Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/ie8qZGfnqBFORofEY6FtJMCzl0s.roa
File: ie8qZGfnqBFORofEY6FtJMCzl0s.roa (raw, json)
Hash identifier: 6z4C27kxbQQQ+3JIXuSW7nzLehvd+fvJvvMkkv+mY7o=
Subject key identifier: 89:EF:2A:64:67:E7:A8:11:4E:46:87:C4:63:A1:6D:24:C0:B3:97:4B
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0C6D
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/ie8qZGfnqBFORofEY6FtJMCzl0s.roa
Signing time: Sun 07 Feb 2021 11:39:33 +0000
ROA not before: Sun 07 Feb 2021 11:39:33 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24154
IP address blocks: 60.244.64.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3181 (0xc6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:39:33 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=89EF2A6467E7A8114E4687C463A16D24C0B3974B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:74:9b:44:59:fd:ef:61:9d:53:f6:87:ba:92:
45:d4:f6:42:8f:3d:8b:25:31:d0:83:98:26:b4:bc:
e0:1f:7e:44:c1:d6:38:8f:d9:52:96:68:9e:45:f6:
0b:91:25:e0:e1:a5:ae:ed:e7:99:a0:39:f1:59:e3:
65:92:a9:c9:83:9e:57:8e:2e:8f:e0:b1:1f:1d:95:
ad:f4:ca:c0:57:4f:2f:80:95:d1:39:e3:0a:fa:54:
54:59:01:de:19:cf:55:80:46:00:f9:39:47:cf:10:
85:35:21:df:b2:b9:b0:73:c7:95:1d:6c:a0:a4:a4:
8c:5c:e3:54:95:72:6f:64:d1:7b:a0:63:63:33:64:
79:b5:15:16:f5:48:8c:17:31:06:26:d7:aa:04:e5:
76:2e:c3:94:58:15:98:e4:a0:6d:0b:c9:64:8a:e9:
ba:3f:ab:f4:da:e8:89:50:90:73:bc:da:af:f2:d4:
57:1a:c4:6f:79:d4:90:ba:e6:30:1c:02:fb:04:d3:
8a:3f:8d:c8:59:1c:1e:ea:a9:96:c4:92:7c:e8:11:
70:5a:4d:6d:73:be:27:a7:7c:2d:f0:46:e1:5d:b2:
c1:e3:1f:13:96:b6:09:46:3f:12:e1:47:39:c8:fd:
c3:30:b4:e5:06:cb:a4:74:cc:66:f9:66:95:65:de:
de:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:EF:2A:64:67:E7:A8:11:4E:46:87:C4:63:A1:6D:24:C0:B3:97:4B
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/ie8qZGfnqBFORofEY6FtJMCzl0s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.244.64.0/18
Signature Algorithm: sha256WithRSAEncryption
4b:68:e0:d6:1c:31:8b:66:c9:40:7e:a6:a5:5c:37:3b:92:f3:
7e:57:47:ae:02:a5:db:b0:46:c4:4e:3c:49:e1:01:56:5c:d6:
04:34:e6:75:10:76:2e:5c:ad:67:5e:6b:54:6f:72:c8:9c:93:
fc:01:a7:ea:9d:08:40:25:03:3e:2d:eb:f0:e1:58:af:b6:4d:
72:d8:f6:f8:37:ae:6a:a2:40:a6:28:1d:4f:57:04:a9:86:e7:
4e:3b:1f:ee:44:8c:82:23:64:f4:bb:21:ea:62:7a:c8:3b:33:
8b:6c:2a:19:23:04:37:7f:c6:92:6f:7b:60:3c:42:b2:4c:d0:
4d:2e:2a:c4:03:39:b5:09:4f:41:60:c4:c4:a2:3e:f0:10:87:
55:f5:0e:fc:60:d7:d5:5a:f1:c5:1b:40:5b:f2:c3:13:08:d9:
4c:eb:32:13:00:d2:16:06:2c:38:dc:51:87:b2:9b:af:fa:a5:
f2:ae:30:84:9f:77:26:e6:80:42:ba:44:06:c1:6c:a4:4b:00:
fe:1b:e5:e8:b9:ef:31:b8:e4:5d:d0:3b:e4:0f:12:a4:15:4a:
0e:30:8f:ba:ee:db:07:33:ec:81:eb:ba:25:4d:78:5a:6e:e4:
d8:54:c2:fa:c2:81:71:bd:74:84:22:29:7b:21:c3:ff:47:d5:
fa:29:9d:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:56 2023 by rpki-client on console-fra.rpki-client.org