Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/oWOFoIetlo2Rbdv3xn37_yNN9uE.roa
File: oWOFoIetlo2Rbdv3xn37_yNN9uE.roa (raw, json)
Hash identifier: WkGxmNRcAgcpKMPdFvGpDcWJ/aLHb0hseSjIQkY8wp0=
Subject key identifier: A1:63:85:A0:87:AD:96:8D:91:6D:DB:F7:C6:7D:FB:FF:23:4D:F6:E1
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0E03
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/oWOFoIetlo2Rbdv3xn37_yNN9uE.roa
Signing time: Wed 29 Sep 2021 02:39:51 +0000
ROA not before: Wed 29 Sep 2021 02:39:51 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 7482
IP address blocks: 218.187.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3587 (0xe03)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:39:51 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=A16385A087AD968D916DDBF7C67DFBFF234DF6E1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:68:bb:75:93:ee:dc:6d:87:71:35:c9:66:4e:
2a:53:0f:3c:5c:ee:e3:52:0d:68:73:bc:69:37:7d:
57:7d:e6:40:ca:cc:9f:40:37:f4:14:35:55:5e:61:
0d:91:86:7e:1f:74:3c:16:0a:54:51:d4:51:af:96:
93:f5:2d:53:84:02:5a:de:6e:8a:2b:05:45:48:b3:
f1:ad:a4:97:59:8e:8e:74:0a:e0:c5:dc:72:24:44:
4f:0e:a4:7b:12:d7:8d:70:df:68:6a:05:15:3d:3b:
fa:8a:ae:de:38:03:27:7f:4f:49:4d:4a:d5:ca:2a:
e6:d8:9d:34:9b:ff:37:ac:50:a4:c7:d6:d8:a6:cb:
53:b8:3c:41:12:eb:c9:63:94:81:d1:91:34:3e:01:
eb:6b:bd:87:69:78:7c:36:73:24:dc:ca:7a:b0:2a:
88:3b:b2:26:16:ad:c1:6b:4b:81:4d:fa:11:3a:7b:
55:92:e7:4b:24:19:aa:73:f0:b7:4f:f0:4a:63:bb:
19:73:20:2f:59:1d:5c:65:d3:b3:a4:94:e3:5a:3a:
f6:05:d0:15:79:c2:d0:58:ca:d4:ff:1a:e2:28:76:
73:88:29:b7:d4:94:30:a7:3f:0e:3c:c1:3a:be:75:
62:04:23:eb:8c:7a:e4:f8:31:ed:a9:57:20:be:6f:
55:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:63:85:A0:87:AD:96:8D:91:6D:DB:F7:C6:7D:FB:FF:23:4D:F6:E1
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/oWOFoIetlo2Rbdv3xn37_yNN9uE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.187.0.0/16
Signature Algorithm: sha256WithRSAEncryption
85:c0:bc:04:3e:74:79:87:24:17:90:4c:5d:f5:8b:bd:3f:f6:
b8:ca:28:93:d4:1e:d8:df:75:bf:75:64:43:71:03:61:2b:63:
e7:22:7f:c2:3b:45:5f:6a:a6:ca:e0:50:14:8a:d9:af:12:b9:
e0:32:db:d7:6b:c5:ae:4e:7d:51:39:9c:0c:e3:87:25:17:d4:
a3:80:ce:2d:dc:e7:0d:2b:1c:96:f9:30:25:dc:fa:99:2a:00:
46:cb:13:7b:d2:cd:02:9a:06:21:92:5c:0d:74:7f:77:3b:71:
ab:14:92:8d:ba:09:3b:2f:96:b4:bd:2d:07:2b:ab:3c:36:a0:
0b:73:78:8d:89:80:ab:cf:e1:1f:42:ce:bf:ad:ef:87:02:0f:
4e:31:79:a2:f6:b9:45:4c:bb:44:ba:0e:f5:90:0f:56:90:06:
5f:83:ea:c5:8f:b8:9b:dc:83:ee:a5:32:4f:6c:de:10:35:0b:
10:48:b8:38:16:2a:73:5e:db:a6:aa:7c:17:de:cd:67:9e:ad:
07:97:4a:75:c3:57:63:22:c2:20:33:7b:90:1f:f6:cd:57:9b:
7b:ba:f8:cf:ba:2c:ed:f6:94:04:86:78:f0:a4:10:b8:4e:96:
b7:cf:b5:30:7e:b9:a2:91:a2:c0:7c:bf:f3:1a:80:7a:a8:81:
eb:5d:e5:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:56 2023 by rpki-client on console-fra.rpki-client.org