Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/AOXGkmGW3izqqFt_NT6lHAJua0Q.roa
File: AOXGkmGW3izqqFt_NT6lHAJua0Q.roa (raw, json)
Hash identifier: pv0POeNgMtmi9rszRHSLrDpPt+X8uNnF5BUPMqn0pRo=
Subject key identifier: 00:E5:C6:92:61:96:DE:2C:EA:A8:5B:7F:35:3E:A5:1C:02:6E:6B:44
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0DA5
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/AOXGkmGW3izqqFt_NT6lHAJua0Q.roa
Signing time: Wed 29 Sep 2021 02:39:23 +0000
ROA not before: Wed 29 Sep 2021 02:39:23 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17709
IP address blocks: 43.240.104.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3493 (0xda5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:39:23 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=00E5C6926196DE2CEAA85B7F353EA51C026E6B44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:56:5d:b8:31:b0:e9:54:08:e0:03:1c:03:78:
58:6a:a7:7f:1a:e4:37:86:59:9b:49:e4:a3:92:d9:
04:aa:f9:3b:e3:ae:9a:84:c6:c9:83:cf:3c:16:93:
47:5e:e0:6d:fb:e1:39:44:3d:6f:a0:05:5e:78:c1:
9d:aa:48:d8:18:43:b0:b6:4f:b8:5d:a7:22:73:e1:
99:06:17:d3:64:00:9f:7e:20:6c:70:bb:1a:ee:20:
f6:2b:d9:34:cb:5a:e0:30:d3:b0:80:e6:1c:ce:dd:
fd:09:66:2a:ad:fd:3a:19:4e:9c:b9:2d:b3:14:4a:
21:12:2e:12:74:b5:3a:e8:fa:57:76:e9:ca:6e:dc:
c6:b6:e1:83:11:bb:83:08:07:29:37:f6:55:14:d5:
ba:96:22:c4:0c:44:35:c1:81:c9:79:33:77:bf:c3:
2e:64:ec:36:7e:f0:0c:85:4f:b4:8d:dd:9f:23:50:
8e:0a:0d:50:9d:76:2e:c3:fb:8b:d4:c0:0c:f4:e4:
89:c3:da:0f:b2:d7:34:0a:3c:aa:9b:d7:5a:ec:a7:
f9:3c:1d:f9:70:8a:b9:9f:e6:89:09:e8:a4:a1:59:
4a:07:33:f4:59:ea:5e:90:c2:6b:08:14:4d:d7:3c:
8e:de:7a:ab:48:cf:9f:65:10:79:ed:fe:74:c3:48:
a9:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:E5:C6:92:61:96:DE:2C:EA:A8:5B:7F:35:3E:A5:1C:02:6E:6B:44
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/AOXGkmGW3izqqFt_NT6lHAJua0Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.240.104.0/22
Signature Algorithm: sha256WithRSAEncryption
1d:28:8d:21:f4:f2:c1:5c:b4:be:35:36:f6:8d:d7:a7:3a:d5:
69:3b:de:ef:46:d0:a3:05:84:6a:c2:0a:e8:1c:03:b2:42:92:
da:8a:f4:2b:ee:b4:9c:39:a2:5b:bb:56:45:76:50:42:ba:20:
f1:0a:a7:05:ad:46:c6:45:06:78:b7:52:fe:c7:77:e5:26:ae:
67:39:17:07:1e:1d:24:83:4f:47:f3:98:3a:83:92:0d:4d:25:
f8:46:5f:54:ba:ae:7d:88:22:9d:a9:5b:f9:4c:17:e4:93:a2:
19:81:66:d0:72:ed:72:49:02:9b:64:05:26:0a:58:e7:1e:ba:
4e:c7:11:26:f5:d7:d3:02:88:51:b2:08:55:1b:e9:6f:19:c8:
ae:06:d3:81:36:a6:82:f7:04:5f:1b:19:ac:58:06:f8:a1:9b:
73:4f:ab:3d:5a:a2:c0:d6:53:0a:d9:97:03:2a:ca:57:e4:7a:
8f:17:c1:2e:a3:84:cc:7d:b1:89:3b:79:0e:78:bb:66:db:19:
95:b1:97:af:3a:21:bd:83:dc:ea:2f:b5:06:7e:08:01:14:2a:
ad:43:b9:65:3d:0b:85:4c:da:c5:40:24:2c:6a:c9:31:8e:95:
29:c2:c4:56:8d:12:90:34:e1:06:47:3d:55:1a:d3:07:45:e6:
5f:c8:52:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:54 2023 by rpki-client on console-fra.rpki-client.org