Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/jtqW_nRtQ1hgzjLIUVWntW3PjZw.roa
File: jtqW_nRtQ1hgzjLIUVWntW3PjZw.roa (raw, json)
Hash identifier: K/2LqkalUo1d9TaA1mkUSbPSwpl6plEgGRkrX/3WHIg=
Subject key identifier: 8E:DA:96:FE:74:6D:43:58:60:CE:32:C8:51:55:A7:B5:6D:CF:8D:9C
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0B95
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/jtqW_nRtQ1hgzjLIUVWntW3PjZw.roa
Signing time: Sun 07 Feb 2021 11:33:16 +0000
ROA not before: Sun 07 Feb 2021 11:33:16 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17709
IP address blocks: 124.218.0.0/16 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2965 (0xb95)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:33:16 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8EDA96FE746D435860CE32C85155A7B56DCF8D9C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:23:13:fa:b1:2c:16:51:95:6e:62:0b:02:6f:
cf:93:a8:c1:67:ee:23:26:ca:b9:a4:fe:88:da:ff:
82:6a:f8:a2:11:e2:b4:4d:b3:c9:34:2f:3d:28:a3:
58:c4:54:31:79:bf:24:05:b5:7f:73:9f:39:57:4a:
10:74:c9:54:7b:09:6c:d8:63:59:ac:d3:90:f7:6b:
e3:05:e1:cc:ca:66:6b:fc:2c:94:f1:04:f4:7a:1b:
e9:ff:1a:03:5e:b1:54:72:1d:f7:c5:7e:d5:4f:1d:
5b:27:9a:d2:c5:eb:eb:30:7b:fa:c7:2d:51:a9:9b:
4c:78:8b:ee:a6:e9:c9:df:93:ae:78:1c:d9:65:bf:
75:aa:5d:41:af:a1:14:e3:5d:da:3f:86:31:a4:0d:
e1:86:42:74:a8:8e:1f:67:0d:54:39:4f:7d:eb:8f:
93:42:04:c3:9d:05:b8:25:74:2a:0f:37:9a:32:59:
6c:b1:01:bd:d9:4f:54:87:a9:29:9b:43:ee:3c:d8:
7d:db:b2:e0:99:9b:03:75:84:2d:7b:98:98:d1:00:
6b:01:a2:7d:95:51:b2:71:82:90:b9:19:e6:aa:2c:
29:c4:66:ed:8b:52:27:97:ef:a8:de:43:72:76:0c:
fd:b1:c2:5a:e2:49:9b:f1:8b:b9:5c:96:34:8a:f4:
49:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:DA:96:FE:74:6D:43:58:60:CE:32:C8:51:55:A7:B5:6D:CF:8D:9C
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/jtqW_nRtQ1hgzjLIUVWntW3PjZw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.0.0/16
Signature Algorithm: sha256WithRSAEncryption
7b:16:04:d6:42:ec:5a:3e:19:6f:4d:b2:b1:3d:88:59:1b:6d:
98:91:1a:9b:a7:7a:0c:3a:05:c8:f1:8e:c2:81:3c:6e:f7:9d:
81:44:78:ce:58:b4:12:73:ab:c5:c4:b7:dc:27:63:08:ac:64:
17:47:01:25:91:aa:15:58:7d:86:5a:65:7b:5e:f0:b6:31:5a:
ee:bb:5a:1a:3f:a5:20:59:a1:9d:03:e5:33:d0:3d:1d:a2:25:
86:11:b4:0c:ff:a5:ab:75:49:d6:3c:61:9e:d3:48:9c:fb:c6:
9f:f2:b1:06:12:b7:3d:84:1e:e9:18:0a:2e:b3:64:29:d9:dc:
11:6b:40:50:89:93:57:71:47:9e:13:a9:5f:59:dd:6a:67:3a:
e4:f5:32:0e:5a:ee:df:97:72:c2:7d:9a:d4:02:0e:c1:f1:ef:
fb:3f:b0:41:6d:25:44:77:24:87:0a:39:b5:28:7b:c7:e9:10:
68:c7:9f:94:46:00:9a:e3:2c:9b:8c:61:11:d8:c1:98:06:75:
68:9d:63:9e:c1:aa:a8:43:d8:82:67:69:8f:68:73:fe:f6:1f:
0f:3e:9f:6e:b4:c5:3c:00:5c:f4:16:e0:4b:87:4f:c1:6e:69:
63:41:3e:29:b8:80:42:60:28:26:2d:83:e7:14:9b:f1:df:53:
c8:a1:de:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:45 2023 by rpki-client on console-ams.rpki-client.org