Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/1Fu_YvRgZsX-9Px-gPOWzjL1C98.roa
File: 1Fu_YvRgZsX-9Px-gPOWzjL1C98.roa (raw, json)
Hash identifier: 8PGITttZ02WoBSpbr5fNJ/QqOlbjcHujYe0ZODGvyng=
Subject key identifier: D4:5B:BF:62:F4:60:66:C5:FE:F4:FC:7E:80:F3:96:CE:32:F5:0B:DF
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0CA7
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/1Fu_YvRgZsX-9Px-gPOWzjL1C98.roa
Signing time: Sun 07 Feb 2021 11:50:15 +0000
ROA not before: Sun 07 Feb 2021 11:50:15 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131627
IP address blocks: 219.91.64.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3239 (0xca7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:50:15 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D45BBF62F46066C5FEF4FC7E80F396CE32F50BDF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:40:ab:2e:c8:6e:31:05:7d:82:8c:4f:11:7c:
5c:db:c1:a3:01:53:87:28:43:e2:c9:3a:7d:ea:dc:
42:db:1d:26:18:d9:13:59:12:02:83:f3:c4:b4:24:
48:2a:25:71:b1:27:5c:2e:6e:e6:58:43:06:ef:af:
29:fc:1d:5e:30:0d:59:bb:e2:24:d7:08:5d:88:d4:
00:0b:f9:18:e0:91:14:f4:6e:6c:65:dc:ef:c5:b3:
a3:ca:ba:34:67:7d:89:20:33:cf:28:2d:d0:ff:c5:
86:3d:f5:12:c3:b1:2c:bc:59:07:55:01:fe:43:ee:
01:37:11:a9:95:91:fd:2a:12:82:40:e9:ab:63:3c:
44:59:c4:e5:ea:e8:04:72:0f:e9:40:93:1f:b1:3b:
32:dd:dc:7b:38:ea:f7:aa:38:53:6b:7d:59:c6:26:
1f:4c:25:47:51:9b:98:b2:14:20:d6:cc:e9:df:94:
37:64:71:3e:98:b4:78:9f:71:af:d4:e3:cb:9c:5e:
7a:d0:9d:8b:28:37:fb:b0:b3:93:f9:c1:7b:bf:38:
09:58:0b:c2:8d:99:dc:2f:60:de:09:e6:1a:93:bb:
95:d9:bf:6c:0e:3a:0f:2c:57:f9:39:ca:97:75:3e:
84:76:e8:cf:17:b3:85:cc:53:64:44:74:a8:e4:02:
61:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:5B:BF:62:F4:60:66:C5:FE:F4:FC:7E:80:F3:96:CE:32:F5:0B:DF
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/1Fu_YvRgZsX-9Px-gPOWzjL1C98.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
219.91.64.0/18
Signature Algorithm: sha256WithRSAEncryption
74:37:4d:43:7b:6a:88:0b:ac:e3:86:b0:c5:09:4e:96:f7:75:
eb:fe:40:4d:87:1e:15:0c:83:8b:77:74:5d:29:88:4a:65:00:
b1:ad:db:45:c1:e2:ea:88:97:03:64:f2:03:a0:64:e6:b2:d3:
4a:fd:ed:c0:7f:0a:4e:f4:64:45:37:af:d7:0d:d0:94:41:6e:
0d:f9:6f:8d:fd:87:8b:a8:1e:25:a9:1c:e3:f0:a3:e3:6e:31:
d3:5e:36:0f:67:93:6a:cc:18:d9:c2:4b:83:74:98:71:cb:71:
9c:7e:37:f4:87:7b:5f:45:93:82:ca:3d:bb:e7:17:fc:e9:80:
70:45:74:cb:6c:87:9b:ee:e4:39:87:26:3d:b5:a3:b5:00:38:
64:05:34:9f:13:85:94:6c:a8:8f:d4:0e:73:2c:0a:38:1b:1f:
dd:5f:69:0c:a2:c3:f5:37:03:05:3d:ba:c3:79:82:27:e6:54:
73:9f:50:20:55:0c:4d:87:c7:f3:63:04:73:13:56:6b:64:45:
e7:b4:c5:b2:d0:0e:ca:3a:63:c8:81:53:4d:1f:07:82:e4:98:
8f:40:fe:6f:83:01:07:00:79:1f:5f:57:41:b3:9f:87:ce:ba:
3d:de:67:ee:dc:48:56:c4:21:bd:20:ae:58:28:45:ad:c8:7d:
67:71:f8:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:53 2023 by rpki-client on console-fra.rpki-client.org