Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/vDhH4QSKGzlxCj55A0bDYLttL1A.roa
File: vDhH4QSKGzlxCj55A0bDYLttL1A.roa (raw, json)
Hash identifier: YVaN8ag1lrPI+5dZvjrqu2/h2f1OHj5rLL3JqFW3rxo=
Subject key identifier: BC:38:47:E1:04:8A:1B:39:71:0A:3E:79:03:46:C3:60:BB:6D:2F:50
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0DB2
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/vDhH4QSKGzlxCj55A0bDYLttL1A.roa
Signing time: Wed 29 Sep 2021 02:39:27 +0000
ROA not before: Wed 29 Sep 2021 02:39:27 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 7482
IP address blocks: 202.178.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3506 (0xdb2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:39:27 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=BC3847E1048A1B39710A3E790346C360BB6D2F50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:91:43:14:0c:c4:ba:cc:de:11:70:a1:62:97:
16:ab:d0:ac:d2:fc:6e:7d:c1:77:66:15:aa:81:10:
e4:61:56:d8:6e:67:51:fb:d1:da:f3:cc:33:62:95:
82:96:eb:5f:ef:38:a7:b5:29:b0:83:5b:a1:f6:78:
5f:49:78:1f:e5:c6:19:a1:14:71:2c:80:48:b1:f8:
3b:1e:9c:91:a4:4c:6a:f0:d8:4b:e3:76:46:55:66:
c9:05:44:48:46:7c:19:4f:0e:57:17:e7:ed:51:73:
90:48:dd:3f:8e:39:47:b4:0d:96:03:88:02:1a:b2:
43:44:91:44:a3:32:f8:9c:9a:86:86:c0:c6:27:04:
cc:db:25:f7:34:4a:64:72:6a:d2:ba:34:76:39:7c:
00:81:4d:9b:a5:4f:0b:5a:9f:cf:8d:b0:10:fe:65:
7a:b7:c5:cc:f2:6c:9b:76:40:92:bd:57:8f:a4:0b:
0f:10:66:1f:8b:a6:96:e5:c6:2d:b4:57:e7:d3:09:
e7:09:7f:71:f6:e0:32:48:69:8e:2d:67:a6:d3:36:
74:d4:18:63:cd:6c:96:49:8b:e7:30:9e:17:28:6a:
af:c0:7c:d3:d1:ac:c4:51:0c:97:d1:a5:50:68:0d:
3a:62:ae:17:89:58:12:ee:58:9e:da:f4:f7:f4:9e:
1c:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:38:47:E1:04:8A:1B:39:71:0A:3E:79:03:46:C3:60:BB:6D:2F:50
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/vDhH4QSKGzlxCj55A0bDYLttL1A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.178.128.0/17
Signature Algorithm: sha256WithRSAEncryption
66:a8:da:aa:de:d6:32:1b:bb:a3:a8:87:af:62:7f:c6:7c:21:
33:57:56:76:82:48:ef:9f:a8:3d:7c:6e:4d:a5:ff:3b:2a:1b:
a5:2a:be:49:7d:8c:6b:1f:8d:8d:a4:aa:22:a0:91:e7:f8:5d:
2d:89:a2:b4:26:7f:03:8a:69:a3:3d:48:3b:f9:26:84:b6:64:
48:17:f1:23:9d:3c:d7:b3:df:78:91:b1:69:33:6e:0a:dd:bd:
e0:73:46:e9:97:e3:34:95:21:66:7c:72:ee:be:aa:8b:c9:95:
7e:65:0e:50:eb:b3:06:71:7d:8e:b7:71:ce:fd:54:78:14:73:
bf:c3:7f:be:e9:ff:a7:1a:d0:26:f6:e0:8f:df:c3:f5:80:3a:
51:c1:f6:69:1d:7e:f5:88:b1:65:aa:61:7c:2e:55:87:4a:61:
01:10:a1:f0:93:d2:30:33:3e:f7:cf:7e:44:91:dd:44:83:5d:
e3:43:d9:47:b4:2f:b7:e2:3f:4f:0a:a8:95:d5:07:09:aa:1c:
f6:73:82:68:fb:18:02:27:a6:90:c7:71:9d:d8:79:c7:0d:3f:
fc:4a:39:4c:71:4f:fc:2a:28:46:fe:09:3f:07:6a:ae:aa:c3:
11:dc:fe:d4:ff:26:e0:a4:ce:40:49:c1:35:cf:0e:cc:ea:34:
dd:42:6f:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:46 2023 by rpki-client on console-ams.rpki-client.org