Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/p2Y4mVE2fOKvBBzuUvUQVmX9jFI.roa
File: p2Y4mVE2fOKvBBzuUvUQVmX9jFI.roa (raw, json)
Hash identifier: xR8/kmafLLY7KbIOa6vzy39GoXmgrEPCkfVHrVF/dpo=
Subject key identifier: A7:66:38:99:51:36:7C:E2:AF:04:1C:EE:52:F5:10:56:65:FD:8C:52
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0918
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/p2Y4mVE2fOKvBBzuUvUQVmX9jFI.roa
Signing time: Tue 29 Sep 2020 10:01:27 +0000
ROA not before: Tue 29 Sep 2020 10:01:27 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24154
IP address blocks: 210.200.85.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2328 (0x918)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:27 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A766389951367CE2AF041CEE52F5105665FD8C52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:89:5e:a8:1e:bf:26:47:21:d9:bc:84:75:72:
6e:6f:bd:98:29:99:9f:e0:ed:17:db:29:39:6b:20:
47:60:a8:dd:2c:e9:f1:06:91:3d:e0:51:5e:11:db:
06:a0:a3:6e:a0:29:a7:91:a5:ae:3a:ea:c8:38:99:
7d:84:cb:62:24:e5:c0:66:48:0d:f8:99:c2:50:45:
ab:f6:83:69:39:5a:de:9a:2e:dd:eb:2a:81:ca:23:
0b:48:97:d2:38:04:b9:b0:b7:b5:ec:49:8e:a8:c6:
b2:44:ea:ae:f7:be:d3:b4:c3:08:21:99:f8:ab:10:
c6:89:0f:76:7f:e0:22:dc:c2:ff:69:56:9b:70:41:
e0:5f:38:5a:17:a6:c5:2d:cb:15:0c:cb:d7:bb:03:
cb:b4:49:b2:54:47:53:4e:a1:5d:02:60:71:0f:c2:
21:e9:85:84:4b:75:92:e4:f7:54:53:95:6c:fa:58:
20:4a:e9:2e:cb:a1:28:15:13:b9:26:4d:27:dc:41:
92:51:7e:12:54:7e:66:88:63:7b:08:be:21:1e:f6:
27:24:fe:71:ea:df:b6:6a:45:f5:cf:bc:ce:76:cf:
01:80:40:9c:0f:6f:f3:8d:fc:65:61:b5:d8:20:7e:
00:2f:da:f0:cb:dd:23:b3:40:1c:58:e6:cd:9e:9e:
1a:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:66:38:99:51:36:7C:E2:AF:04:1C:EE:52:F5:10:56:65:FD:8C:52
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/p2Y4mVE2fOKvBBzuUvUQVmX9jFI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.85.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:2f:f7:c4:b7:8d:53:d1:f2:fa:80:ce:7d:c6:b4:fc:32:43:
b7:ad:b0:b0:7b:ea:04:9e:2d:28:c1:1e:e2:1d:04:96:85:da:
da:f3:bc:50:e6:6a:ba:09:07:6b:0a:45:9e:b2:e5:15:c7:d8:
37:7a:70:87:70:fe:89:b9:ef:d1:50:e5:ab:30:74:cd:2b:7f:
df:f5:4d:63:51:2a:fd:dc:3e:5f:a0:4f:ec:90:34:fa:46:34:
7f:b6:15:f1:bf:23:3b:ab:2a:6b:99:ba:9b:ad:46:39:cd:6e:
e2:cb:ec:28:52:53:19:a5:ac:d4:3f:58:16:9e:83:6f:14:ee:
57:1f:29:9e:24:22:f9:be:67:02:4e:01:65:b8:4e:bd:56:ee:
6e:1a:35:67:84:11:af:42:8b:eb:a9:49:03:67:fc:e8:d7:39:
01:21:19:68:0f:49:fd:ac:da:c3:54:cc:41:58:4e:79:ad:4b:
6d:5a:d1:c8:82:df:de:1c:9f:9f:5b:46:6e:3d:76:a3:95:e4:
02:c4:06:dd:d7:6d:e2:f9:9c:f0:5f:7d:d8:2c:fc:36:69:37:
72:05:16:40:f8:4e:45:b1:a1:c6:8a:bb:3b:23:2d:03:d2:87:
e5:bf:b9:c0:35:9f:28:d0:4e:3a:21:64:25:3a:76:ef:9e:71:
4f:1e:04:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:56 2023 by rpki-client on console-fra.rpki-client.org