Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/NPZSiJTSBb9vp4ptFhbBM63dEuo.roa
File: NPZSiJTSBb9vp4ptFhbBM63dEuo.roa (raw, json)
Hash identifier: MSCWa5Z8xGh2eBliVqWtuBmCAUdezRXN1nMgBkT2MhY=
Subject key identifier: 34:F6:52:88:94:D2:05:BF:6F:A7:8A:6D:16:16:C1:33:AD:DD:12:EA
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0E12
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/NPZSiJTSBb9vp4ptFhbBM63dEuo.roa
Signing time: Wed 29 Sep 2021 02:39:56 +0000
ROA not before: Wed 29 Sep 2021 02:39:56 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17709
IP address blocks: 223.22.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3602 (0xe12)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:39:56 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=34F6528894D205BF6FA78A6D1616C133ADDD12EA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:44:00:21:72:fc:bb:33:c6:2c:1b:9f:99:a4:
0a:7a:dd:d6:e1:0f:96:df:e6:d8:04:a3:99:fe:e8:
d4:22:c1:f4:64:df:50:7b:c6:91:b7:06:46:bc:94:
da:8a:67:9b:d2:cc:9e:a6:9e:ae:1b:cc:45:69:b8:
98:1c:89:e0:fe:1c:40:bc:c1:c4:ef:91:8b:92:65:
49:1d:0f:2c:6f:1e:10:2c:ab:56:80:4b:fb:5f:51:
dd:4b:65:a3:f5:64:1e:e6:e8:ab:03:fa:72:6b:88:
ed:9e:5d:22:73:ec:59:57:21:19:30:22:61:ce:42:
cd:8b:a5:e1:33:b1:a4:29:ee:34:2f:0b:c4:64:1a:
ef:dc:42:13:1f:d1:42:e0:27:1d:7d:19:d8:7d:78:
b9:a3:47:41:b2:13:44:a2:83:bc:1a:f5:08:58:3c:
9d:4f:6c:a0:36:82:69:11:dc:f3:3c:ae:ec:82:c1:
c1:46:38:16:62:7a:c5:9f:d4:87:c9:a0:26:83:54:
da:e3:f4:f1:1b:29:7c:d7:e0:da:fd:39:5f:18:e9:
7f:18:ce:23:08:7e:29:bc:5e:b0:6a:f5:f2:a2:46:
71:e0:db:cc:6a:e3:8e:de:85:cf:29:d4:df:50:5d:
e3:b0:31:f4:a8:cc:30:56:78:61:e7:ea:10:8c:94:
ef:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:F6:52:88:94:D2:05:BF:6F:A7:8A:6D:16:16:C1:33:AD:DD:12:EA
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/NPZSiJTSBb9vp4ptFhbBM63dEuo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.22.0.0/16
Signature Algorithm: sha256WithRSAEncryption
b0:b5:be:b1:02:02:7a:7e:f2:f7:e5:2a:1c:4b:fd:23:6e:ce:
09:4c:7d:c9:8a:dc:b2:2d:c7:44:54:56:48:8b:1c:8d:ed:ee:
48:d5:d3:c8:e5:dd:3e:ba:70:d5:bf:bf:2b:a9:70:e0:a1:82:
c5:6f:13:9a:64:b8:c3:9d:d3:44:44:bf:81:40:07:3c:14:41:
be:83:d0:c8:a6:d7:2c:62:05:57:d2:4a:47:b3:ac:71:f9:2c:
93:54:2f:fd:1b:e4:e9:5a:96:78:24:d2:d2:77:b0:a9:54:38:
f2:05:59:29:ff:c6:dd:b7:c5:95:30:b9:b5:a7:2c:ce:b2:5e:
00:e7:c3:c8:c3:71:35:a1:ae:5d:d8:69:16:92:86:ca:72:a3:
97:47:26:1e:ef:c9:ca:d0:24:39:20:4b:61:2a:d9:85:6e:3b:
4f:18:1d:10:fe:f0:6b:2d:c7:b2:df:4a:7a:13:2a:cd:19:25:
89:eb:76:4a:9e:75:aa:87:1a:c5:1e:f7:13:6f:2b:fa:ae:1a:
a5:b7:b8:6c:a0:f6:2a:90:d4:69:8e:5e:7b:67:af:ad:18:4e:
4e:0b:f3:cc:84:f4:0f:00:60:df:c3:8a:0e:e1:32:95:9d:3c:
f5:c3:45:d6:de:48:42:9b:61:ef:3a:f0:c6:48:66:8f:e5:09:
10:9f:a1:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:44 2023 by rpki-client on console-ams.rpki-client.org