Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/ScJGr7bNUW6MIx0UbJgY6Fdx8Cg.roa
File: ScJGr7bNUW6MIx0UbJgY6Fdx8Cg.roa (raw, json)
Hash identifier: 5uz9idvYHBzeeknMSkhySDhFqwirGs6h9nNxZsXafMc=
Subject key identifier: 49:C2:46:AF:B6:CD:51:6E:8C:23:1D:14:6C:98:18:E8:57:71:F0:28
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 08F9
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/ScJGr7bNUW6MIx0UbJgY6Fdx8Cg.roa
Signing time: Tue 29 Sep 2020 10:01:18 +0000
ROA not before: Tue 29 Sep 2020 10:01:18 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131591
IP address blocks: 223.22.32.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2297 (0x8f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:18 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=49C246AFB6CD516E8C231D146C9818E85771F028
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:0d:dc:1c:b7:c4:1e:10:4b:5a:a1:6c:22:76:
04:d5:bf:b5:0f:90:f2:a0:a5:6f:33:12:d4:1c:4b:
e7:cb:92:c4:7a:82:68:9e:db:60:73:f9:64:ab:63:
ea:9c:10:db:16:6c:2e:be:2a:05:a8:f9:a0:af:9c:
15:16:3c:6a:e9:38:3c:2a:b6:e3:c8:b9:84:62:dc:
c4:fd:d9:fc:54:5c:cc:79:7f:cc:bc:d6:5d:64:5f:
d6:89:a5:ca:5d:63:73:4c:8d:3d:72:69:0a:61:7d:
e8:86:5c:87:0b:d9:6d:34:ff:03:e0:67:e0:0f:0d:
83:90:18:cd:d4:15:4e:eb:bc:83:22:4d:bb:27:14:
58:4c:db:ba:99:4c:39:12:1f:17:ac:f8:11:cd:9d:
69:9a:aa:c0:48:77:c8:78:c9:36:5d:68:6e:a6:cf:
0e:a8:96:ec:46:40:d8:54:d8:6c:e2:29:eb:77:75:
70:9d:f0:3f:f2:dd:01:3a:4f:82:f4:c0:e9:1c:b5:
6f:b8:82:fb:71:02:3c:ee:ad:09:2a:9d:6e:d2:07:
07:10:47:38:df:10:cc:01:e5:69:b4:f7:a7:82:20:
9a:4f:82:17:43:4b:e7:a0:15:87:d4:5a:e1:23:66:
c1:ec:95:02:47:1f:ed:c6:6f:c9:98:a9:f4:13:1c:
c7:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:C2:46:AF:B6:CD:51:6E:8C:23:1D:14:6C:98:18:E8:57:71:F0:28
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/ScJGr7bNUW6MIx0UbJgY6Fdx8Cg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.22.32.0/19
Signature Algorithm: sha256WithRSAEncryption
46:e3:be:c9:29:63:63:7c:1e:bb:5d:a0:c3:76:66:13:97:fd:
57:5f:99:08:48:36:c4:5b:da:b8:cb:20:ec:1e:23:6c:d8:aa:
02:2f:d7:d5:67:c1:0f:f6:92:72:a6:84:e4:ab:6e:b0:9c:12:
1d:b6:f9:60:42:0b:0f:5b:49:98:11:1c:bf:e2:95:21:9a:b8:
91:31:2f:b1:65:75:3d:84:3a:06:8e:d2:68:55:88:a3:11:72:
57:e5:b8:df:85:17:ea:39:0d:c3:f4:87:32:4e:4f:c0:65:ac:
cd:a7:7c:c4:65:14:d3:00:87:1e:bb:86:03:22:39:d0:8e:b5:
dd:a9:68:d4:37:4c:76:93:4e:44:ac:c4:81:2b:7f:b5:ce:9e:
77:ef:49:c8:6c:6b:d3:b8:3f:e0:e8:6c:a9:42:4f:ca:4e:2e:
ed:bc:85:0a:2c:57:50:15:95:3d:cb:3a:e9:38:81:ce:d4:4e:
9a:08:28:3e:e5:73:1a:68:d3:7c:d9:a1:c0:88:c0:37:b9:fe:
a4:ad:2d:10:03:eb:b8:b0:bc:63:35:c5:be:48:5b:84:b1:10:
25:60:d6:88:d7:1a:fc:0b:47:4b:19:94:cd:8f:22:9d:b4:2a:
61:4f:ad:2f:98:5e:15:76:99:d9:c7:0f:02:df:6b:ea:21:f9:
88:7f:8e:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:55 2023 by rpki-client on console-fra.rpki-client.org