Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/sKLumGnw-J0MSbAZ9ovHPWEi29g.roa
File: sKLumGnw-J0MSbAZ9ovHPWEi29g.roa (raw, json)
Hash identifier: BosMkASU/WEVMLuxvIUjjzlIlsUm7wLDyEJSrHcqe+g=
Subject key identifier: B0:A2:EE:98:69:F0:F8:9D:0C:49:B0:19:F6:8B:C7:3D:61:22:DB:D8
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0E5B
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/sKLumGnw-J0MSbAZ9ovHPWEi29g.roa
Signing time: Wed 29 Sep 2021 02:40:16 +0000
ROA not before: Wed 29 Sep 2021 02:40:16 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17709
IP address blocks: 210.201.72.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3675 (0xe5b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:40:16 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=B0A2EE9869F0F89D0C49B019F68BC73D6122DBD8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:17:c9:97:27:da:db:92:d9:b6:28:b3:95:3f:
97:4e:b8:de:0e:04:db:12:8f:f3:46:ee:e1:d3:f9:
6f:25:53:da:b8:ec:b3:f1:63:d4:90:cb:85:89:87:
3a:1e:2b:bc:da:0e:18:6f:7e:d5:4d:4e:bf:f7:32:
71:fb:c9:bb:5e:8a:74:dc:12:f0:2a:1f:02:6b:2d:
8e:06:cf:0b:a8:04:d4:57:f1:b5:52:6c:46:aa:44:
0b:77:d2:14:08:14:db:0e:a8:2d:c5:9c:59:f4:e1:
30:2e:37:60:39:77:67:b1:57:15:0c:d9:72:4c:19:
33:95:71:94:45:f9:05:55:b9:52:94:93:a5:4f:f5:
b5:9c:c9:0d:be:ba:79:3d:99:a4:59:8e:1b:be:4e:
45:fb:12:c2:74:9e:f4:32:ff:57:d0:58:e3:07:50:
a4:53:8c:8b:63:83:df:2c:79:de:1b:dc:bc:40:2b:
6e:5d:f9:b9:67:72:73:e6:05:73:1d:d9:82:96:bf:
0f:97:8a:35:b8:1a:9e:df:60:b3:47:d2:d6:4d:83:
29:2b:18:a5:bf:83:e6:fe:55:19:7f:b3:a3:b0:f6:
f9:95:0b:83:12:8a:f9:0f:24:29:61:9d:0f:92:f5:
2c:1b:dd:dc:f4:97:fa:11:bc:db:4d:03:44:ba:c9:
50:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:A2:EE:98:69:F0:F8:9D:0C:49:B0:19:F6:8B:C7:3D:61:22:DB:D8
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/sKLumGnw-J0MSbAZ9ovHPWEi29g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.201.72.0/24
Signature Algorithm: sha256WithRSAEncryption
93:93:04:4c:71:6f:b1:0e:88:da:48:60:eb:97:38:c7:8a:26:
3f:39:9a:1b:4a:c6:22:77:26:9b:33:44:a7:d2:df:8b:52:92:
80:58:94:22:fa:ca:08:3e:f4:09:4c:ba:13:3a:66:e0:46:48:
c6:41:4c:e9:2e:09:4f:1f:a3:49:55:e8:f1:20:be:3f:0b:dd:
95:9e:49:c3:eb:44:2d:42:cd:c2:6d:13:62:29:6f:e3:26:e7:
d8:49:a2:f7:32:48:b2:f8:20:e8:bf:de:65:cf:f9:09:ca:a8:
d8:60:09:a7:9a:96:4c:86:dd:5a:ff:7f:8f:27:30:8d:70:49:
66:3a:fd:05:17:e5:d9:da:8b:52:e4:85:03:3a:a8:b4:6d:0a:
e8:20:a0:1b:d8:2a:e2:65:79:1d:1c:01:5b:f4:c3:fa:bd:70:
76:7a:43:3b:c0:af:d1:a4:3f:75:e7:34:93:9c:75:b0:c9:47:
e0:4f:aa:8b:ef:3c:51:cb:65:44:61:a1:f8:34:16:c0:bd:07:
f8:f2:04:85:a8:ff:b9:cb:c4:be:31:d9:89:f3:cf:2a:87:24:
6b:0e:95:fc:5f:22:46:74:49:90:98:69:9b:60:11:a9:1a:9c:
25:f5:8a:cd:b6:31:55:b0:e7:e7:b1:7a:c3:a5:30:33:b4:d5:
09:81:e0:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:56 2023 by rpki-client on console-fra.rpki-client.org