Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/vsCFzLA-hZ6o6zAHWu_4EcxLsJA.roa
File: vsCFzLA-hZ6o6zAHWu_4EcxLsJA.roa (raw, json)
Hash identifier: Dv6dq38SYUg0Hiv77gnu1m7I425YrdyopQmwavC0jyE=
Subject key identifier: BE:C0:85:CC:B0:3E:85:9E:A8:EB:30:07:5A:EF:F8:11:CC:4B:B0:90
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0CDB
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/vsCFzLA-hZ6o6zAHWu_4EcxLsJA.roa
Signing time: Sun 07 Feb 2021 13:00:45 +0000
ROA not before: Sun 07 Feb 2021 13:00:45 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17709
IP address blocks: 210.203.48.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3291 (0xcdb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 13:00:45 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=BEC085CCB03E859EA8EB30075AEFF811CC4BB090
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:7b:2c:e1:76:af:54:9b:36:37:70:ae:8e:65:
15:97:71:1c:a7:bb:d3:72:b5:4b:09:1d:e2:d2:5e:
f5:21:b9:9b:3a:aa:6a:6f:70:96:5d:96:50:35:15:
c9:e8:e1:d4:45:16:08:7a:c8:6c:0b:6c:35:39:af:
0c:26:74:9b:f2:d7:f5:94:9c:4f:a3:d2:c0:e3:9a:
56:9a:39:b0:6c:48:d4:71:fd:aa:af:91:50:bf:4f:
83:82:9f:9a:fe:38:a1:b4:81:e5:01:50:7c:b7:15:
a9:7f:42:9d:83:5b:16:d7:e1:17:56:2c:be:04:07:
7c:fc:75:05:a3:bd:95:01:f6:dc:06:39:c5:37:b1:
02:6a:43:3c:9d:20:77:69:35:33:e2:90:f4:4f:e9:
b4:c9:c8:d8:71:e0:4c:82:76:1f:41:8c:4a:67:13:
03:cf:58:9a:50:5a:1a:35:b9:3a:be:78:57:df:bf:
5b:71:bd:2c:a1:30:cb:8f:c5:37:f9:db:21:aa:2b:
52:a2:bc:ca:af:17:0c:71:f1:79:06:6d:0b:5d:13:
c0:0a:ac:a0:d9:da:80:5a:00:10:eb:e5:cd:e1:9a:
e0:c8:ad:48:a9:29:1a:39:96:ff:f2:b3:6f:41:a9:
0d:ca:6a:ad:46:ce:dc:a4:2c:e2:92:86:0a:5b:81:
f0:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:C0:85:CC:B0:3E:85:9E:A8:EB:30:07:5A:EF:F8:11:CC:4B:B0:90
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/vsCFzLA-hZ6o6zAHWu_4EcxLsJA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.203.48.0/20
Signature Algorithm: sha256WithRSAEncryption
0e:d6:e0:6b:6f:e3:8c:77:f8:0c:cf:16:0a:60:5f:75:a8:40:
56:80:80:fe:11:cc:cb:d0:2b:e1:a5:cd:90:28:ec:73:59:18:
74:3d:cb:28:b6:dc:07:2b:54:e8:14:97:de:cd:33:12:dc:e3:
0c:5b:1b:7c:c0:83:70:18:16:bb:52:df:cc:f3:4f:3d:34:ce:
c8:5f:98:85:48:b8:37:a1:a5:12:9f:f7:bb:f1:c6:7d:6c:16:
62:9e:a8:b1:95:ad:c4:f4:a2:ae:3a:15:84:60:c1:9b:1b:fb:
02:4f:9d:a3:ec:f4:60:db:a3:e0:b7:00:d7:a7:36:b4:aa:10:
8f:90:34:9f:17:67:28:28:f4:9a:d2:a9:6f:87:61:73:97:16:
ab:3c:4e:66:28:e1:0b:bd:74:0a:e6:09:d3:41:0b:f8:65:ea:
48:5d:72:e5:5c:37:c5:79:92:ed:b1:7e:04:e8:3e:a7:32:06:
33:a2:d4:cc:19:18:d4:dd:a3:88:01:89:4b:29:46:f7:90:5c:
cd:58:9f:20:f3:1e:9e:da:e5:de:9b:6e:4b:54:5b:09:69:89:
bb:1d:c3:47:22:90:11:b9:68:04:c8:00:d5:ee:a2:d7:17:8e:
04:e0:11:2b:6b:b6:c2:60:2a:b1:a5:bc:9d:06:e5:92:a5:7c:
93:73:8b:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:46 2023 by rpki-client on console-ams.rpki-client.org