Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/wDR3CGjXGbDCv-rBVSaAYuKqa0s.roa
File: wDR3CGjXGbDCv-rBVSaAYuKqa0s.roa (raw, json)
Hash identifier: pEsBEPZsw9StD2QyjyHo4f4s982vQdduWxV8w9K5mco=
Subject key identifier: C0:34:77:08:68:D7:19:B0:C2:BF:EA:C1:55:26:80:62:E2:AA:6B:4B
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0E26
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/wDR3CGjXGbDCv-rBVSaAYuKqa0s.roa
Signing time: Wed 29 Sep 2021 02:40:01 +0000
ROA not before: Wed 29 Sep 2021 02:40:01 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 7482
IP address blocks: 218.184.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3622 (0xe26)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:40:01 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=C034770868D719B0C2BFEAC155268062E2AA6B4B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:86:44:ec:a9:09:53:c6:60:0b:b2:79:42:69:
06:65:52:3b:8b:d5:bc:d6:d2:00:d8:e9:be:66:f4:
b2:5e:15:29:ae:61:93:c2:03:fa:b7:f2:04:49:bb:
19:38:37:3c:70:3e:2d:b6:c8:67:13:9a:61:c1:da:
89:ea:ff:14:cd:70:7e:7a:17:6b:54:cf:93:c6:90:
2d:74:48:a4:01:5c:22:67:87:9d:13:62:38:27:4e:
d5:6f:3c:83:1b:f6:c1:a7:63:65:b2:e9:90:fc:89:
6c:fd:78:4d:26:7a:bd:16:3f:d2:8b:7d:2d:1d:d0:
d8:5d:5d:23:f5:94:12:ff:62:de:1b:46:5b:09:7c:
00:95:94:21:c7:14:56:ac:0f:6b:c1:62:b1:72:3d:
07:30:d8:08:4c:ad:2b:2b:fc:b6:43:27:2e:bc:56:
47:11:a6:9c:49:bc:cd:40:e9:bf:60:8c:44:6f:50:
10:58:db:61:af:24:58:4f:98:bb:99:ce:bf:d8:ac:
c1:44:4d:d9:1f:19:26:a4:52:40:0c:f2:d3:51:6c:
38:db:a0:2e:dd:72:8e:38:23:a0:77:74:e3:b7:da:
ed:81:96:72:c1:71:77:1c:b3:94:94:b3:0a:30:21:
c3:30:c2:a5:d6:77:8c:6a:58:63:cb:3c:04:68:df:
bf:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:34:77:08:68:D7:19:B0:C2:BF:EA:C1:55:26:80:62:E2:AA:6B:4B
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/wDR3CGjXGbDCv-rBVSaAYuKqa0s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.184.0.0/16
Signature Algorithm: sha256WithRSAEncryption
88:a7:91:bd:d1:74:26:71:09:61:8c:8f:a6:f4:da:7a:6d:2c:
7b:97:e0:56:7d:dd:7d:f7:78:6c:b9:6b:ca:19:42:f2:0b:80:
5b:13:c2:15:22:39:ee:ab:85:5a:6e:b7:6b:ea:10:56:ac:50:
52:3f:30:1f:0d:a2:f6:f2:c2:8c:bd:97:19:17:da:cf:d2:4d:
7d:2a:4f:3c:bf:76:9e:e5:34:43:9b:00:ce:d8:43:c3:f1:7e:
66:22:3a:8c:d8:a9:67:19:01:af:48:17:a5:c5:c1:a1:0f:e2:
08:cf:4c:23:d3:42:9d:95:e4:cb:44:4e:f5:08:69:c2:5f:8c:
40:64:3a:df:05:5c:84:7f:6c:a5:0e:d4:fd:21:dd:fc:26:40:
3f:07:84:36:f2:51:3c:47:fa:0c:c9:db:d4:0f:42:a7:d2:1f:
d0:ac:03:18:1c:b1:25:1f:80:02:38:aa:d3:a6:3e:5e:30:39:
52:63:17:1b:87:3b:13:47:3e:ff:46:49:85:9f:46:97:81:2a:
86:34:80:ef:b6:c2:3e:b7:2a:30:15:13:48:3d:12:17:1c:98:
9b:1d:c2:03:6c:58:c1:17:c5:f0:80:d6:05:6a:40:b6:a4:c5:
9e:ba:f9:d6:0c:db:cc:c2:92:24:24:62:d7:69:5f:f6:8d:70:
46:d7:41:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:46 2023 by rpki-client on console-ams.rpki-client.org