Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/kSTR5aPcgZGJEIMdVuyO8WINHeQ.roa
File: kSTR5aPcgZGJEIMdVuyO8WINHeQ.roa (raw, json)
Hash identifier: UNU4Rg6AiAvsguAj/pdl1eCnAqqOd8akTUHHX05X4ZQ=
Subject key identifier: 91:24:D1:E5:A3:DC:81:91:89:10:83:1D:56:EC:8E:F1:62:0D:1D:E4
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0932
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/kSTR5aPcgZGJEIMdVuyO8WINHeQ.roa
Signing time: Tue 29 Sep 2020 10:01:35 +0000
ROA not before: Tue 29 Sep 2020 10:01:34 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131142
IP address blocks: 2404:0:7000::/36 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2354 (0x932)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:34 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9124D1E5A3DC81918910831D56EC8EF1620D1DE4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:87:34:84:e3:23:77:fd:10:a1:56:0a:12:0d:
19:d6:72:17:ea:ab:f5:cb:80:8b:9f:55:87:9b:13:
3f:04:63:81:5e:fa:bd:51:f0:1b:0a:e1:5b:f8:9b:
a6:08:57:c6:a2:22:9c:68:5d:30:ff:01:f2:9e:b1:
26:bc:1b:73:1b:61:f0:95:c1:09:37:b4:26:19:b3:
cd:53:1f:51:18:f8:d8:3c:e2:78:46:d6:e8:af:26:
46:ad:de:03:3a:5f:81:25:46:37:af:b9:24:40:71:
39:ee:28:e2:eb:84:26:64:92:ee:dd:f7:50:1e:62:
7b:61:fb:51:af:63:fd:46:fa:b0:15:17:fb:00:fb:
9f:83:d0:43:86:c4:56:92:fe:0c:60:f2:3f:58:51:
4f:33:29:1d:df:65:c4:94:af:05:ba:1a:10:0c:74:
ff:79:f7:17:de:64:7e:36:67:11:b2:38:56:ae:21:
56:08:7b:da:d2:12:2a:3a:2b:33:b9:1f:72:0f:14:
81:fb:5e:e4:28:eb:7e:72:34:f9:eb:66:be:86:5c:
5d:d9:0b:3c:84:0d:37:00:cd:76:0d:dc:93:3b:0b:
93:51:72:b1:d1:bd:06:e3:38:de:6b:e3:e6:24:fa:
ba:4c:92:59:4c:70:52:65:76:39:cc:e4:1a:c7:b3:
7b:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:24:D1:E5:A3:DC:81:91:89:10:83:1D:56:EC:8E:F1:62:0D:1D:E4
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/kSTR5aPcgZGJEIMdVuyO8WINHeQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:0:7000::/36
Signature Algorithm: sha256WithRSAEncryption
56:3f:00:02:bd:8d:fd:83:74:8b:22:df:e0:25:b8:2c:61:7f:
3d:01:9c:f5:5e:13:f1:fc:a6:70:f2:b5:1f:ef:38:93:b3:ec:
07:22:05:0b:89:b3:ec:34:fb:29:5a:ba:b5:af:7b:6a:9d:b6:
d1:ee:cb:8b:e3:c1:1f:c0:00:0a:72:81:7f:58:b6:b6:2c:86:
46:64:60:e5:c9:0a:a9:05:eb:2a:7d:07:b8:e0:27:d8:44:59:
cc:2d:65:67:74:68:6b:1d:d7:0c:c0:43:ad:8e:5c:67:6b:c4:
2c:91:dd:97:07:6a:34:6b:81:d0:fa:fa:0e:fa:cd:2b:e4:52:
19:33:73:03:22:2c:04:93:e4:69:b8:87:c5:5e:9a:66:7e:1d:
13:65:ce:64:6c:6a:33:cd:27:31:ec:7d:fd:2b:a5:44:4b:d4:
73:44:fc:99:cb:4c:0b:96:8b:08:41:83:7d:26:b5:eb:9a:0a:
29:b3:ae:89:c0:48:c0:7b:ee:6b:26:5a:2b:68:d6:39:4f:cb:
96:2d:1b:8e:44:d4:57:55:04:8c:84:95:56:33:ef:ec:ec:be:
42:cf:82:34:39:54:0f:71:3e:7c:80:a0:ca:bd:28:34:c7:a5:
7d:a0:16:5e:76:67:8a:ff:c4:09:41:73:d4:2a:45:30:df:27:
57:46:b5:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:56 2023 by rpki-client on console-fra.rpki-client.org