Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/pr0QBH4w_FV2JmafziMOWfbdx5Q.roa
File: pr0QBH4w_FV2JmafziMOWfbdx5Q.roa (raw, json)
Hash identifier: jj6uutF/UAartvjEf5HHkGgHSoHjt4t78V8VonLB7Yo=
Subject key identifier: A6:BD:10:04:7E:30:FC:55:76:26:66:9F:CE:23:0E:59:F6:DD:C7:94
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0E0A
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/pr0QBH4w_FV2JmafziMOWfbdx5Q.roa
Signing time: Wed 29 Sep 2021 02:39:53 +0000
ROA not before: Wed 29 Sep 2021 02:39:53 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24154
IP address blocks: 222.156.246.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3594 (0xe0a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:39:53 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=A6BD10047E30FC557626669FCE230E59F6DDC794
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:df:67:0d:57:55:c1:9b:9f:02:cf:97:64:54:
09:ce:67:70:7f:6d:d9:6e:db:d0:3a:34:2d:49:fd:
8a:0a:f3:ee:87:04:f3:a8:fc:d7:e0:30:4c:f5:2a:
51:9b:23:04:65:eb:44:df:dc:9a:f7:4a:19:40:9e:
3c:3b:b1:3d:fe:e9:fe:dc:3b:e1:a1:f0:5d:28:01:
24:4b:01:4c:5c:66:60:5d:0a:ad:2a:4d:f3:2f:58:
68:a0:7e:f6:df:25:a7:47:2a:8a:5c:96:8e:ba:0d:
21:a7:3d:68:3f:ca:76:61:f4:ea:9b:23:8b:94:24:
4f:14:ca:b9:64:46:d7:7a:ae:d4:0b:33:34:a6:be:
6a:c3:31:c8:57:bc:b5:24:21:53:2c:1e:f4:85:5f:
0e:a2:41:e2:8a:ae:38:88:53:4c:9f:86:a6:4a:0b:
19:22:06:4b:9b:62:72:51:c7:9c:08:30:3a:b3:07:
ad:1f:9a:dd:54:58:3b:63:54:68:84:e0:63:5e:5b:
90:e2:d1:88:dd:62:fc:d9:7d:d6:28:4c:b8:41:41:
0b:32:93:e4:1c:d0:eb:e5:cb:59:d8:fd:29:ac:1e:
9d:13:a3:18:d9:06:21:f3:c5:ab:1d:80:b2:fc:ee:
d8:c8:40:9b:09:99:70:83:6d:24:00:df:b9:3f:54:
63:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:BD:10:04:7E:30:FC:55:76:26:66:9F:CE:23:0E:59:F6:DD:C7:94
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/pr0QBH4w_FV2JmafziMOWfbdx5Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
222.156.246.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:20:b8:15:f4:d2:a0:39:8b:62:42:38:e5:2d:f4:74:99:86:
c8:f1:19:60:c4:51:92:8b:28:02:16:c0:2f:55:f2:ff:00:88:
7b:43:30:c7:53:a1:0c:f3:2c:76:8f:ca:2e:e7:28:13:c2:9a:
fa:ad:d6:7e:e0:34:ea:be:dc:9d:ab:0e:21:64:9b:52:e4:da:
08:38:91:86:f4:0b:ad:98:57:65:5a:ad:7f:8a:cf:00:f3:83:
09:0e:49:00:46:1f:d0:3b:c5:d7:7b:b8:22:5d:95:29:0f:b0:
5f:b0:cd:ec:6b:c0:3c:13:82:27:75:01:77:66:37:df:10:99:
0b:8c:40:0f:81:fb:55:89:36:e0:58:d9:12:f4:73:00:12:79:
e7:3a:80:41:72:ff:cc:ee:7d:6d:4c:f0:94:3d:1d:8d:02:98:
f0:27:eb:d1:2c:e4:a6:04:db:59:2e:f0:2c:53:2d:b9:9b:df:
eb:8f:29:fa:6e:ab:8a:88:1b:22:ba:57:e5:17:40:a6:63:9a:
57:ca:b1:21:34:17:57:86:01:23:f7:f9:14:4d:d3:84:cc:e6:
3f:bf:12:0f:4e:89:6d:91:4c:67:42:42:06:53:9d:86:26:49:
fd:21:13:94:47:a9:41:8d:24:29:8e:7b:dd:b2:2c:11:cb:81:
6b:d3:bc:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:56 2023 by rpki-client on console-fra.rpki-client.org