Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/q-S0kw-QLv7DdTv9cPmV04H4T8c.roa
File: q-S0kw-QLv7DdTv9cPmV04H4T8c.roa (raw, json)
Hash identifier: w77TN2ciVeexMKPR08IBVgchKhlbuEcjhAnzybj6mFk=
Subject key identifier: AB:E4:B4:93:0F:90:2E:FE:C3:75:3B:FD:70:F9:95:D3:81:F8:4F:C7
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0DB4
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/q-S0kw-QLv7DdTv9cPmV04H4T8c.roa
Signing time: Wed 29 Sep 2021 02:39:27 +0000
ROA not before: Wed 29 Sep 2021 02:39:27 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24155
IP address blocks: 203.207.32.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3508 (0xdb4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:39:27 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=ABE4B4930F902EFEC3753BFD70F995D381F84FC7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:77:b5:94:7b:93:2b:3b:25:fc:3a:22:0d:1c:
b0:b3:be:a9:08:5f:01:fe:f2:12:43:c7:1c:d0:63:
2c:08:b0:26:4b:af:be:74:14:05:6a:f8:c1:19:8a:
32:dc:cd:d5:36:f9:ab:2f:3e:02:d2:ba:5e:01:d7:
c6:02:86:dc:c3:fc:a7:3c:b2:b3:fa:2f:16:4e:c0:
63:07:dc:3c:78:f4:85:df:0f:13:b0:ee:1d:37:6c:
ca:6a:58:c6:d5:c7:cc:b3:59:74:d9:19:c9:c6:24:
2c:c6:82:fe:8f:8e:b9:3c:05:ec:23:c7:ee:6f:0d:
d7:2b:f5:78:cf:ba:06:b8:78:3b:65:0a:5e:32:fe:
e4:37:d3:49:f7:6e:50:68:31:ee:ec:54:0f:01:a2:
00:46:40:7a:68:59:59:07:1f:88:04:7e:da:c0:9f:
68:da:e1:40:63:4b:69:10:f9:1f:fa:08:2b:1c:85:
83:dc:a1:ab:8f:c5:32:ad:f5:85:05:c2:06:5b:d3:
86:3a:a6:f2:6b:44:f7:83:1a:6e:81:74:ca:9b:04:
d2:a2:05:72:c5:e6:d9:27:53:16:23:19:6d:45:2c:
07:32:f0:d9:89:0a:11:8e:79:c2:73:a8:fd:9d:83:
76:94:96:b6:9f:e2:25:8b:c7:2a:e2:fe:e9:ab:96:
2d:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:E4:B4:93:0F:90:2E:FE:C3:75:3B:FD:70:F9:95:D3:81:F8:4F:C7
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/q-S0kw-QLv7DdTv9cPmV04H4T8c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.207.32.0/20
Signature Algorithm: sha256WithRSAEncryption
17:e4:4a:90:a6:40:ff:28:8d:ed:45:8b:17:58:7a:b6:da:c1:
b1:bb:95:ad:96:a7:a4:d2:26:b5:f2:0a:cc:2e:89:87:a8:60:
97:95:89:9a:1a:e2:42:d5:c7:ac:e2:e6:d9:c7:a0:f7:73:8e:
42:ed:ba:30:3c:01:41:bf:27:43:ab:da:f6:f6:c5:6b:63:30:
ee:6c:66:b7:6c:d9:b2:be:65:0b:b8:47:96:3f:6c:85:45:f8:
31:8d:6d:32:6c:ab:13:14:c6:43:3c:69:4c:79:09:42:e8:5d:
87:72:6c:89:10:32:63:8c:6f:1b:fb:9b:d8:09:94:f1:d0:23:
9b:6d:7c:e2:d1:a4:ee:06:5d:18:d5:c7:06:93:55:8a:c0:fd:
2f:02:6a:77:d4:56:00:5f:93:af:6d:1d:2b:95:7c:ae:bb:7e:
0c:63:fc:3d:67:6f:87:c9:a6:6b:8c:89:5c:22:b0:0a:26:16:
9e:d0:d3:6e:c5:f4:c0:54:be:77:7b:7a:cc:ba:69:1a:37:5f:
c5:04:cc:1c:0a:c9:2f:88:f8:f5:db:b6:43:9d:42:da:00:58:
aa:10:a2:e7:92:c0:95:3a:c2:f1:58:56:77:1b:af:7c:ab:7f:
a4:77:fb:ef:47:6e:c5:5f:37:86:70:4f:14:43:48:de:c8:af:
69:aa:17:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:46 2023 by rpki-client on console-ams.rpki-client.org