Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/IVGqUauEtvxskNuiHoXUB6Y_PQk.roa
File: IVGqUauEtvxskNuiHoXUB6Y_PQk.roa (raw, json)
Hash identifier: bgGKSgx6K2fEK3gfKbCES7xoW8Mj8P2x6kf9KP+W8sw=
Subject key identifier: 21:51:AA:51:AB:84:B6:FC:6C:90:DB:A2:1E:85:D4:07:A6:3F:3D:09
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0B91
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/IVGqUauEtvxskNuiHoXUB6Y_PQk.roa
Signing time: Sun 07 Feb 2021 11:33:13 +0000
ROA not before: Sun 07 Feb 2021 11:33:13 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 7482
IP address blocks: 124.218.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2961 (0xb91)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:33:13 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2151AA51AB84B6FC6C90DBA21E85D407A63F3D09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:c4:7a:a5:2e:58:24:87:26:a4:57:83:4d:4f:
28:0a:b5:d7:d1:8d:76:33:e0:0f:46:3b:71:e7:ae:
90:e8:c6:f3:4b:19:f6:56:81:89:ba:87:dc:e0:54:
d4:00:32:bc:2a:9a:54:a1:48:76:52:c3:2a:26:dd:
32:a9:9b:ea:1c:1f:e6:96:04:36:33:3e:23:74:2a:
76:87:c1:d6:8c:0d:15:3f:33:0c:3b:57:61:3e:46:
92:6b:a8:34:5e:85:f3:53:cf:f4:b8:25:19:40:bf:
c4:ec:1e:39:6c:f1:e3:15:f8:c5:ef:09:e4:72:88:
46:32:d4:54:91:7c:f7:9c:1b:ce:fd:2a:99:3d:34:
ac:7a:b2:92:5a:84:1d:fc:d1:dc:18:6b:e1:8f:02:
28:de:f8:8e:09:96:83:12:cd:eb:a6:58:a9:6b:a3:
11:b1:36:0c:de:be:bf:33:00:1a:dc:28:44:b4:b8:
0e:f3:c5:e0:fb:95:0f:ff:4e:a6:79:e4:62:2a:87:
1f:95:31:16:ef:b8:af:83:6a:1a:20:e4:e5:2b:db:
08:06:81:09:32:87:65:f1:51:ac:e1:cb:18:3a:47:
40:9a:56:23:32:9b:26:bd:dc:32:6d:ff:7d:de:f0:
97:6e:f6:e6:45:49:a0:38:ba:bf:81:63:f3:e2:ef:
58:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:51:AA:51:AB:84:B6:FC:6C:90:DB:A2:1E:85:D4:07:A6:3F:3D:09
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/IVGqUauEtvxskNuiHoXUB6Y_PQk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.0.0/16
Signature Algorithm: sha256WithRSAEncryption
43:1b:8d:34:7d:8d:a9:c3:65:0c:07:77:84:5c:23:93:30:cb:
ca:c5:cc:cd:a3:65:42:44:89:17:f0:fd:7c:b3:3b:2d:f0:b3:
c5:0f:23:01:33:6e:ab:44:81:a1:d6:c2:44:c5:ca:fe:67:1f:
a5:3b:e8:bb:c3:5f:b4:82:d0:21:9c:50:fc:3e:34:90:23:bc:
13:44:cf:e6:30:33:11:63:47:d5:72:e2:07:fd:10:e7:b3:45:
d5:77:31:76:00:87:02:bb:0a:2c:7f:c0:c7:fe:c0:2c:ab:89:
8f:1c:05:73:62:e5:e7:3f:c5:19:13:60:8e:d8:b9:09:67:5c:
2c:1b:cd:14:e5:7c:2f:11:23:6b:6e:56:5c:95:ec:bf:64:5e:
ea:ac:79:c2:80:e3:72:0d:0c:0e:cb:cc:08:29:b8:76:8c:05:
76:fd:57:4e:63:d4:70:77:ec:b5:c3:37:f6:9a:99:3a:87:e6:
92:51:d3:c4:57:c7:b8:2c:b7:54:88:81:4b:5a:87:3d:10:61:
b2:7a:f3:f0:1a:ef:37:92:0b:da:73:03:e5:3d:2f:3e:7e:6c:
d5:87:b9:ff:da:5b:74:92:c7:19:0b:bc:2d:88:24:09:ff:28:
41:5b:75:f2:c9:bc:89:7e:54:42:1a:a5:13:ec:bd:24:a6:08:
1f:21:81:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:44 2023 by rpki-client on console-ams.rpki-client.org