Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/f986gQINxtOb40U-rneE_oSztJU.roa
File: f986gQINxtOb40U-rneE_oSztJU.roa (raw, json)
Hash identifier: oJo80XW5crrT48LG3SCsklis4227EnduP1q+SBBaoi0=
Subject key identifier: 7F:DF:3A:81:02:0D:C6:D3:9B:E3:45:3E:AE:77:84:FE:84:B3:B4:95
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0DA6
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/f986gQINxtOb40U-rneE_oSztJU.roa
Signing time: Wed 29 Sep 2021 02:39:23 +0000
ROA not before: Wed 29 Sep 2021 02:39:23 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 7482
IP address blocks: 60.244.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3494 (0xda6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:39:23 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=7FDF3A81020DC6D39BE3453EAE7784FE84B3B495
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:a1:e0:b6:72:a2:d3:46:91:23:81:07:ea:c6:
c2:10:06:7d:9c:91:27:d6:9f:06:79:14:8f:e5:81:
50:0f:86:a9:94:06:55:de:ba:fb:43:d7:93:bb:56:
b7:14:38:24:67:28:82:11:77:55:4b:96:9a:05:87:
bb:bb:24:26:af:41:42:62:4b:38:51:37:25:3e:25:
5f:a3:20:52:1b:8f:66:2b:18:a8:dd:3f:2f:be:ce:
55:f1:6a:83:3b:f2:45:54:a1:e6:b4:a5:8e:fd:d0:
56:4f:c1:47:06:84:15:a4:11:58:6c:2f:6f:76:08:
53:05:95:ab:a8:b3:b6:04:5b:e3:29:27:ef:3a:db:
a5:5a:97:fc:09:37:ab:0c:6a:4f:c7:9b:6e:17:94:
ff:a5:66:60:9e:6f:62:23:27:73:c0:87:ee:39:ff:
d6:3f:73:0e:b9:d6:46:5d:eb:87:aa:18:69:77:36:
79:95:e6:34:fc:b5:fc:68:32:e7:03:99:b3:f9:93:
b5:ce:d9:b8:2b:0b:3f:7a:c8:d0:c2:30:1a:d6:bb:
78:27:97:4f:3b:8f:52:df:db:70:15:be:9c:59:fd:
51:e3:40:bb:ee:ca:4f:cf:ba:a2:e9:42:b5:f2:76:
4a:8d:8c:ba:e9:b7:ed:eb:a3:8f:0c:a0:04:88:9d:
19:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:DF:3A:81:02:0D:C6:D3:9B:E3:45:3E:AE:77:84:FE:84:B3:B4:95
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/f986gQINxtOb40U-rneE_oSztJU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.244.0.0/17
Signature Algorithm: sha256WithRSAEncryption
af:a2:a9:14:5f:b7:73:cb:36:5f:59:8a:38:c1:98:be:b8:79:
6e:46:3e:13:a0:df:38:ff:3f:b5:24:ad:9b:9b:be:f9:f8:a9:
fb:34:14:62:ee:1f:e3:31:8c:dc:22:26:37:47:09:d8:85:06:
7b:2e:77:2a:90:8f:7e:d2:73:04:34:c4:cd:20:b3:ad:ec:66:
4e:72:80:58:c5:4a:dd:fd:73:6b:25:18:ca:09:08:c0:d5:ef:
6e:c7:6b:af:e4:22:22:5b:a8:5b:74:92:5f:df:e4:7d:f9:75:
02:10:3e:1f:7f:3f:08:99:61:26:e7:e5:a7:de:25:43:fe:23:
c4:1f:74:71:6d:c4:05:2f:27:5f:e2:e6:a5:ee:df:03:54:fa:
1d:50:63:9b:02:7e:96:db:d1:55:23:22:5f:c6:52:e2:f3:c3:
24:c6:be:f7:b1:da:f3:06:fd:d8:d6:2a:0a:97:dd:23:d8:6a:
cc:bf:db:3d:8d:9a:0d:20:07:ed:e1:1b:ed:e8:16:49:ca:bb:
e6:51:a3:6e:ba:12:8a:af:22:91:63:0f:dd:d5:68:61:d2:59:
8f:7b:8c:93:c9:f8:af:46:16:4a:b4:ac:20:04:e4:ae:01:33:
01:72:6e:39:b7:95:2d:e9:b8:72:00:33:5b:af:23:2f:38:aa:
0c:c6:51:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:56 2023 by rpki-client on console-fra.rpki-client.org