Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/ENnf6iWDOKSSgxvBLlQEtn5bueE.roa
File: ENnf6iWDOKSSgxvBLlQEtn5bueE.roa (raw, json)
Hash identifier: ABPQgGGe/s4pdDOoGNtyBBypTOnkFWMMPZ7zQXz4tZM=
Subject key identifier: 10:D9:DF:EA:25:83:38:A4:92:83:1B:C1:2E:54:04:B6:7E:5B:B9:E1
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0E3E
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/ENnf6iWDOKSSgxvBLlQEtn5bueE.roa
Signing time: Wed 29 Sep 2021 02:40:08 +0000
ROA not before: Wed 29 Sep 2021 02:40:08 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17709
IP address blocks: 2404::/26 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3646 (0xe3e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:40:08 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=10D9DFEA258338A492831BC12E5404B67E5BB9E1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:08:77:b1:39:6a:3d:1d:80:96:7b:91:a5:2e:
ae:60:b9:f4:91:59:f0:fa:e1:97:fe:a7:7d:29:e2:
b1:5c:8b:26:c0:2e:7c:15:5d:c4:20:c0:28:37:48:
b9:cf:8d:ab:fa:2b:79:76:93:62:67:84:b0:79:ab:
56:fe:b7:0c:cc:93:b9:4c:2d:75:63:01:7e:9a:2d:
f4:7d:e8:4a:bf:2d:d0:00:9a:4b:bc:51:5c:86:7a:
c1:36:5c:ba:42:74:ba:e9:df:ff:99:1c:90:ec:6d:
5e:76:5a:86:82:92:5c:80:f6:1e:05:79:3f:97:4f:
4c:02:30:4e:24:5f:cd:7a:88:51:42:fb:42:29:31:
3f:f3:81:3f:a4:2b:8a:4d:3f:d2:41:c6:56:73:e8:
4e:6f:1d:a7:ec:74:10:29:57:3e:35:f2:a2:22:14:
1d:e5:d6:58:07:c0:76:60:56:a5:6d:01:ef:6d:b0:
25:92:7c:c7:71:8d:f2:49:b9:45:bc:a9:13:a8:73:
9c:95:85:55:5a:7b:64:38:80:18:11:53:b2:35:86:
a2:b8:58:dc:12:62:6a:a2:87:a8:22:cb:fd:d3:71:
84:49:5f:3b:56:28:71:79:7e:90:b5:49:46:25:ed:
c1:a4:a3:9c:e5:c1:7a:c1:85:5a:a9:4b:0c:d8:50:
79:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:D9:DF:EA:25:83:38:A4:92:83:1B:C1:2E:54:04:B6:7E:5B:B9:E1
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/ENnf6iWDOKSSgxvBLlQEtn5bueE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404::/26
Signature Algorithm: sha256WithRSAEncryption
6b:bc:55:45:bc:a1:00:b0:ed:e1:7a:2d:b3:60:72:a4:a8:28:
f8:3f:11:d7:8e:a8:8c:17:ad:c3:c0:60:a0:fc:ff:10:57:e7:
1c:e4:5e:bf:b1:d4:74:4b:81:39:0a:05:33:8c:0f:22:dd:75:
01:e3:45:c8:b6:02:07:d7:ae:ac:e4:7b:0d:7d:23:96:79:44:
3a:e3:c3:66:ad:07:61:b3:76:e1:3d:4a:74:fd:bd:88:3b:4a:
0d:24:26:0f:da:6e:af:e5:5d:c5:3d:43:d8:42:95:bc:74:2a:
5e:4c:e2:89:b6:f4:ca:8b:47:87:a7:e6:45:9e:c9:bb:d0:42:
5d:16:5a:32:05:ac:f9:67:33:96:7f:0c:ae:08:ef:f9:77:74:
b5:83:b6:5b:72:e5:b2:c8:35:43:a7:cd:99:ea:d9:5e:9d:12:
2c:0b:7a:fd:64:6c:aa:5b:7d:74:1a:21:4f:bc:64:34:b6:d6:
4f:00:f0:8f:a7:02:e4:d4:ea:25:de:60:4d:61:df:f9:ce:d0:
1b:b8:f7:38:01:3e:7e:41:b7:4c:20:6f:a3:e8:b4:e3:17:d6:
0f:82:3f:2e:01:81:62:e8:68:5d:17:71:a6:c1:37:b4:0b:c8:
f7:01:24:3e:03:6c:bf:a9:8a:94:81:ec:0e:36:07:4a:c9:0b:
9c:3a:c0:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:54 2023 by rpki-client on console-fra.rpki-client.org