Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/vlpya-0Fq6YUmWAv7Wv3ClBSZAg.roa
File: vlpya-0Fq6YUmWAv7Wv3ClBSZAg.roa (raw, json)
Hash identifier: iV3vHj/1VGsph3gUdkLofm8yKk4ntwEsejXiozdpsQs=
Subject key identifier: BE:5A:72:6B:ED:05:AB:A6:14:99:60:2F:ED:6B:F7:0A:50:52:64:08
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0903
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/vlpya-0Fq6YUmWAv7Wv3ClBSZAg.roa
Signing time: Tue 29 Sep 2020 10:01:21 +0000
ROA not before: Tue 29 Sep 2020 10:01:21 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17709
IP address blocks: 210.201.72.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2307 (0x903)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:21 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=BE5A726BED05ABA61499602FED6BF70A50526408
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:14:83:99:f2:b3:be:33:97:26:88:b2:2c:78:
61:ba:ef:6b:85:47:21:01:df:ef:26:e7:df:ba:45:
8d:6a:8b:eb:6d:7e:44:fa:48:ad:c8:45:eb:5c:bd:
ed:6e:db:10:63:37:bf:da:5b:d7:11:05:23:51:03:
81:e3:c3:8a:9a:54:cf:39:42:01:7f:3e:e8:59:39:
85:f7:75:24:65:44:80:a5:90:b0:00:4e:ca:82:54:
96:0d:b5:52:c1:10:b4:d9:d1:b8:cc:38:93:38:8c:
3e:59:3a:66:7c:6a:d9:64:53:86:f5:9b:f5:b8:2d:
58:d9:54:2f:fa:45:4b:27:f7:72:05:ac:17:1b:e5:
64:50:89:9d:3f:6d:9c:6f:53:ef:69:97:1e:4a:86:
cb:7a:79:3b:32:c7:d9:59:dd:61:e5:23:7c:77:6a:
bb:2f:1e:bf:cc:37:c9:6a:80:da:7b:6e:d9:87:95:
cb:26:91:d6:c3:7e:5b:b3:98:f7:0b:6c:9c:f8:4b:
76:d0:04:34:f8:51:a4:66:57:a1:44:e8:f3:bd:72:
61:70:75:be:62:b1:bf:8f:d4:70:4f:40:fc:52:30:
45:a7:59:97:76:35:f6:7b:67:1e:c7:79:44:5b:d1:
10:3a:1a:07:db:b6:20:3e:dc:3c:6a:00:01:60:7a:
b4:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:5A:72:6B:ED:05:AB:A6:14:99:60:2F:ED:6B:F7:0A:50:52:64:08
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/vlpya-0Fq6YUmWAv7Wv3ClBSZAg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.201.72.0/24
Signature Algorithm: sha256WithRSAEncryption
48:ea:55:e0:95:fc:f6:54:79:99:01:fe:2e:fa:71:f1:85:60:
b9:c7:4f:b5:e5:7d:03:73:8c:88:03:68:01:eb:1d:a9:e0:dc:
74:2a:54:8a:c4:96:a3:38:c7:30:9e:9d:45:d1:d0:42:2f:3c:
9d:4c:f0:3d:26:b3:55:0c:a2:73:93:53:04:fa:5d:d6:0b:55:
1f:cf:f6:4c:e8:d7:48:d9:88:88:71:55:75:ff:7b:3e:42:b8:
48:06:2c:23:33:88:e2:2d:23:bc:4a:4a:5a:d5:b8:ae:ee:6c:
b8:59:9d:f3:0b:33:1b:55:f1:a8:83:50:54:bb:fa:cb:a8:10:
47:d1:4e:f7:19:8c:75:dd:69:8b:0f:cd:b7:39:b4:85:dd:28:
f9:b0:95:8e:96:b5:bf:46:3c:66:ab:a9:da:39:a1:94:29:88:
13:b9:b7:5e:fb:ec:bd:00:17:24:02:01:84:f1:fa:55:fc:c1:
0c:d4:65:0e:64:f7:6e:e7:4a:0e:0e:71:4d:65:88:a8:10:89:
86:a2:a7:51:34:f8:55:e3:68:80:0b:aa:e7:80:52:58:f5:cc:
ba:f4:be:01:d4:c3:e8:56:1f:9e:89:e8:22:3e:5f:6c:27:d0:
6a:18:5a:8c:75:1a:18:4e:a7:0b:31:72:87:0f:0f:0d:7a:f8:
ea:22:1e:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:46 2023 by rpki-client on console-ams.rpki-client.org