Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/pI5iSczVUbZsgCxuajl_JvXh8Iw.roa
File: pI5iSczVUbZsgCxuajl_JvXh8Iw.roa (raw, json)
Hash identifier: R7T9oAmAZPwfbZUs5n8NGbisfVrRpKZuXkBfR6M+x68=
Subject key identifier: A4:8E:62:49:CC:D5:51:B6:6C:80:2C:6E:6A:39:7F:26:F5:E1:F0:8C
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0C1D
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/pI5iSczVUbZsgCxuajl_JvXh8Iw.roa
Signing time: Sun 07 Feb 2021 11:34:56 +0000
ROA not before: Sun 07 Feb 2021 11:34:56 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24154
IP address blocks: 210.202.192.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3101 (0xc1d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:34:56 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A48E6249CCD551B66C802C6E6A397F26F5E1F08C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:4f:fd:b5:d5:3c:6d:30:bc:2a:1e:5e:2a:dd:
0b:e9:20:0a:be:e3:41:ac:8f:ea:41:c8:4b:5d:b2:
aa:6e:d9:61:ba:de:4c:2a:65:3f:2b:35:cd:99:6f:
cb:3a:f4:8c:93:3b:7a:1d:23:a8:51:1b:a5:72:9f:
17:a7:ce:b8:c4:3a:07:dd:6d:0d:22:8e:96:7b:73:
1f:b1:1a:7b:58:43:5c:42:65:8e:43:44:42:75:76:
06:f8:20:25:39:09:b4:26:0e:3a:18:40:71:59:69:
b1:55:70:ec:a4:c6:b1:56:0f:75:cb:db:df:63:31:
6f:25:27:ef:37:ab:1b:bf:80:77:0a:c9:b8:75:fb:
91:e9:73:8a:a9:24:4d:92:cc:43:39:df:bf:30:51:
64:80:71:9d:5b:7f:9d:9b:39:96:55:a4:57:bc:12:
0d:55:3c:e9:be:0d:d6:da:73:ba:9c:29:51:7f:85:
ac:03:4d:4d:a9:7e:f3:17:16:0b:9a:3f:ab:73:80:
36:a3:a0:12:d2:de:be:f6:18:18:7e:95:43:24:c7:
74:d3:47:74:cc:91:2c:64:38:44:ef:9d:91:42:3a:
3d:f4:32:83:42:9f:b6:dc:68:68:e8:d6:c7:13:11:
90:21:4b:11:2f:83:93:07:2d:c9:43:44:ff:3f:ad:
a5:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:8E:62:49:CC:D5:51:B6:6C:80:2C:6E:6A:39:7F:26:F5:E1:F0:8C
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/pI5iSczVUbZsgCxuajl_JvXh8Iw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.202.192.0/18
Signature Algorithm: sha256WithRSAEncryption
75:bf:56:33:0f:ac:88:be:55:75:a5:81:67:d8:b6:47:33:32:
c5:ed:c0:83:4b:5f:af:bb:28:02:6c:a1:eb:5d:56:ba:0a:34:
06:38:35:c3:6c:ba:c6:7a:1d:6c:85:14:0a:5e:b5:4a:74:0c:
42:d9:3b:76:ef:cb:5f:05:90:be:4a:bd:fe:1b:44:f2:ec:35:
b8:00:1a:ea:c4:03:6d:5d:1c:68:6d:3d:38:6f:12:dc:36:f2:
44:a1:82:ac:14:37:5c:49:81:b6:bb:67:6c:c5:5f:fc:85:69:
8e:d6:10:5c:6f:84:b4:0a:e9:a8:ff:80:61:3f:18:25:af:44:
3a:e0:ff:d0:18:b6:e3:55:9c:2f:9a:db:3f:82:4f:41:bf:9d:
5a:71:c5:25:35:f5:17:e9:cd:5e:85:92:32:d7:27:cb:15:dd:
f3:82:39:79:db:19:85:3a:54:57:f9:68:28:58:71:92:e0:c2:
75:67:6c:25:53:e1:b7:d0:8d:1e:81:0b:e3:73:54:80:77:17:
01:e5:ec:bd:63:72:63:44:d4:07:a2:2f:e4:f8:3e:76:d7:4d:
55:7a:89:3a:b9:26:f8:af:15:a6:3d:c6:d6:4f:e1:ac:d4:a2:
bf:3e:37:23:1f:72:a1:6d:34:e9:36:dd:a5:19:ba:39:75:f4:
78:6e:c9:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:46 2023 by rpki-client on console-ams.rpki-client.org