Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/JT5HzZORLFZ4yK8qvVHguVO3Q8Y.roa
File: JT5HzZORLFZ4yK8qvVHguVO3Q8Y.roa (raw, json)
Hash identifier: U1avmSGDFbjQI4S6YDCfqE+Z+06cEl8dZGa2j49OujU=
Subject key identifier: 25:3E:47:CD:93:91:2C:56:78:C8:AF:2A:BD:51:E0:B9:53:B7:43:C6
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0914
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/JT5HzZORLFZ4yK8qvVHguVO3Q8Y.roa
Signing time: Tue 29 Sep 2020 10:01:26 +0000
ROA not before: Tue 29 Sep 2020 10:01:26 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17709
IP address blocks: 218.184.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2324 (0x914)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:26 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=253E47CD93912C5678C8AF2ABD51E0B953B743C6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:01:fe:60:b0:73:63:ee:34:91:82:7f:f5:91:
8b:66:87:a1:87:5f:3b:4e:3c:cf:1d:21:cc:fe:20:
2b:4f:61:88:2d:74:9f:56:72:36:76:3f:ac:87:0c:
0b:84:80:1b:9b:78:fe:80:d6:b2:78:65:f7:d4:b4:
58:62:7b:3d:5c:ad:a0:31:8c:52:93:51:05:f9:43:
a7:46:9b:99:04:df:51:bc:89:58:9e:72:c6:b0:00:
8b:1d:70:f7:ab:d6:4e:65:5e:e6:bf:37:cd:2b:22:
4c:ef:07:92:0f:72:b5:46:c4:79:20:6f:82:33:ae:
16:f8:c2:46:64:43:43:a5:6b:b1:1f:ca:50:59:d2:
a3:08:15:66:2e:96:01:d3:0a:a5:54:d7:b7:35:4b:
e1:7e:f0:02:b8:96:61:16:98:7c:df:2e:b3:a1:40:
d3:92:60:10:b6:cc:bd:6f:70:04:4f:3a:a0:b7:3b:
23:0f:0d:71:5e:12:c5:92:d8:e9:e6:c3:8f:11:ac:
a7:f1:3f:bf:44:84:28:25:d7:98:43:ba:e8:1f:06:
92:34:e1:b5:69:84:e8:9b:49:7f:73:12:fa:7e:ea:
75:de:b1:d7:32:70:87:d8:e6:15:91:dc:36:6b:7b:
1b:90:a1:69:1b:4c:f7:90:06:f7:b5:86:97:b7:7e:
8b:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:3E:47:CD:93:91:2C:56:78:C8:AF:2A:BD:51:E0:B9:53:B7:43:C6
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/JT5HzZORLFZ4yK8qvVHguVO3Q8Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.184.0.0/16
Signature Algorithm: sha256WithRSAEncryption
ab:fb:d6:ff:9c:0e:40:4e:90:e1:98:a5:0d:25:9a:1c:37:36:
82:af:5b:02:76:e5:36:71:23:8b:5f:0b:62:f6:60:da:c6:3e:
fe:0f:71:c0:d5:51:33:f7:4f:73:fb:41:75:25:a3:dd:32:e4:
dd:c9:38:65:67:2a:7e:43:67:aa:7f:ed:8b:5b:56:82:26:e0:
11:ba:e0:f6:fa:f5:83:d6:d6:7e:3d:b2:4d:31:88:e5:77:51:
c4:d2:25:16:39:2f:d2:01:1f:d4:72:30:b0:6b:bf:11:58:52:
01:2e:4b:d2:fd:fb:39:db:b6:6a:51:92:27:65:9a:a6:32:11:
1f:e5:69:89:26:5a:4e:45:ed:61:d8:91:00:ae:e3:4b:92:ee:
57:05:0e:a5:bc:72:83:bc:7b:7a:0e:37:a6:08:03:eb:40:5d:
a7:f5:1b:a4:22:c3:f6:52:57:ff:e4:36:59:24:ed:16:dc:e6:
97:af:2f:a5:4c:ac:96:9b:22:b8:90:83:00:f1:b4:67:0e:d7:
9f:23:30:e8:3d:10:88:0b:15:60:22:4b:50:08:36:75:42:1c:
a4:59:15:23:c2:98:d1:6f:b7:27:0e:da:d5:09:30:27:15:8a:
4e:7a:f9:84:1e:b9:7a:cc:23:6b:0c:94:f4:93:47:2a:3e:57:
ac:4e:d1:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:44 2023 by rpki-client on console-ams.rpki-client.org