Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/QQR1vtN_Wyx9sI9ApfQrUw1UHFE.roa
File: QQR1vtN_Wyx9sI9ApfQrUw1UHFE.roa (raw, json)
Hash identifier: om3JWSMrNLdvYTafs05M5Ypwh+p3i+ooO3PvoBqTHB0=
Subject key identifier: 41:04:75:BE:D3:7F:5B:2C:7D:B0:8F:40:A5:F4:2B:53:0D:54:1C:51
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 098F
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/QQR1vtN_Wyx9sI9ApfQrUw1UHFE.roa
Signing time: Tue 29 Sep 2020 10:02:00 +0000
ROA not before: Tue 29 Sep 2020 10:02:00 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 7482
IP address blocks: 218.187.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2447 (0x98f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:02:00 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=410475BED37F5B2C7DB08F40A5F42B530D541C51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:ee:3c:d4:48:bb:80:11:d7:f2:da:16:d8:50:
52:ba:8e:3b:ce:d8:91:c4:2b:39:b0:25:fe:0a:d9:
87:5a:8e:fc:59:fd:72:83:08:b2:4d:4b:23:36:27:
a7:80:52:bb:21:fb:0b:0c:be:47:9e:4f:4a:a6:07:
b2:68:19:18:6c:fa:2a:48:fd:c6:33:55:4c:43:64:
0a:53:ea:da:45:04:4b:43:5d:ad:2e:26:9b:36:90:
8f:df:60:78:b5:47:db:6a:a9:95:bf:03:0f:97:12:
42:8b:76:a2:71:91:29:c8:70:11:e6:20:c0:6a:54:
50:62:38:ea:d6:1f:b5:60:94:e5:aa:1f:91:fa:94:
f8:cc:b9:c6:45:f2:83:39:c3:b7:fa:f9:98:1c:28:
c4:bd:db:a9:3a:3b:0d:62:5f:3f:84:90:0e:83:a6:
59:d7:d8:7a:bf:e5:0f:b3:6f:02:33:e2:7a:40:df:
4c:a0:6c:e6:75:58:13:e9:2e:8f:b6:f2:0c:a8:ea:
50:df:9f:ff:df:d7:22:8f:f2:1d:05:00:00:09:32:
af:cc:0b:b4:70:b2:4d:d3:64:47:23:97:79:dc:9d:
1f:ba:98:52:a2:e4:d0:04:09:0b:66:08:d7:e7:41:
9d:f4:37:79:4e:db:28:c6:4a:fd:a2:f2:2f:5f:77:
c8:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:04:75:BE:D3:7F:5B:2C:7D:B0:8F:40:A5:F4:2B:53:0D:54:1C:51
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/QQR1vtN_Wyx9sI9ApfQrUw1UHFE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.187.0.0/16
Signature Algorithm: sha256WithRSAEncryption
86:6f:fa:eb:e9:62:27:70:2d:9d:6a:ef:c2:42:b0:74:b3:39:
c8:4b:31:e9:86:d1:4f:0a:3e:48:f1:97:26:1d:38:ee:90:e7:
90:50:3f:6a:2c:d2:7c:7a:94:39:d4:7e:74:e2:cd:d0:98:b1:
a5:f8:75:5b:5b:32:30:aa:1f:4e:b2:a7:f8:0d:a7:d8:86:6d:
1c:0c:63:29:15:1e:39:06:fa:9d:57:1f:ca:f9:ab:b5:87:92:
87:6d:2c:3f:51:26:aa:20:fb:8c:3f:0f:1c:2a:eb:24:88:4d:
81:8b:99:f2:01:22:13:53:1a:98:4c:81:1c:68:b1:9c:40:f9:
97:7c:96:65:b2:65:06:d7:80:5e:12:af:0d:63:91:ac:25:78:
08:5a:c9:81:c8:cf:fe:57:2a:3d:50:a5:15:43:3a:eb:16:8a:
d8:65:8e:0d:73:df:6c:98:cf:b6:5e:72:1d:81:7c:19:a0:9e:
a5:ea:3a:cd:4f:d9:23:0d:08:53:e9:96:b0:39:5c:da:2e:15:
24:c8:89:c9:27:ea:be:d9:76:8d:3e:61:5a:0a:1b:4b:66:7e:
b3:e4:a9:5d:c3:71:8a:ad:7a:4d:c3:53:50:de:45:45:a0:6a:
11:69:a0:e5:d0:e0:72:06:84:d9:05:d3:e1:37:6a:5c:60:ee:
41:3c:60:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:55 2023 by rpki-client on console-fra.rpki-client.org