Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/-GDTgHCbocUM4lf3FRP_hw-1abI.roa
File: -GDTgHCbocUM4lf3FRP_hw-1abI.roa (raw, json)
Hash identifier: Mf1XpCjHDS/q+pe7RnCjNReeGTkzMyAOcmNucbsewWM=
Subject key identifier: F8:60:D3:80:70:9B:A1:C5:0C:E2:57:F7:15:13:FF:87:0F:B5:69:B2
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 08F6
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-GDTgHCbocUM4lf3FRP_hw-1abI.roa
Signing time: Tue 29 Sep 2020 10:01:17 +0000
ROA not before: Tue 29 Sep 2020 10:01:17 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17709
IP address blocks: 43.240.104.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2294 (0x8f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:17 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F860D380709BA1C50CE257F71513FF870FB569B2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:e6:39:8e:9d:56:dc:29:0a:86:e1:a9:0c:dd:
dc:ae:9c:b9:15:2e:3e:da:a3:39:f2:63:e9:9f:bc:
68:b9:35:61:57:e1:22:15:28:ec:13:21:33:8f:12:
65:3a:ce:3f:08:e0:15:02:d2:3f:67:ce:a3:2d:7f:
6e:58:08:50:d8:ae:48:2b:df:96:06:d0:b2:9c:fc:
9e:1d:84:c6:8b:49:69:6d:75:35:0e:8d:55:68:f6:
e9:ff:a7:a7:07:6f:6f:de:da:4a:4f:56:82:18:68:
90:5a:88:99:11:84:2f:e4:72:32:b4:8c:6c:61:87:
fa:82:b8:ac:1b:da:a7:4f:61:c6:47:4d:02:7d:be:
4d:18:b0:46:9f:3a:ca:30:2d:02:4e:c0:86:29:11:
3a:e3:38:a1:e2:b8:ad:46:df:8c:f2:a1:d7:db:77:
1e:f7:e9:8f:4e:13:fb:2e:93:a3:34:5c:46:fd:fe:
f4:0c:34:ae:ef:8c:ab:06:28:58:d0:b1:13:d9:54:
1d:fd:77:b0:68:6f:7a:78:96:9f:10:1f:b8:5a:5a:
00:2a:4b:98:9c:08:79:b9:f5:db:22:f1:7f:00:76:
8c:57:23:00:c9:dc:8e:e6:da:8b:40:ab:62:e1:ee:
ec:bb:25:2f:d5:4b:ff:3e:4a:18:b3:da:af:1b:97:
66:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:60:D3:80:70:9B:A1:C5:0C:E2:57:F7:15:13:FF:87:0F:B5:69:B2
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-GDTgHCbocUM4lf3FRP_hw-1abI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.240.104.0/22
Signature Algorithm: sha256WithRSAEncryption
3b:33:8b:09:36:ce:2c:e1:ab:38:c9:65:09:e7:df:a2:8e:27:
49:8d:68:b8:e2:13:65:f3:a3:cc:d5:df:3e:bb:9f:7c:e3:cf:
97:36:ae:8e:1d:d1:1d:e5:5e:f8:cb:f2:e7:4f:d1:e0:f2:cd:
35:f1:a3:e6:09:24:bc:2b:ae:a2:c4:06:42:5e:0d:b5:c5:6c:
e8:1c:4a:dd:d4:d1:5f:37:0a:bd:a7:56:70:2a:ef:7c:24:6f:
02:0a:86:83:57:c2:d1:38:a6:4f:0b:39:c6:e7:3f:eb:1a:7c:
6e:26:97:71:8f:82:29:f7:28:67:88:85:02:e5:3b:55:4f:fa:
a1:30:d8:f1:68:57:b4:67:b8:4c:e5:f8:14:dd:c2:d3:ec:0d:
e8:83:5b:4c:8c:0e:f3:f5:f6:b7:b2:a1:96:e5:36:0b:cc:9a:
8c:c7:e3:0a:d5:24:ef:17:e1:4e:17:9f:bd:c7:75:b3:e1:38:
86:5e:1a:30:b0:18:3f:49:4c:e9:e7:80:52:26:63:91:cb:52:
5f:4a:57:48:ce:da:27:9e:3a:35:46:55:7d:33:37:73:d9:b9:
e8:6e:ba:46:b2:5b:16:7c:d2:74:21:e3:3c:4b:bd:6d:d2:d4:
8d:12:82:83:6c:78:f5:8d:8f:23:df:56:b1:ff:3b:7d:e3:06:
55:a9:e9:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:53 2023 by rpki-client on console-fra.rpki-client.org