Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/e0P0N0tB6TsZibka8Q3wg4qg3N4.roa
File: e0P0N0tB6TsZibka8Q3wg4qg3N4.roa (raw, json)
Hash identifier: AYS92wFljiXN2FZpzCT3o+2gUtjyNL0wxiSVD/NBBes=
Subject key identifier: 7B:43:F4:37:4B:41:E9:3B:19:89:B9:1A:F1:0D:F0:83:8A:A0:DC:DE
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0C93
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/e0P0N0tB6TsZibka8Q3wg4qg3N4.roa
Signing time: Sun 07 Feb 2021 11:40:09 +0000
ROA not before: Sun 07 Feb 2021 11:40:09 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 7482
IP address blocks: 223.22.0.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3219 (0xc93)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:40:09 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=7B43F4374B41E93B1989B91AF10DF0838AA0DCDE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:32:33:d5:3c:22:89:f0:ca:52:5e:a0:74:a3:
f8:7b:e7:15:75:e5:e8:0c:95:bc:29:15:0c:f1:8b:
a6:73:b5:81:94:9c:fe:70:33:70:46:a8:f8:85:ed:
90:9c:54:39:5a:d5:3c:cd:93:bf:57:ba:a7:20:45:
43:f1:37:c0:ab:d7:43:d4:84:75:0d:8f:62:93:35:
62:81:69:5a:7d:f8:6b:a4:5b:c1:14:7a:12:cb:8f:
5f:63:42:43:f8:b9:d9:a7:69:08:51:05:b1:3c:9b:
8a:f9:ba:05:fa:7d:ed:2a:47:f3:4c:74:55:d2:89:
73:0b:ee:98:be:35:3f:e4:48:97:39:c2:15:d9:45:
04:84:42:61:8f:97:f3:b8:4e:ff:84:6a:d9:22:a3:
9a:8a:01:47:58:f9:31:ee:a2:b4:f7:f2:aa:9e:5f:
cc:a6:65:69:3a:0a:a2:dc:d3:5f:b0:31:dc:da:99:
09:40:58:3a:e9:b0:3c:63:1f:0f:1f:25:5b:ff:56:
bd:1e:57:b0:b0:cc:fa:e2:51:07:72:90:3f:3c:f8:
2a:ae:32:ec:34:ca:bb:05:7c:3c:38:ef:a7:3b:6c:
26:eb:74:f3:03:82:6a:8f:70:53:d1:2b:42:45:77:
9c:29:dd:43:64:55:79:89:30:44:0d:d0:46:1a:48:
6d:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:43:F4:37:4B:41:E9:3B:19:89:B9:1A:F1:0D:F0:83:8A:A0:DC:DE
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/e0P0N0tB6TsZibka8Q3wg4qg3N4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.22.0.0/18
Signature Algorithm: sha256WithRSAEncryption
18:53:f4:db:2a:ed:37:2f:ad:b2:74:36:96:4b:13:13:78:b4:
c6:e3:bb:eb:99:de:b0:bf:5f:62:97:7d:c8:83:4e:ae:b5:a3:
e6:c1:13:51:61:f4:38:3a:cc:f1:5e:b0:6b:bd:28:42:b6:18:
0a:68:4c:82:23:86:15:84:f9:78:96:92:cd:a4:d5:8e:bf:fd:
02:d4:36:6c:08:6d:70:8b:bb:ac:b4:07:00:cc:e4:d0:cd:b2:
d1:5c:e8:44:d3:ae:71:c3:d4:af:3a:ef:6c:28:71:df:46:8b:
49:56:2b:e8:3d:0d:08:4b:40:22:41:12:cf:8a:b9:03:34:77:
2c:2f:85:1a:c0:92:7a:86:ac:f6:88:20:2c:e1:b2:96:9e:95:
c4:9c:bf:b7:2c:f4:c4:be:8e:9d:8f:d8:6d:72:75:25:4a:2d:
52:d4:d2:27:37:e3:ee:50:1b:24:a3:41:3a:f8:6c:a7:a2:1a:
63:be:fd:72:48:c0:b7:ee:72:7a:25:9d:71:2e:6e:b8:4e:3d:
1d:3c:1f:ec:97:63:9e:a5:77:bd:b5:68:31:e0:1a:51:7f:6b:
45:d4:8d:e4:90:8f:91:4b:3b:c2:a1:df:20:0f:3b:74:ab:c7:
fe:68:4d:77:a6:1e:61:4b:04:7b:a0:37:36:5f:d5:c6:a1:88:
02:c9:66:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:45 2023 by rpki-client on console-ams.rpki-client.org