Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/xa1RFzc3XHfUdns_J_AbSlxD634.roa
File: xa1RFzc3XHfUdns_J_AbSlxD634.roa (raw, json)
Hash identifier: XfUNHpIAvC0vYQ5khPPHc6ymXKVV9IpACkUpgo2c4sg=
Subject key identifier: C5:AD:51:17:37:37:5C:77:D4:76:7B:3F:27:F0:1B:4A:5C:43:EB:7E
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 093D
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/xa1RFzc3XHfUdns_J_AbSlxD634.roa
Signing time: Tue 29 Sep 2020 10:01:37 +0000
ROA not before: Tue 29 Sep 2020 10:01:37 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 7482
IP address blocks: 219.91.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2365 (0x93d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:37 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C5AD511737375C77D4767B3F27F01B4A5C43EB7E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:4f:3d:ab:7c:db:a3:b0:16:99:9f:33:90:2c:
7f:f2:43:0b:76:30:5f:59:64:9e:2e:a8:16:12:ec:
6f:81:b9:62:e5:6a:73:6a:ea:ae:de:2f:4f:5c:ab:
7e:f0:6a:f2:53:0b:a1:25:ec:1e:43:70:93:6b:10:
a2:5e:63:e4:b1:81:7f:0d:92:05:cd:df:b7:ff:6a:
49:5c:86:f0:28:98:14:d8:c2:2b:b5:ac:3b:af:b6:
fa:38:29:93:43:23:4b:76:9e:ca:67:5f:ac:d9:8b:
0d:f1:9b:d7:f2:17:b8:e3:6d:c9:7f:a3:72:c9:c2:
15:90:4d:98:86:d1:ba:92:77:15:6c:04:0d:8e:2b:
42:ad:fc:30:82:e7:47:b5:61:0a:70:c6:33:61:3a:
72:82:53:9f:56:4e:b6:3e:61:51:95:cd:7d:f2:ba:
a3:9a:0c:24:33:9b:02:6c:c1:e8:16:5e:54:c6:7e:
ae:8d:58:4e:25:1f:8b:22:08:78:0e:53:72:50:d1:
5b:d6:b9:39:6f:69:6e:dc:06:93:29:31:bd:bb:d9:
6d:bf:b5:c5:60:c7:3f:2d:21:1d:fb:5e:5a:23:8e:
0e:35:ca:40:a4:3d:50:0f:57:15:6f:54:c2:05:f3:
90:09:29:66:d3:6e:a9:b4:30:04:93:d6:83:56:15:
3b:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:AD:51:17:37:37:5C:77:D4:76:7B:3F:27:F0:1B:4A:5C:43:EB:7E
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/xa1RFzc3XHfUdns_J_AbSlxD634.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
219.91.0.0/17
Signature Algorithm: sha256WithRSAEncryption
9b:c5:2f:bf:58:1a:fc:e1:29:a0:ca:ca:d3:d7:6f:31:1e:bc:
a4:37:27:f7:b6:79:f4:1e:1c:c9:23:97:68:a1:ff:a2:9d:f2:
f8:76:b7:26:4a:6f:5a:fb:8f:f5:b2:5b:6b:76:c6:b0:d7:7d:
c3:3f:91:03:03:49:d8:a9:a8:76:0d:b7:16:8d:b2:8d:ff:43:
5e:4b:f7:3e:a3:d5:50:51:fa:fc:2f:8d:7f:3c:db:03:a3:ff:
e8:30:b5:bd:21:b4:00:22:d4:df:63:59:45:85:6e:de:31:ff:
18:10:22:5c:ae:67:f2:8e:85:3d:04:fb:c5:c1:eb:28:ee:c9:
0f:1d:5f:98:f2:e4:18:9e:64:b9:dc:c0:0b:47:f6:ed:79:9f:
67:c7:c2:c5:1f:85:94:44:5c:0e:07:32:b1:53:42:7e:42:cf:
d8:bc:9b:4d:9d:5c:f3:3a:62:cf:d0:ca:72:b1:e0:35:68:8f:
06:67:e2:2c:42:2d:11:78:fb:47:ff:e8:c3:32:1a:dc:93:99:
8e:12:70:3b:41:30:9c:f0:f3:0d:6a:9f:4f:99:d5:fd:e1:c2:
cf:c9:b9:04:61:77:d1:a9:d8:86:a7:72:35:29:95:71:77:c0:
ef:35:f0:5f:5d:96:d6:50:6f:ea:a8:af:43:15:48:b4:ee:52:
07:0f:ee:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:46 2023 by rpki-client on console-ams.rpki-client.org