Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/_JjM1-TEVh9nvAQAIj83-W99cqo.roa
File: _JjM1-TEVh9nvAQAIj83-W99cqo.roa (raw, json)
Hash identifier: MtAGtz9+N8Qw8rbpckUO8FZB3zJBuSkab/gZmXsIWyE=
Subject key identifier: FC:98:CC:D7:E4:C4:56:1F:67:BC:04:00:22:3F:37:F9:6F:7D:72:AA
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0907
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/_JjM1-TEVh9nvAQAIj83-W99cqo.roa
Signing time: Tue 29 Sep 2020 10:01:23 +0000
ROA not before: Tue 29 Sep 2020 10:01:23 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17709
IP address blocks: 2404:0:1000::/36 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2311 (0x907)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:23 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=FC98CCD7E4C4561F67BC0400223F37F96F7D72AA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:d4:03:59:84:bb:bb:73:d3:db:38:8a:78:33:
73:66:2b:3c:f1:af:60:49:18:6a:c1:3b:cf:41:3c:
69:b5:4d:e6:86:4e:ec:88:2f:25:2a:ca:09:66:c1:
43:6e:c9:4a:d6:d4:ce:d7:f7:25:13:fa:9d:b4:48:
89:1b:ce:72:28:b0:be:23:8b:23:b9:6b:b2:a8:09:
2f:88:53:cf:36:f2:58:34:ec:1a:97:04:08:39:46:
89:aa:1d:bf:49:b2:62:1c:5a:63:e5:48:dd:06:82:
0b:6a:e9:77:f9:9a:b7:38:bf:e7:df:72:68:02:e4:
36:cb:78:f2:10:3d:2f:12:7f:e0:20:61:9f:22:91:
21:da:82:25:a4:8e:4d:91:05:2e:32:09:88:4b:3c:
a0:6d:42:cc:95:f5:f2:e6:f8:a6:c0:0f:81:a4:59:
e8:a8:8a:0b:b7:67:67:92:1e:93:e9:0e:d4:83:fc:
f8:fa:6b:1a:42:a1:93:02:a7:a0:9a:f0:82:be:0f:
b7:08:2d:79:6d:64:aa:3b:33:07:1f:9d:bf:ef:71:
67:47:d9:80:05:af:07:e6:82:40:2d:07:43:25:aa:
aa:6b:6f:5e:95:ef:39:03:81:b9:b0:82:81:60:df:
9f:e7:9c:f9:12:5d:ec:e9:7c:88:77:b3:7b:b6:93:
bb:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:98:CC:D7:E4:C4:56:1F:67:BC:04:00:22:3F:37:F9:6F:7D:72:AA
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/_JjM1-TEVh9nvAQAIj83-W99cqo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:0:1000::/36
Signature Algorithm: sha256WithRSAEncryption
0f:86:de:6b:d3:f7:1c:14:f7:00:12:81:cc:f6:4f:11:c9:3b:
b0:bd:77:b5:df:b0:f9:d0:cb:23:34:56:c9:9b:77:69:f5:29:
28:2f:bf:f4:4c:05:9b:33:db:4d:c6:9c:67:4d:21:5c:e2:4a:
7e:f8:7e:62:72:d4:4c:ba:f8:ce:f1:27:30:5f:75:b4:02:54:
0e:c6:6b:7c:19:0f:7e:ff:1b:b1:d3:49:3e:b7:cf:23:81:e6:
94:b9:f9:81:8d:bc:63:2f:1b:fa:13:fa:9b:5c:ee:d1:5f:19:
78:3d:27:da:cb:0b:ac:cd:08:20:3e:3a:d9:e9:10:f1:1a:1d:
ff:54:12:ae:22:78:e7:1b:2b:b8:ec:2b:f0:cc:f2:e0:8a:29:
ab:56:75:c1:e8:ac:82:83:98:29:bf:2e:46:a1:ba:eb:e2:be:
11:b2:7b:5e:39:31:bf:a9:47:f4:0e:d9:20:db:27:6a:22:f5:
99:c6:49:48:41:7f:7e:83:50:c9:0a:19:1a:a4:52:f6:f0:fa:
11:9c:37:db:66:83:6c:12:f9:64:8b:83:c3:aa:14:f5:31:93:
9e:6d:f5:4f:78:c8:64:36:93:cd:b4:c6:3c:84:92:0f:cb:5a:
8d:47:55:84:ea:2f:56:65:84:88:d6:5a:48:a9:89:25:0f:37:
3a:db:5e:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:55 2023 by rpki-client on console-fra.rpki-client.org