Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/BbWtLHXPX-egyRXhOqXO1vec7LA.roa
File: BbWtLHXPX-egyRXhOqXO1vec7LA.roa (raw, json)
Hash identifier: mytGBOkiytr6KktF/+eLYtWr4w5/CXA6qT57tBDATA0=
Subject key identifier: 05:B5:AD:2C:75:CF:5F:E7:A0:C9:15:E1:3A:A5:CE:D6:F7:9C:EC:B0
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0E51
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/BbWtLHXPX-egyRXhOqXO1vec7LA.roa
Signing time: Wed 29 Sep 2021 02:40:14 +0000
ROA not before: Wed 29 Sep 2021 02:40:14 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131591
IP address blocks: 223.22.32.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3665 (0xe51)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:40:14 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=05B5AD2C75CF5FE7A0C915E13AA5CED6F79CECB0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:cf:3b:59:95:f1:4f:85:e6:44:8d:37:c3:fb:
28:da:27:7b:5c:59:1a:1e:fc:25:21:66:f3:7f:97:
e6:be:38:df:44:16:4c:72:13:f8:29:c5:70:37:99:
2f:b2:d3:b0:f2:0b:ea:8e:f7:63:0a:5e:8f:ea:a2:
a5:3d:5e:3d:61:88:8b:c0:3f:48:a8:0c:9a:67:02:
1b:6a:30:81:fc:12:9a:50:08:e5:aa:b9:5d:ab:44:
e7:06:29:42:9f:17:b3:18:0d:47:69:82:10:17:71:
54:21:9c:2c:78:52:4d:22:4d:17:78:91:b5:49:44:
81:21:8a:5c:db:1c:14:d7:b9:f4:0e:29:23:cb:50:
b5:45:12:00:9b:10:d8:81:57:98:d1:d5:fd:f9:c3:
0f:b6:46:b5:99:f9:6d:5c:96:62:48:16:7c:c1:6e:
be:d4:fe:51:5e:1b:ed:a2:5a:01:0e:70:72:fe:f6:
72:f0:36:fb:cb:19:43:bb:ed:90:47:a8:bd:3a:49:
86:7a:fd:b6:4d:11:71:d7:db:c4:98:4c:e6:de:e0:
da:2e:ce:9a:8c:33:91:53:54:4f:1d:f0:4a:fe:70:
f4:88:40:94:86:fc:28:ef:4c:b4:e2:60:19:93:be:
6e:16:03:04:9a:83:92:99:3e:f3:93:19:2c:53:53:
11:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:B5:AD:2C:75:CF:5F:E7:A0:C9:15:E1:3A:A5:CE:D6:F7:9C:EC:B0
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/BbWtLHXPX-egyRXhOqXO1vec7LA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.22.32.0/19
Signature Algorithm: sha256WithRSAEncryption
40:0f:5e:af:d3:2c:4b:1d:50:5a:b0:59:b8:c1:ce:59:86:df:
21:3c:aa:c7:87:21:62:cd:fa:96:96:30:5c:5c:55:ec:39:35:
2c:50:83:d4:2e:ab:30:18:8b:38:92:ea:c9:76:47:d3:b2:44:
b9:a3:f9:71:3a:96:3b:ff:97:62:27:83:40:f6:a4:26:41:56:
f6:7d:f1:8c:33:31:af:30:fc:f0:05:bb:09:d9:8c:ea:0f:1d:
1c:b8:7f:2a:52:0a:79:39:6f:7a:67:5a:e4:d1:3f:cc:38:a6:
44:ab:54:da:1c:c3:80:ee:e1:b7:bd:f7:e9:21:1d:af:0a:25:
d6:8a:73:27:1c:5e:02:cf:1b:7f:a6:c2:3f:61:c7:14:d0:4d:
71:6a:76:71:7a:b7:16:25:ba:98:fa:d8:96:a2:91:58:5a:41:
a5:cb:7b:d6:2c:24:db:0f:1d:6c:de:0a:21:78:b1:2d:1b:67:
32:4e:18:0e:73:bf:d2:6d:89:7c:40:af:e4:65:95:fe:98:ab:
34:b6:0e:39:05:0f:9e:14:34:6f:9c:4e:94:94:68:fe:22:16:
af:d2:44:be:03:7c:fd:3f:50:47:3f:47:84:f2:37:3a:e9:4a:
cc:99:82:7d:3f:1b:a8:91:84:aa:1f:19:1f:83:1e:28:7a:22:
84:16:2b:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:54 2023 by rpki-client on console-fra.rpki-client.org