Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/F8KPj9OOzcPgkhSLc8JVmzmi9vU.roa
File: F8KPj9OOzcPgkhSLc8JVmzmi9vU.roa (raw, json)
Hash identifier: cmfll/kAv2ZE1KdDtFuPYrFU4QVytFIOFpGeI1jA4bQ=
Subject key identifier: 17:C2:8F:8F:D3:8E:CD:C3:E0:92:14:8B:73:C2:55:9B:39:A2:F6:F5
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0E31
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/F8KPj9OOzcPgkhSLc8JVmzmi9vU.roa
Signing time: Wed 29 Sep 2021 02:40:04 +0000
ROA not before: Wed 29 Sep 2021 02:40:04 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17709
IP address blocks: 223.22.0.0/15 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3633 (0xe31)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:40:04 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=17C28F8FD38ECDC3E092148B73C2559B39A2F6F5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:53:52:cc:7c:01:40:b6:36:06:8e:8e:ec:7f:
51:dd:64:18:6f:f9:ae:ca:ad:c5:96:81:7c:bd:a6:
e5:48:31:52:27:45:4d:87:81:ef:8d:2a:7a:e1:08:
17:17:ad:db:03:c4:4d:b1:ff:2f:3a:af:d0:3b:b2:
3b:0a:b4:c7:6d:20:00:54:92:99:2f:c0:33:ca:1f:
e3:d3:5a:d5:46:71:e1:0d:8a:20:0e:21:92:01:0b:
be:b7:9b:0a:94:f7:6d:2c:34:fc:59:a6:9d:77:0d:
52:a7:36:48:02:8e:45:ad:60:c2:1d:9c:35:e5:b9:
73:78:2e:fa:d7:0d:44:a1:2e:80:4a:76:07:2c:9e:
53:27:34:cc:1d:4c:36:02:64:6c:eb:19:fc:38:30:
be:73:2b:a2:88:d1:14:06:d5:92:89:32:e2:d5:87:
da:0f:26:9d:24:1d:2a:3a:19:a4:68:d2:34:f9:2c:
73:8a:10:b4:03:02:3f:99:fd:65:f1:62:6f:90:38:
36:af:30:1b:24:2f:93:09:88:d7:26:d7:ff:80:8a:
59:fb:a5:2a:9c:1b:77:8e:96:54:79:49:a2:ec:16:
bc:c1:6a:e2:2c:2e:6e:e5:e2:ea:a8:ac:b5:0e:13:
93:a6:e7:7a:ad:68:88:2e:6e:fa:50:04:a9:05:59:
3a:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:C2:8F:8F:D3:8E:CD:C3:E0:92:14:8B:73:C2:55:9B:39:A2:F6:F5
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/F8KPj9OOzcPgkhSLc8JVmzmi9vU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.22.0.0/15
Signature Algorithm: sha256WithRSAEncryption
b5:54:fa:2c:60:4b:9e:70:d2:06:97:6b:21:ef:12:31:48:bd:
b7:f8:71:46:b8:ad:9e:f1:be:b3:6f:3e:1d:0e:f5:1d:40:03:
64:90:e4:ba:12:66:ab:6d:96:8e:c7:c0:50:05:2c:19:dc:35:
cc:1e:3c:dc:8d:e7:14:e3:f8:95:36:98:0b:77:2f:1e:28:13:
1d:a7:be:96:4b:cd:da:9a:2d:5e:86:93:7d:7b:c6:07:3e:ac:
ff:32:d8:65:72:ce:d4:6f:08:e1:f6:d3:5f:75:59:78:74:0a:
69:7b:30:59:d5:a1:b0:04:9e:29:7c:98:c7:6e:5f:14:1a:1e:
41:83:30:19:fe:7f:c3:b0:87:cf:43:aa:24:ce:87:1a:32:cd:
e5:20:c9:9b:35:bb:5f:6a:c0:cb:74:08:2f:69:69:d0:85:e3:
51:f3:a9:d6:0c:a9:2d:79:70:fe:e9:4b:d5:28:35:47:41:cd:
7e:aa:27:16:2a:dc:14:65:94:13:5c:c3:a3:e3:33:16:48:45:
19:ca:36:7d:7c:fb:3c:f0:99:0f:3e:ee:e3:a9:e7:98:5f:56:
08:03:ea:53:bd:f9:a8:28:b5:df:2b:f8:0c:f1:82:cf:a1:e6:
2e:20:f4:bd:fc:8d:cc:db:80:06:a5:4a:e7:80:1f:f0:96:f8:
52:39:53:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:54 2023 by rpki-client on console-fra.rpki-client.org