Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/U0AiwL57l8KllYj_kt_7aW-kMJ4.roa
File: U0AiwL57l8KllYj_kt_7aW-kMJ4.roa (raw, json)
Hash identifier: tCjaWf2mL1SlYI7JKVjeWjSHNfl0jELH7kKL1kXFk3M=
Subject key identifier: 53:40:22:C0:BE:7B:97:C2:A5:95:88:FF:92:DF:FB:69:6F:A4:30:9E
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0E0E
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/U0AiwL57l8KllYj_kt_7aW-kMJ4.roa
Signing time: Wed 29 Sep 2021 02:39:55 +0000
ROA not before: Wed 29 Sep 2021 02:39:55 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 7482
IP address blocks: 222.157.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3598 (0xe0e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:39:55 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=534022C0BE7B97C2A59588FF92DFFB696FA4309E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:5f:48:4f:2c:35:cd:d9:cb:e3:d2:09:99:ef:
e0:6c:71:2b:af:8a:86:88:fa:cb:7b:12:57:82:83:
2c:68:96:1c:92:2d:64:f2:23:ec:bc:21:ca:f3:e3:
cc:d9:66:a1:07:c6:ad:ac:fd:81:22:93:22:49:31:
63:f0:f4:e6:61:c4:04:bc:38:79:1f:b8:45:47:d5:
90:c7:bc:1c:ac:f1:2f:be:98:55:2d:0e:8c:df:69:
79:86:ab:b7:ce:60:d4:81:e3:cf:ab:5f:69:cc:e8:
e3:4c:99:ea:a5:e3:c9:a3:05:df:1b:e3:74:33:95:
b3:75:ec:bc:1b:8e:3c:c9:b4:9f:59:de:4a:80:6b:
e5:f9:04:84:c4:6f:de:74:dd:e6:be:58:14:f4:a1:
a1:54:be:41:87:4f:e7:25:ce:7f:0a:a7:b7:e2:20:
bd:c4:a0:1b:82:8e:92:f0:44:80:9c:96:0b:a9:b9:
6b:f2:33:12:90:86:a8:51:e7:1a:52:64:45:1a:4f:
31:0f:cc:8d:61:0f:9a:ff:6d:22:b3:fe:c6:da:d8:
1b:23:bf:3b:3e:f1:66:15:93:73:42:69:e2:a1:8c:
48:d7:99:b0:4f:45:df:c3:ed:a7:6b:f5:26:59:51:
5a:71:af:e2:0a:4f:17:b1:74:13:24:b7:59:af:03:
43:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:40:22:C0:BE:7B:97:C2:A5:95:88:FF:92:DF:FB:69:6F:A4:30:9E
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/U0AiwL57l8KllYj_kt_7aW-kMJ4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
222.157.0.0/16
Signature Algorithm: sha256WithRSAEncryption
6e:7b:37:01:fa:6a:8f:4f:96:51:ec:c3:a9:1a:f1:1e:41:56:
64:9d:72:63:d8:6a:9a:0e:47:b2:eb:4a:07:91:76:e3:2b:a7:
77:a4:f2:25:12:4e:88:d1:6c:f0:da:d6:22:3c:ed:ff:49:85:
c1:1a:fe:e4:5b:e4:bb:14:d5:13:ab:14:d1:e6:70:25:5f:86:
dc:be:2a:aa:ce:c5:41:ce:d5:3d:71:c2:f7:51:78:93:48:07:
4d:3a:3e:be:bf:5f:f2:f1:20:84:d6:fb:d7:fd:01:23:4c:2e:
b6:af:3d:1b:4e:19:d4:89:e6:8f:fa:ad:49:59:30:88:ce:b2:
ee:56:e7:dc:46:12:0c:ac:8a:b5:fc:0c:4b:69:40:6b:73:28:
3e:25:53:c0:c2:6d:21:3e:bf:53:89:a5:0a:02:56:7a:31:f3:
c8:05:d7:24:95:90:d9:89:ab:29:68:25:f4:4f:9b:be:f9:60:
22:d6:69:2f:1d:ec:12:13:1e:9e:3d:f3:eb:39:c8:05:e4:ac:
09:c4:2d:1d:a8:00:94:78:28:28:9d:a3:e6:a1:b1:5f:f8:db:
46:b4:45:7b:48:98:80:db:4f:2f:dc:de:c7:0b:da:7a:7e:f6:
f9:a4:93:73:14:8b:aa:b7:e7:b4:e0:1f:65:c9:28:60:76:78:
7f:1e:32:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:45 2023 by rpki-client on console-ams.rpki-client.org