Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/R2kXYI1iO3z5w_bEP3fcEPc63DA.roa
File: R2kXYI1iO3z5w_bEP3fcEPc63DA.roa (raw, json)
Hash identifier: yiGIK23F4CWzl7YqVNWrxnzDtNGuMdXn8aS5s5YxLho=
Subject key identifier: 47:69:17:60:8D:62:3B:7C:F9:C3:F6:C4:3F:77:DC:10:F7:3A:DC:30
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0E29
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/R2kXYI1iO3z5w_bEP3fcEPc63DA.roa
Signing time: Wed 29 Sep 2021 02:40:02 +0000
ROA not before: Wed 29 Sep 2021 02:40:02 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131627
IP address blocks: 219.91.68.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3625 (0xe29)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:40:02 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=476917608D623B7CF9C3F6C43F77DC10F73ADC30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:00:46:3c:f0:7f:d0:75:11:d8:3d:70:be:8f:
26:f8:30:21:d6:79:d2:a1:f2:d9:9b:28:b4:86:04:
38:59:4d:97:5b:17:20:fb:11:dc:6a:90:4f:e4:c8:
e5:17:8f:05:aa:6d:f3:89:87:59:13:be:de:3a:6a:
f9:b0:99:b0:8b:2f:82:6b:cb:a0:3b:e2:12:ea:fe:
f8:69:b1:1e:8f:95:db:70:ba:07:67:44:e2:fe:69:
9a:85:00:62:25:e0:62:a0:9b:d3:3d:8e:3f:6d:74:
f0:21:2c:da:aa:7f:5e:07:0a:be:d3:28:f5:24:7c:
46:7d:70:6b:e5:62:d0:61:11:b9:90:2e:f7:2d:28:
d7:f1:bf:bf:b3:dc:93:04:50:7b:11:62:01:bf:6b:
e6:b7:1c:ec:58:74:8c:00:e2:c8:37:1c:ea:7c:42:
a4:ed:30:bc:b7:d8:0c:6d:57:07:51:c9:1d:ea:7f:
2c:71:42:6f:89:b5:5b:05:f4:38:48:62:a5:eb:c3:
23:b8:9e:0d:9d:e8:22:8a:ba:03:ae:b6:33:7a:39:
a7:cf:1b:a5:08:c6:fc:90:15:98:af:42:f7:ce:23:
62:7f:c4:31:da:3c:bb:f3:f0:b7:ae:46:22:16:89:
bd:59:55:cb:5e:14:ca:77:1c:d2:1a:a5:08:4b:76:
c5:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:69:17:60:8D:62:3B:7C:F9:C3:F6:C4:3F:77:DC:10:F7:3A:DC:30
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/R2kXYI1iO3z5w_bEP3fcEPc63DA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
219.91.68.0/23
Signature Algorithm: sha256WithRSAEncryption
bb:f4:e4:74:24:f5:42:91:d7:78:1f:97:b8:3a:80:51:f5:8c:
94:9a:9d:78:ff:60:14:d3:9f:b1:5d:20:eb:43:33:eb:2e:16:
bc:84:d1:83:db:1f:41:b4:bf:d7:3a:87:e2:c3:74:38:c7:01:
0d:4e:8b:e3:05:16:a6:f5:7d:78:17:e9:1d:2a:b8:09:de:07:
6b:45:e0:46:56:8e:fc:18:d3:21:61:f8:3e:0b:0e:6d:b8:c5:
ef:c7:d1:08:fc:e9:66:e0:d3:08:d7:4b:58:ff:14:a2:63:90:
b9:5d:2c:70:06:d1:6f:fb:40:af:7d:19:f3:bd:92:ac:0f:56:
4b:fa:18:da:ef:45:7e:12:a2:16:12:82:d2:27:bb:bc:b0:66:
f4:bb:95:09:fd:6e:c2:10:f5:80:f2:c9:8e:52:da:b5:4b:7c:
5e:25:4e:56:41:cf:b1:19:a0:e2:93:ae:12:ab:da:31:66:e0:
8d:80:e6:58:48:e6:cf:46:94:f8:f0:55:37:48:1d:4d:35:08:
a9:a1:2c:32:ec:f9:7c:6d:51:89:1b:9a:51:ba:a3:02:a6:5c:
da:cb:3a:23:7d:8d:f2:22:b8:23:3e:6b:01:1d:b0:f3:a0:3b:
50:78:70:c5:c6:9f:5e:4b:0a:6b:b6:32:2e:15:08:87:ef:01:
f9:c7:82:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:44 2023 by rpki-client on console-ams.rpki-client.org