ac:5d:76:05:87:10:2b:35:31:
9d:1b:84:bf:67:82:4c:ba:40:d7:80:98:5b:11:3c:2b:83:fe:
03:3c:a4:b6:73:9c:c0:22:5b:07:3a:54:66:9c:32:55:c9:d8:
6b:b1:f0:00:e2:32:7d:3f:6c:fa:e9:85:73:67:0b:97:de:3a:
f3:17:69:28:1f:d7:98:ae:b2:c8:30:93:4b:83:65:28:c4:16:
26:06:6e:76:07:78:87:9b:d1:26:87:dc:a8:20:4f:97:f7:59:
2a:b6:b2:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:56 2023 by rpki-client on console-fra.rpki-client.org