Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/-YFB3s-ijJA5jNzAMO1M9Sm_I2k.roa
File: -YFB3s-ijJA5jNzAMO1M9Sm_I2k.roa (raw, json)
Hash identifier: 5aQcEb5zo0hqBBFGhXeEV7Izsc2U953OFtB7JZu0KCs=
Subject key identifier: F9:81:41:DE:CF:A2:8C:90:39:8C:DC:C0:30:ED:4C:F5:29:BF:23:69
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 08DD
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-YFB3s-ijJA5jNzAMO1M9Sm_I2k.roa
Signing time: Tue 29 Sep 2020 10:01:10 +0000
ROA not before: Tue 29 Sep 2020 10:01:10 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24154
IP address blocks: 60.244.64.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2269 (0x8dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:10 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F98141DECFA28C90398CDCC030ED4CF529BF2369
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:9b:09:c5:1f:67:73:05:9f:5c:f1:7d:23:fb:
5e:56:48:9a:a0:ce:90:15:be:21:bb:9a:85:6d:e6:
2b:e2:2b:0d:8f:67:77:70:d7:42:f2:18:55:09:4d:
fd:5e:e8:e8:41:fc:e3:8b:53:67:a3:8b:54:63:42:
9a:2f:9d:00:69:4e:ed:1e:14:f3:79:4e:d1:3f:57:
60:be:28:94:08:b7:2b:c6:89:2d:7e:c4:a6:f3:79:
b7:39:95:ec:6c:67:f0:09:6b:7b:ac:a3:9b:3d:15:
58:a9:95:e8:26:39:d8:1d:92:30:9f:ba:31:60:b7:
a1:1a:e6:a1:fc:6d:c4:d1:a4:ee:40:6b:e8:95:18:
b3:e3:84:82:0f:de:c8:3a:c9:a1:1a:c4:16:c7:14:
69:22:ee:25:06:21:16:c8:75:ef:53:b2:de:52:3a:
8c:7a:0c:a0:c6:f8:d8:32:c7:cf:0c:fd:e1:43:55:
f0:ed:2d:24:24:65:2e:3f:6e:f0:4e:0d:c2:53:10:
f8:21:43:ee:82:51:51:77:c8:45:e8:47:59:3f:e8:
92:a0:be:93:a8:43:1a:43:6e:4d:c7:fe:92:81:10:
e7:eb:d1:48:9b:71:42:86:66:00:fb:d3:db:7c:4b:
8f:f0:70:44:35:23:25:80:12:a8:92:04:a6:27:22:
ea:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:81:41:DE:CF:A2:8C:90:39:8C:DC:C0:30:ED:4C:F5:29:BF:23:69
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-YFB3s-ijJA5jNzAMO1M9Sm_I2k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.244.64.0/18
Signature Algorithm: sha256WithRSAEncryption
8e:84:22:c2:6c:74:93:1d:d6:b3:e7:0a:7e:b8:1a:ca:65:16:
ed:0f:36:d0:62:66:16:7c:9a:e8:3b:c3:39:cc:7c:3b:9f:75:
99:88:5a:55:a9:91:94:37:05:bb:17:7e:7c:50:cc:73:5d:ca:
93:55:a9:91:0b:40:58:36:4a:2c:44:fa:9f:d0:34:0b:02:82:
e5:ff:da:50:08:a2:72:eb:61:b3:55:f2:95:86:72:ed:d7:a9:
e9:9b:85:88:b6:b6:92:b3:a4:9a:ee:08:00:95:73:1e:56:c6:
f4:7d:20:c9:d1:56:bc:b1:8a:9b:7c:0d:c6:b4:22:3f:2e:3e:
9f:2d:0e:94:d0:d0:01:34:5c:91:ee:35:a2:99:60:5e:46:4b:
aa:6d:e2:10:6a:41:84:d7:ee:d7:ac:cf:cf:1f:db:8e:93:4e:
09:ce:e3:75:b1:4c:36:b1:1a:24:a0:f7:23:72:63:d4:8f:e8:
fc:f2:02:ba:63:5a:89:6a:a3:8f:01:79:b2:29:ad:9b:8b:38:
33:0a:c7:4b:70:66:89:cc:41:52:31:10:45:c0:f4:f4:36:e6:
c2:13:ff:30:b2:52:3c:e8:fc:6e:01:32:3f:fb:fe:b0:8c:48:
67:e1:65:05:b2:25:a1:cd:aa:fa:2a:48:ed:df:19:b5:41:bc:
ea:77:95:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:43 2023 by rpki-client on console-ams.rpki-client.org