Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/pVas-Mzz8f33pC9FcshNhKW9dCc.roa
File: pVas-Mzz8f33pC9FcshNhKW9dCc.roa (raw, json)
Hash identifier: XWc8/QlD6mli3mGSZ3dAk7xrzQcedYOtJWQd+IdhBGc=
Subject key identifier: A5:56:AC:F8:CC:F3:F1:FD:F7:A4:2F:45:72:C8:4D:84:A5:BD:74:27
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0B9B
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/pVas-Mzz8f33pC9FcshNhKW9dCc.roa
Signing time: Sun 07 Feb 2021 11:33:21 +0000
ROA not before: Sun 07 Feb 2021 11:33:21 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17709
IP address blocks: 60.244.128.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2971 (0xb9b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:33:21 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A556ACF8CCF3F1FDF7A42F4572C84D84A5BD7427
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:6a:0a:17:62:91:3b:0b:84:07:61:9e:82:cd:
17:02:a1:0c:31:35:ca:61:01:da:70:ed:62:b3:20:
e5:00:f5:21:86:fe:82:c6:37:21:fb:4d:84:67:a3:
1f:9c:fc:51:50:e0:17:6a:c8:bf:3b:18:58:dc:7b:
30:a7:0d:3e:1f:bc:e4:bb:c8:8d:c1:57:8b:32:98:
8f:21:ce:c9:a8:ed:5a:b9:0c:26:54:ce:bc:53:8f:
c7:68:b0:43:af:c3:11:93:11:7b:8a:67:67:c9:81:
23:3b:92:06:6a:88:fe:cb:4c:24:5a:50:bd:ce:fd:
42:a7:bf:aa:53:41:14:0a:c6:a3:27:47:23:8f:99:
90:e3:c8:11:fa:09:fb:a9:da:cd:29:e0:7c:58:43:
94:94:e8:26:52:29:d1:d6:58:35:6d:29:bc:3c:c2:
fa:e2:df:d9:a3:44:b4:db:8e:21:ab:96:9f:35:8e:
97:38:d3:f7:4d:a9:c3:ee:88:f6:ea:2e:10:62:52:
77:a2:03:b4:f7:96:39:f9:59:8f:84:2e:d6:23:03:
73:2a:a2:af:d5:00:92:a0:28:5c:34:ec:03:46:6e:
80:e6:29:53:90:33:fd:22:ee:f9:1a:55:f2:a5:73:
c8:f2:6b:a6:e3:e6:42:2d:08:8c:bb:d4:bb:a5:16:
82:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:56:AC:F8:CC:F3:F1:FD:F7:A4:2F:45:72:C8:4D:84:A5:BD:74:27
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/pVas-Mzz8f33pC9FcshNhKW9dCc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.244.128.0/17
Signature Algorithm: sha256WithRSAEncryption
38:57:c6:4e:db:ed:fb:2f:01:23:d1:ef:35:b7:96:a3:78:e3:
4f:44:ca:f2:01:ac:17:e0:b7:37:49:3f:50:4f:6e:4e:50:a0:
55:a6:84:2e:9b:dd:d6:eb:36:b0:28:96:6a:f4:4c:b4:41:ae:
93:be:93:df:2e:61:6f:29:ec:7a:45:15:a0:e2:df:d0:ee:7b:
0b:d1:81:92:f2:fb:5b:7d:f0:4b:1a:76:45:c4:9c:40:fe:da:
ac:c2:e1:8f:93:1b:ce:21:f9:4d:52:94:6f:67:9d:4e:8b:3b:
64:6e:1e:5d:f6:4b:47:27:52:4d:7d:db:67:30:91:41:b6:53:
3c:cf:d4:1c:59:89:c9:a3:62:13:fe:e1:66:6c:7d:65:01:05:
31:77:b7:66:ad:1e:ea:2b:4b:0a:70:40:e6:55:b8:37:6d:3e:
d3:30:d4:26:40:08:7c:4a:30:32:e2:66:39:9d:98:d9:57:f7:
03:73:63:b5:e4:99:86:27:4a:71:53:c0:c6:8a:59:f2:e3:15:
b4:36:8b:70:f2:0a:cc:f3:51:67:41:ee:d9:b2:e1:cf:92:81:
cf:27:a7:2d:27:c4:8e:04:a8:16:6b:76:06:f2:4e:00:5e:e0:
65:5c:82:22:e7:16:80:f3:14:77:f4:72:07:88:28:33:86:ef:
99:5d:ab:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:46 2023 by rpki-client on console-ams.rpki-client.org