Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/wW485Qj54tmChIQgTBtGp2U-ges.roa
File: wW485Qj54tmChIQgTBtGp2U-ges.roa (raw, json)
Hash identifier: C1M9/XzuqmeFRkyqA7H+4ErpX2cbiINhIdp8BQH2C4g=
Subject key identifier: C1:6E:3C:E5:08:F9:E2:D9:82:84:84:20:4C:1B:46:A7:65:3E:81:EB
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0E06
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/wW485Qj54tmChIQgTBtGp2U-ges.roa
Signing time: Wed 29 Sep 2021 02:39:52 +0000
ROA not before: Wed 29 Sep 2021 02:39:52 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 7482
IP address blocks: 218.35.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3590 (0xe06)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:39:52 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=C16E3CE508F9E2D9828484204C1B46A7653E81EB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:c9:ec:c0:12:1c:5c:6d:49:a3:02:52:52:6c:
36:61:20:1a:78:7a:9c:12:5a:ee:9a:a5:74:78:34:
21:ca:04:d7:3b:45:46:c9:3d:5a:99:77:bf:03:17:
57:08:e1:d7:af:d2:6c:a7:a3:74:9e:15:8f:f2:54:
6d:7b:6d:2e:4b:6f:d6:5e:e5:1e:ab:32:59:cd:f0:
6e:e5:46:2d:46:77:98:32:06:59:4a:b1:b6:9a:74:
ac:14:09:44:8d:de:f7:36:e1:07:6e:c7:41:a0:fd:
ff:fd:7e:74:76:7b:a1:02:8d:ae:54:88:5b:c2:04:
cd:e1:93:ed:b2:4a:56:c7:1e:df:f5:b2:f8:2c:a3:
dd:fd:38:bc:83:de:4b:60:2f:5d:b4:69:4f:08:37:
09:5d:67:a6:e9:aa:1c:cd:c5:96:c3:c1:da:65:6f:
48:f8:1d:a4:84:cd:60:db:a0:dc:e1:be:53:db:11:
7d:ea:49:fc:78:8c:97:82:53:a7:8a:78:0d:11:5a:
36:1f:46:2e:d1:d7:95:1d:5f:98:4d:c8:04:e3:26:
cb:1f:63:f0:73:c2:4d:73:4a:ce:8c:39:f2:f1:58:
14:87:95:ba:e6:0a:27:e4:f7:32:ae:18:4d:96:d9:
56:d8:3c:c0:17:39:86:d5:53:cb:68:5b:c9:ef:4c:
91:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:6E:3C:E5:08:F9:E2:D9:82:84:84:20:4C:1B:46:A7:65:3E:81:EB
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/wW485Qj54tmChIQgTBtGp2U-ges.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.35.0.0/16
Signature Algorithm: sha256WithRSAEncryption
b0:d8:ff:c3:f0:02:50:85:5f:da:c5:27:04:f9:c6:f7:ff:f1:
78:4c:b1:48:ad:96:48:c4:90:54:aa:34:e1:d3:31:09:07:90:
e9:35:5f:ad:46:8b:f0:0d:5e:0c:6b:cf:18:f1:a0:02:a0:69:
f0:1b:12:4b:89:85:29:f8:be:e1:b7:d9:95:00:19:53:58:9f:
4a:6b:4d:27:40:78:a1:82:a0:3c:9e:ce:f0:da:a2:23:08:c1:
ad:1a:1b:ec:bb:ab:3e:e7:3a:6a:0d:1a:0e:c2:32:53:fd:f6:
31:79:2b:18:c1:7c:b8:e7:fa:b7:be:f7:b8:d1:05:72:d4:a0:
4d:c4:22:e8:ef:0d:a9:3a:4b:96:48:25:92:2e:b4:33:2a:86:
f0:92:fe:b4:98:54:2d:bf:7f:ac:df:95:d0:d2:5c:b2:f4:9d:
da:bf:37:c2:bc:a5:bf:2c:cd:8a:a3:7a:45:31:62:e3:10:5a:
e4:b4:17:e8:dd:a1:04:7a:88:28:fc:15:90:81:a0:9f:01:1c:
f4:33:8b:d9:06:f2:92:26:f2:c4:e1:f9:0d:3a:f7:8b:e6:bd:
1f:cd:74:94:38:d6:b6:d6:28:fb:33:57:aa:93:92:5e:24:82:
59:54:1a:22:7c:84:0a:96:f6:1c:11:97:c1:6a:44:fa:b4:fb:
fb:d5:6b:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:46 2023 by rpki-client on console-ams.rpki-client.org