Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/j2w1HEG9V1yj4GGx1yJQ_pzxG7Y.roa
File: j2w1HEG9V1yj4GGx1yJQ_pzxG7Y.roa (raw, json)
Hash identifier: RvFnyqblZmAkEvDQ2zvvMIrGJCduzmP3/G7qnEiISSg=
Subject key identifier: 8F:6C:35:1C:41:BD:57:5C:A3:E0:61:B1:D7:22:50:FE:9C:F1:1B:B6
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 093F
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/j2w1HEG9V1yj4GGx1yJQ_pzxG7Y.roa
Signing time: Tue 29 Sep 2020 10:01:38 +0000
ROA not before: Tue 29 Sep 2020 10:01:38 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 7482
IP address blocks: 60.244.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2367 (0x93f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:38 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8F6C351C41BD575CA3E061B1D72250FE9CF11BB6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:7b:c7:8d:b2:fe:c7:70:d8:5d:6a:0e:ed:c6:
bc:02:ff:67:18:0c:a2:88:8c:66:40:7c:88:ed:49:
65:b5:cd:28:b0:2c:ae:a0:82:5c:7b:e9:0a:66:36:
4c:1c:f3:80:a9:5c:a1:2e:ca:88:48:a3:83:31:e3:
c8:70:f9:5a:4a:32:c9:8b:14:cc:fb:7c:46:90:f7:
61:ec:7d:9d:75:47:60:b8:6b:1a:85:1d:4f:56:bc:
34:88:0b:b4:6e:de:79:7a:75:16:74:a2:4a:a6:94:
d5:32:4e:f4:6f:31:3c:46:99:ef:88:d2:e2:3d:9f:
37:97:a3:c4:a3:c3:c6:06:7b:c0:87:94:87:ee:00:
7b:a9:5a:9f:70:b8:d1:e7:de:56:7c:6a:f1:73:38:
ac:c6:0b:2d:8a:e7:7e:97:3b:90:0a:ac:bc:70:3e:
55:96:26:70:2b:e0:84:d8:93:0c:ce:01:8f:5a:98:
c5:a4:9f:35:75:98:37:61:5d:bd:3a:28:3a:8c:de:
3a:c0:c5:ea:69:ad:26:e8:d3:ff:4d:f7:6b:68:a5:
27:20:2d:92:26:12:ba:aa:b9:c4:6d:84:78:c2:67:
65:40:0e:3e:60:53:48:b6:6b:7f:a3:20:4d:8e:14:
08:04:29:52:e6:b1:40:2f:72:4e:3a:3f:d5:c6:f2:
15:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:6C:35:1C:41:BD:57:5C:A3:E0:61:B1:D7:22:50:FE:9C:F1:1B:B6
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/j2w1HEG9V1yj4GGx1yJQ_pzxG7Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.244.0.0/17
Signature Algorithm: sha256WithRSAEncryption
b5:e0:34:42:55:80:66:cb:25:f7:38:2c:cb:69:00:5d:65:42:
c0:4b:ac:ab:9d:e1:48:ce:25:ed:6f:2d:6f:4e:38:18:4b:b6:
18:67:ed:ec:8d:8a:cd:7b:1d:7e:fd:88:3c:6c:d2:d9:a9:00:
fc:b4:82:06:e1:f6:09:9d:6c:fc:1d:48:2a:5a:10:f2:94:1d:
8b:4f:13:5c:72:cc:93:39:8a:98:ba:80:0f:6c:93:93:b6:0b:
ad:bd:a5:f9:ab:83:0b:fc:f2:78:a6:1e:f8:f7:dd:31:d4:44:
e5:28:2e:83:ef:eb:d2:58:ca:c5:43:56:70:95:e1:81:94:c5:
69:7f:10:11:a8:36:b9:5b:8c:da:09:f1:46:45:58:ea:8b:51:
fe:c1:7a:b3:96:0a:25:bf:ca:9e:6d:2a:65:e3:57:88:f5:1a:
55:d8:5e:0d:3c:03:85:11:8c:77:4c:8d:23:70:7e:16:18:86:
55:68:04:8d:be:c4:2f:0f:a5:b4:3a:a7:75:d6:11:98:27:e5:
ca:38:d7:9e:fc:55:d7:cb:c7:94:c8:28:09:39:7b:f7:e3:e5:
ab:c2:27:7c:b8:c1:73:29:32:08:e7:77:22:77:91:93:04:5b:
f8:cc:3d:87:40:b2:14:a4:5b:2e:d3:fa:8c:7f:84:5a:36:1e:
67:c4:8b:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:56 2023 by rpki-client on console-fra.rpki-client.org