Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/pkLiP9GianxGIugIozzOQicHwPs.roa
File: pkLiP9GianxGIugIozzOQicHwPs.roa (raw, json)
Hash identifier: C2Y4CdHd3SfoHEOmAuCFrcMg8c0LOuUatmxAE6aT5ro=
Subject key identifier: A6:42:E2:3F:D1:A2:6A:7C:46:22:E8:08:A3:3C:CE:42:27:07:C0:FB
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0E07
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/pkLiP9GianxGIugIozzOQicHwPs.roa
Signing time: Wed 29 Sep 2021 02:39:52 +0000
ROA not before: Wed 29 Sep 2021 02:39:52 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17709
IP address blocks: 219.91.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3591 (0xe07)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:39:52 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=A642E23FD1A26A7C4622E808A33CCE422707C0FB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:e9:d2:57:d8:47:22:6b:cb:7a:66:9f:bc:bf:
28:40:f0:5b:ee:af:65:86:e7:94:96:ea:a5:9e:b9:
56:cc:56:93:2f:5c:2c:73:e8:de:27:76:2d:bd:5b:
a0:a9:e5:4e:04:c5:0d:c7:62:8d:b0:84:14:73:97:
03:88:bc:28:b2:4d:c0:25:da:35:84:f3:72:23:be:
a4:b6:65:b3:de:e7:cd:fd:53:dc:83:59:fd:40:7e:
c6:ee:cf:b2:f8:b2:1e:fc:2a:f3:55:38:87:88:bc:
26:70:ad:c2:23:71:ee:13:74:c2:85:e3:54:17:5b:
9a:3e:00:2c:c6:fb:29:23:89:0a:20:8c:c2:85:73:
a2:3c:f3:09:17:79:df:c4:86:18:8a:e3:ae:87:ba:
cb:2e:50:9a:7a:0a:d6:c1:a5:c8:3a:83:45:7a:d9:
bb:c7:26:e1:a6:4c:52:ee:31:55:52:e1:af:86:0e:
d2:75:9d:6f:9c:a0:c2:6a:b2:fb:9b:f5:03:50:b4:
c8:bc:ab:d4:b8:4f:45:23:33:82:62:55:02:85:a2:
62:a6:2d:b5:d1:1a:de:9d:ce:32:22:85:1b:9b:d5:
58:38:21:a1:b3:71:d0:6e:d8:de:8d:48:08:6c:71:
bb:96:fb:90:42:0d:6a:29:3e:f5:30:18:12:5e:31:
b5:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:42:E2:3F:D1:A2:6A:7C:46:22:E8:08:A3:3C:CE:42:27:07:C0:FB
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/pkLiP9GianxGIugIozzOQicHwPs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
219.91.0.0/17
Signature Algorithm: sha256WithRSAEncryption
0a:35:88:59:81:b5:3c:6c:f7:db:ca:12:e5:f7:54:67:9d:dd:
60:1d:15:d9:de:1e:2d:47:1f:72:69:fe:8d:9d:12:74:f9:b4:
4d:d0:7e:85:1f:98:5f:01:a9:b5:49:56:28:fe:c4:13:89:92:
21:0b:85:4e:cb:91:43:55:33:49:bd:84:ed:f9:c4:f0:e1:af:
06:3c:e1:bb:01:26:27:d3:fa:4f:a0:5f:65:1b:7b:57:4b:8c:
6c:f3:13:b9:41:23:85:8b:1a:5f:75:7a:dd:ee:4c:0c:b5:64:
39:d8:e9:69:a5:81:b8:40:46:6b:72:c7:a0:7e:52:4a:96:57:
5b:20:22:99:67:ee:45:f6:31:78:b9:59:02:41:b5:e0:34:c8:
23:38:6a:bc:6f:bf:64:80:e4:69:2b:14:1c:6d:b4:de:03:4e:
05:03:80:a2:e4:0e:c9:34:5a:e5:94:c3:12:ac:f6:db:62:33:
73:54:9c:25:ca:b4:47:7b:45:3e:86:92:a3:6f:bf:4f:67:74:
ea:b3:93:b3:ba:7d:09:72:e1:1c:e9:c4:08:6b:61:e6:6d:ed:
75:de:a3:91:14:b3:2a:3e:b8:f2:7a:d6:ab:15:70:f6:be:c7:
10:f8:54:69:27:25:e9:8d:12:34:f0:0e:25:82:d2:88:16:3f:
44:4e:82:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:56 2023 by rpki-client on console-fra.rpki-client.org