Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/rcwhgoZ0fiSBT77Zo0qvrqTKY2w.roa
File: rcwhgoZ0fiSBT77Zo0qvrqTKY2w.roa (raw, json)
Hash identifier: euiY3WX3jirhKjCcw290FMirpN6tB1g3BtWoUUjXcHI=
Subject key identifier: AD:CC:21:82:86:74:7E:24:81:4F:BE:D9:A3:4A:AF:AE:A4:CA:63:6C
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 097E
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/rcwhgoZ0fiSBT77Zo0qvrqTKY2w.roa
Signing time: Tue 29 Sep 2020 10:01:54 +0000
ROA not before: Tue 29 Sep 2020 10:01:54 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24154
IP address blocks: 124.219.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2430 (0x97e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:54 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=ADCC218286747E24814FBED9A34AAFAEA4CA636C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:f5:1d:d7:cf:02:37:24:5e:fa:17:8b:58:a7:
bf:8a:00:50:4c:ea:84:9c:cd:79:55:9d:0f:0d:ac:
22:59:27:09:86:c0:03:ec:92:b5:46:cc:01:68:50:
a2:2f:0a:50:d2:08:37:c2:1e:24:df:05:c2:d7:07:
c4:ee:e1:c9:32:77:92:9e:4a:b9:76:9d:2c:9c:0d:
d8:69:10:a2:14:9a:64:40:a6:a5:e3:dc:6c:13:35:
41:61:28:39:25:d2:95:75:07:b5:67:9a:49:96:11:
4b:29:50:43:b2:20:bd:49:52:06:90:0f:1d:ae:7e:
4e:e4:36:1d:78:22:34:67:2d:a4:8d:f3:ff:05:8f:
dd:81:4e:96:85:54:f1:f4:4a:e2:dc:a3:5e:f4:d5:
8a:79:ef:5d:9b:3f:93:40:9f:4f:58:d7:89:df:36:
8e:ed:30:b7:bf:08:d0:7c:8d:ac:13:10:d2:fe:76:
e8:33:06:f2:81:c1:d8:e8:1c:de:96:a9:90:fa:c0:
45:e7:aa:6c:0f:5b:7a:e3:25:43:9f:53:35:0a:69:
30:23:07:ea:5e:b3:9c:70:7e:31:b5:a9:5f:c5:9c:
c4:cb:dc:9d:b7:6e:78:e0:a9:33:dc:fd:64:97:4e:
34:b2:25:06:1a:2a:d8:99:6b:5a:8a:d2:ee:26:ae:
2f:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:CC:21:82:86:74:7E:24:81:4F:BE:D9:A3:4A:AF:AE:A4:CA:63:6C
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/rcwhgoZ0fiSBT77Zo0qvrqTKY2w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.219.0.0/17
Signature Algorithm: sha256WithRSAEncryption
79:8b:59:f1:8f:03:19:7a:b0:e8:9c:49:9a:f7:2d:f3:92:d1:
99:04:0d:74:59:38:ec:1d:6b:20:76:80:f7:d2:17:2b:7d:a9:
08:e4:c0:b9:e4:20:da:b0:86:39:3c:2d:b7:07:02:e2:1c:e9:
0f:b8:83:c2:18:73:1c:d6:ef:47:7d:f7:f6:4c:0b:9b:48:33:
b2:22:81:eb:30:52:4d:a4:9b:20:ad:1a:75:38:eb:b5:60:40:
6f:4e:7f:18:d7:c4:54:6f:fc:25:3b:2e:21:c9:dd:83:e5:25:
ac:a9:a0:ef:a2:27:d5:42:e0:28:3a:69:98:c6:1a:e1:ad:e7:
ca:f3:7e:87:05:42:6f:25:cc:62:1c:11:9b:9b:92:20:50:63:
cc:cb:6e:f2:4f:96:95:0f:46:4a:aa:29:eb:45:65:83:03:c2:
7c:a9:c7:66:f7:e2:74:a4:7c:0d:f3:d1:19:12:1b:d6:9d:27:
64:19:71:98:25:cb:d1:de:97:12:4f:8a:97:6a:9b:aa:10:09:
e3:38:01:b2:ad:ce:d1:c8:71:31:53:de:ab:8e:42:b4:4b:4a:
e0:81:d6:91:92:1a:13:45:7a:e5:34:d8:10:77:f5:de:4a:cf:
b9:54:c5:f9:6f:c3:1b:9b:9d:7a:9d:f9:d2:40:60:56:c1:38:
7c:71:5a:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:56 2023 by rpki-client on console-fra.rpki-client.org