Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/prng1AcIiQYFMZgN9Y8ETsde3zU.roa
File: prng1AcIiQYFMZgN9Y8ETsde3zU.roa (raw, json)
Hash identifier: ltB6Hwd/kc6ZOFbiDQEPNn6gXYjwlGVoZEBysEql12s=
Subject key identifier: A6:B9:E0:D4:07:08:89:06:05:31:98:0D:F5:8F:04:4E:C7:5E:DF:35
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0DD6
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/prng1AcIiQYFMZgN9Y8ETsde3zU.roa
Signing time: Wed 29 Sep 2021 02:39:37 +0000
ROA not before: Wed 29 Sep 2021 02:39:37 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17709
IP address blocks: 210.200.148.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3542 (0xdd6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:39:37 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=A6B9E0D4070889060531980DF58F044EC75EDF35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:99:a5:06:93:ee:0e:52:fb:8e:19:62:60:07:
40:53:9e:f1:a8:89:af:7d:25:3c:3a:78:be:bf:af:
60:d6:52:87:50:fd:32:62:3d:36:20:9f:fe:81:f9:
b2:87:86:37:cd:67:8e:6d:a3:75:2b:58:65:8b:46:
4e:34:f3:79:5f:77:8e:e3:21:1f:3d:4d:44:87:ad:
d0:fc:42:3c:4c:b2:f6:12:7b:2d:80:bc:b0:71:fa:
80:4e:3b:92:3f:9b:22:8c:54:df:37:c8:73:92:53:
f6:da:d7:c8:78:0c:81:16:d6:a1:b6:41:76:95:ec:
2e:08:37:59:ba:31:c7:ca:5a:e7:48:35:eb:f2:aa:
b4:e7:ca:6d:b7:af:7f:5f:41:28:aa:c7:bc:ba:8c:
a4:2c:7c:b6:76:7a:8c:62:13:cd:44:05:b0:2b:0c:
8a:e8:e5:64:3b:7d:ee:35:16:2a:49:65:f1:f9:57:
74:7c:9d:1e:3e:02:a4:1d:91:0e:8e:fa:1e:1f:27:
4d:c9:cc:a1:b2:0d:5c:0d:db:9d:c5:0b:80:17:e7:
d0:46:cf:8b:95:05:ec:d7:29:f5:91:a8:c6:05:b7:
c4:a0:33:a6:a9:1c:99:a9:3b:fa:9e:06:d9:7c:7d:
9e:52:94:d7:85:09:88:f2:08:e1:0e:4c:63:e4:39:
c7:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:B9:E0:D4:07:08:89:06:05:31:98:0D:F5:8F:04:4E:C7:5E:DF:35
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/prng1AcIiQYFMZgN9Y8ETsde3zU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.148.0/22
Signature Algorithm: sha256WithRSAEncryption
38:1e:39:4f:57:8c:3f:65:4e:d2:35:48:35:4e:7e:0b:98:a1:
20:0b:92:01:9e:0e:0e:14:0d:99:07:0b:e8:fa:18:a0:09:a1:
ea:65:22:f4:66:ea:f9:f5:a6:72:62:7a:63:3f:85:34:bd:5a:
47:d1:1a:65:22:80:54:07:20:df:5d:02:16:d5:33:41:ac:07:
74:da:d7:f9:f0:5d:7e:f2:c9:64:e5:5d:ae:0c:0f:4c:79:85:
c4:87:41:8b:73:e9:eb:40:09:a0:20:b9:02:37:6d:80:a9:8c:
d6:8f:5b:e3:6d:62:03:33:66:63:b3:40:ae:9a:40:e3:1d:79:
8d:2f:64:17:60:f2:84:af:da:e1:20:d0:dc:0e:9f:3c:d6:4f:
af:1e:d4:4b:f3:54:5f:ed:30:47:28:52:11:d8:26:d0:79:08:
50:2c:2e:33:e3:53:2c:0a:a7:ff:4c:dc:39:42:15:e1:26:67:
7d:02:52:0b:84:2e:35:cc:cd:71:51:c7:19:c7:42:f6:0d:94:
15:dc:bb:fc:6f:36:ef:c8:75:05:85:d3:d5:8f:40:c5:15:91:
fd:27:11:d1:ad:c9:c2:c0:8f:fd:16:08:ca:18:51:df:21:da:
5f:69:ef:76:95:b0:65:db:fc:8b:ed:5e:d5:30:a0:2a:b7:c0:
e0:4f:4b:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:46 2023 by rpki-client on console-ams.rpki-client.org