Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/Isqr_tAiziRiF1hY6K7ISO8tuR4.roa
File: Isqr_tAiziRiF1hY6K7ISO8tuR4.roa (raw, json)
Hash identifier: 2Kv1tCduJx260WoMevGwJe8e7YJUpbbaLxPstyD8ROg=
Subject key identifier: 22:CA:AB:FE:D0:22:CE:24:62:17:58:58:E8:AE:C8:48:EF:2D:B9:1E
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0942
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Isqr_tAiziRiF1hY6K7ISO8tuR4.roa
Signing time: Tue 29 Sep 2020 10:01:39 +0000
ROA not before: Tue 29 Sep 2020 10:01:39 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9311
IP address blocks: 210.63.253.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2370 (0x942)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:39 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=22CAABFED022CE2462175858E8AEC848EF2DB91E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:2c:94:88:e2:f8:22:5f:a5:ae:5c:9a:b9:0f:
fe:17:14:75:74:a5:b3:fd:32:36:da:0c:20:c0:ac:
c6:dd:0b:34:22:6d:e0:cf:ec:96:40:f0:a8:54:9c:
94:3e:ab:2c:d5:81:15:02:24:14:79:62:e6:e6:81:
58:65:7f:7e:e7:90:0e:2c:a4:c2:4d:88:e7:bf:5e:
7e:ef:66:74:fe:55:5a:d8:74:a6:f4:e7:30:2b:68:
69:4c:d6:12:5f:f5:22:cc:4e:73:11:d9:fd:12:05:
ac:6d:53:4d:6d:6a:7c:7f:e0:ff:84:1d:f3:ea:a2:
f7:00:9c:f8:13:ed:b4:41:99:42:30:c4:cd:96:c0:
69:9b:12:53:68:4b:44:18:66:4e:0c:31:63:45:99:
e2:c4:53:8e:e9:7b:e3:b1:f6:d2:28:7c:5d:1c:a2:
47:93:13:73:85:dc:c4:a1:57:28:b9:5f:c9:0c:43:
2b:7b:97:e7:d3:89:f0:96:e2:f6:fb:4c:d1:01:64:
c0:84:be:90:bf:56:8f:ff:71:ec:95:79:be:74:c3:
47:07:09:f1:ca:a1:b6:9b:57:6e:6d:dc:ea:a4:80:
93:bb:f2:6c:8a:be:00:35:02:b9:8f:ca:ae:0c:b6:
24:84:6a:1b:3c:3f:3c:25:33:8b:8c:41:28:c9:8c:
32:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:CA:AB:FE:D0:22:CE:24:62:17:58:58:E8:AE:C8:48:EF:2D:B9:1E
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Isqr_tAiziRiF1hY6K7ISO8tuR4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.253.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:79:4e:71:ff:8e:55:e5:33:80:ff:cb:59:df:9f:aa:a7:cd:
9d:e6:25:a1:fd:fe:2f:43:0b:ce:c5:6d:00:9a:8c:43:9d:77:
50:c6:0d:02:8f:14:0b:88:0f:e5:00:f1:5a:1e:55:93:dd:51:
79:2e:7e:d5:ad:7a:ba:a4:13:13:06:0a:0b:fa:01:b0:bb:79:
a1:38:23:33:e7:05:39:d2:df:d9:45:96:39:6a:ef:d5:f8:c1:
13:86:ae:e1:f6:06:54:d2:3b:3f:e7:62:a7:7e:48:99:30:ec:
25:9a:ce:59:44:c4:a4:0a:ee:0f:18:79:c8:b7:3d:29:bf:53:
d9:8f:95:a6:08:b7:ae:f6:9e:b1:b9:ae:70:b4:90:df:e4:d6:
9d:ab:04:3e:5c:af:c1:64:44:04:4d:ff:85:a6:ed:53:b5:01:
74:c1:b1:c6:34:a7:7d:9b:fb:b5:66:18:79:38:1d:a0:16:69:
fe:c3:58:a5:fa:4e:00:ec:6a:6f:13:47:a6:8b:a6:a4:ed:f7:
20:66:3c:82:4a:94:1e:a2:6d:df:77:01:07:96:47:9e:6b:10:
78:7d:5c:f6:b9:02:8a:b0:b3:fd:ce:10:77:01:aa:41:ee:83:
bb:2a:2a:dc:27:8f:81:2b:06:bd:29:d2:78:5f:5f:9d:92:79:
75:ff:87:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:54 2023 by rpki-client on console-fra.rpki-client.org