Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/rG4z0irW_3OuAu8A4zBytox-_Xw.roa
File: rG4z0irW_3OuAu8A4zBytox-_Xw.roa (raw, json)
Hash identifier: fcs3KAro0o3PsGDU02Mf1AhlMkwXuKJGhQnxaMv3Jyc=
Subject key identifier: AC:6E:33:D2:2A:D6:FF:73:AE:02:EF:00:E3:30:72:B6:8C:7E:FD:7C
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 08F8
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/rG4z0irW_3OuAu8A4zBytox-_Xw.roa
Signing time: Tue 29 Sep 2020 10:01:18 +0000
ROA not before: Tue 29 Sep 2020 10:01:18 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131142
IP address blocks: 223.22.254.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2296 (0x8f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:18 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=AC6E33D22AD6FF73AE02EF00E33072B68C7EFD7C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:a4:52:93:78:b7:43:a6:f2:0b:fa:67:d2:7e:
18:66:f0:f6:65:ea:45:96:3a:d2:c3:c1:c9:fd:5b:
96:29:90:76:c2:2e:9b:ba:ba:e0:c8:92:89:89:9b:
51:9e:95:88:ca:94:2c:d4:7b:af:a4:df:39:02:3e:
98:8b:65:24:8b:7b:0b:a0:91:9f:6c:40:bf:7b:9c:
17:96:4f:38:e1:b9:11:77:da:b7:47:c7:62:8c:85:
73:dc:1f:8a:43:e6:19:82:b6:76:e3:db:17:9a:82:
12:20:64:91:6a:76:d1:64:38:9c:a2:0d:ad:56:22:
94:2b:85:dc:59:5a:67:23:74:7e:fd:49:48:2c:13:
b6:4f:49:46:b7:65:ce:84:19:ae:c2:83:10:d4:58:
85:2a:49:23:73:7f:d4:66:13:38:de:03:10:21:91:
d6:eb:e9:84:d5:9a:70:a1:59:fa:20:7b:4b:10:68:
c4:bf:60:ae:31:f4:c7:f5:0d:72:5b:b8:f8:b7:fe:
b9:6d:58:7e:ba:1e:57:b5:85:39:08:b0:cd:b8:8d:
98:8e:a6:74:d4:90:f0:03:fe:00:c8:8d:ab:9f:75:
bf:ee:60:b1:67:88:54:3f:01:db:f5:a4:17:7d:1f:
f4:b8:6f:a0:2c:a7:16:af:f2:f8:b8:f1:a8:c5:e7:
97:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:6E:33:D2:2A:D6:FF:73:AE:02:EF:00:E3:30:72:B6:8C:7E:FD:7C
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/rG4z0irW_3OuAu8A4zBytox-_Xw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.22.254.0/24
Signature Algorithm: sha256WithRSAEncryption
20:ac:7a:38:62:99:84:d5:e6:24:60:b4:fc:ce:6d:66:af:0e:
cb:d8:fa:ce:94:fd:94:ba:34:b6:cc:f4:09:55:ac:fd:b5:cf:
51:6e:35:5f:4c:16:54:31:6c:40:ac:65:81:50:11:0c:c6:c1:
dc:e9:ce:26:ee:10:39:9b:cf:50:0d:c2:04:47:c6:1e:b6:6c:
54:47:c1:e1:ed:fb:33:ad:68:42:2c:b0:f8:68:8a:bb:66:7d:
fb:53:f2:ca:c1:08:af:09:32:0f:70:ed:a7:53:d2:3d:7a:64:
04:57:50:f0:c0:04:ab:29:f9:3c:d5:2a:23:d6:2f:7a:b5:f6:
80:60:15:2e:7b:f3:9d:d7:ad:77:46:0b:43:39:64:cd:bd:2a:
d5:ca:06:ef:6c:51:0e:de:f9:d4:63:02:7d:1d:af:38:75:2e:
73:7e:d9:fd:d0:78:fa:e8:38:4e:ca:61:1d:9f:ef:8f:3d:fc:
7a:74:39:83:76:e0:4a:11:d8:e7:ce:b2:9a:ea:e0:0b:96:c1:
c9:a0:f3:d2:40:75:7e:3d:e6:8a:ee:da:4e:75:83:aa:e3:58:
c7:19:82:d5:b1:da:ce:63:54:20:4b:fc:5e:03:0f:1c:8d:e8:
1f:58:ea:86:82:7f:ce:aa:c2:72:61:e3:3d:0f:9c:25:2c:4f:
22:a0:2b:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:56 2023 by rpki-client on console-fra.rpki-client.org