Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/QjQDpdhY2WQ-oZ9eJ2k-RsxafVk.roa
File: QjQDpdhY2WQ-oZ9eJ2k-RsxafVk.roa (raw, json)
Hash identifier: XzQd4hz0nNeja1pAdq94ctmcif+i1IjHr5/BSr8LTkc=
Subject key identifier: 42:34:03:A5:D8:58:D9:64:3E:A1:9F:5E:27:69:3E:46:CC:5A:7D:59
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0C49
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/QjQDpdhY2WQ-oZ9eJ2k-RsxafVk.roa
Signing time: Sun 07 Feb 2021 11:35:33 +0000
ROA not before: Sun 07 Feb 2021 11:35:33 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 7482
IP address blocks: 218.35.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3145 (0xc49)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:35:33 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=423403A5D858D9643EA19F5E27693E46CC5A7D59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:a2:ec:dd:11:bf:35:42:ae:b0:ce:b2:f5:68:
24:8b:31:ce:c1:7d:13:2b:76:c8:be:eb:62:8e:ab:
c0:3d:0e:cc:14:e2:16:ff:7e:00:c5:48:90:34:79:
19:28:0d:19:c7:92:4d:c0:9d:23:f2:27:4e:09:ed:
43:39:fd:45:e4:55:d9:19:19:1b:d3:3c:45:67:55:
46:dd:6b:1d:0f:b0:4e:5f:3d:95:59:f2:f0:c8:8e:
29:c9:ea:ab:1c:37:65:44:be:49:c2:51:0d:94:dc:
a1:e7:9b:e5:09:af:25:46:f4:e0:dd:e2:03:25:fb:
d2:80:d1:a7:e7:1e:9f:38:72:da:57:e3:d8:44:1d:
0a:c3:f8:2b:a7:78:fc:05:7f:b5:78:fb:8e:50:7f:
d4:fa:81:05:a2:cc:be:b6:b0:1b:24:de:c0:fe:3e:
75:b2:15:17:8e:6c:39:74:76:a9:e7:8f:79:30:84:
ff:27:3e:0c:d2:5d:9f:ce:f0:36:eb:96:75:a8:e2:
32:c4:c9:5f:5d:69:48:44:f2:32:33:23:37:3b:e5:
60:15:fd:ef:99:2a:49:38:5e:77:9f:0c:a4:0d:39:
4d:4e:ff:31:35:e9:a6:54:ae:4d:c1:ae:09:3e:c2:
95:45:5a:c9:de:b5:47:7e:6c:b2:56:1d:53:b3:dd:
d2:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:34:03:A5:D8:58:D9:64:3E:A1:9F:5E:27:69:3E:46:CC:5A:7D:59
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/QjQDpdhY2WQ-oZ9eJ2k-RsxafVk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.35.0.0/16
Signature Algorithm: sha256WithRSAEncryption
38:81:79:6e:34:6c:37:3f:4c:ef:ae:c4:b2:64:11:50:1a:d9:
17:ee:a8:db:be:bd:73:2b:ae:49:02:ea:3a:22:8f:39:84:2e:
90:55:6a:8b:36:6b:a0:d9:e3:ab:07:a1:a9:d4:dc:25:64:cc:
76:1e:2a:ee:1d:b1:68:92:d0:4e:82:9d:b3:a9:6e:ae:33:73:
23:ca:f0:1d:7f:07:bc:17:69:f6:28:ab:3f:09:5e:95:38:79:
e4:b5:e6:71:79:b0:26:37:c1:b7:d2:1b:20:0f:34:e4:3a:71:
b2:37:b6:c9:79:a0:0e:04:8f:de:9d:c4:33:fa:1f:a6:d5:8e:
c9:fe:4f:8b:26:ea:68:1c:87:e6:f5:ba:2d:fc:4d:c6:0b:9f:
a4:fc:9a:c3:69:f6:fe:3f:61:d3:95:b0:0a:ad:87:83:da:00:
ed:fd:c5:68:ff:fd:59:6f:f6:69:63:14:ca:4e:90:48:b6:3f:
a6:ab:e6:dc:40:1c:cf:ec:c6:d8:1c:cd:a7:ea:0d:b6:ae:64:
09:08:ed:80:a4:04:b3:8b:b9:ca:6d:c8:3b:35:4f:f9:99:3a:
dc:4e:2d:cd:fe:38:6b:ba:42:df:e2:f3:a9:52:69:10:d2:b2:
dd:3a:9c:0d:c7:6d:10:0c:c9:bf:28:1e:8d:0a:88:a0:b8:25:
45:67:01:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:44 2023 by rpki-client on console-ams.rpki-client.org