Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/tujVQ_Ps6VSnIGi1_y9pM5T3zYU.roa
File: tujVQ_Ps6VSnIGi1_y9pM5T3zYU.roa (raw, json)
Hash identifier: AK1eVtedLh1z6vD3SzLHxKIISp1fUqodkZsSKrPVRek=
Subject key identifier: B6:E8:D5:43:F3:EC:E9:54:A7:20:68:B5:FF:2F:69:33:94:F7:CD:85
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0C67
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/tujVQ_Ps6VSnIGi1_y9pM5T3zYU.roa
Signing time: Sun 07 Feb 2021 11:35:59 +0000
ROA not before: Sun 07 Feb 2021 11:35:59 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131142
IP address blocks: 223.22.16.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3175 (0xc67)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Feb 7 11:35:59 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B6E8D543F3ECE954A72068B5FF2F693394F7CD85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:75:e5:ef:97:cc:a8:41:0b:be:75:5b:47:13:
6b:3d:47:55:6f:80:8c:e3:3a:29:24:31:b5:0a:e6:
ec:5f:71:32:43:21:4c:53:ce:6c:6b:4c:10:dd:6a:
da:0b:86:de:ca:45:77:12:6b:6b:5d:c0:0d:54:bf:
9e:ac:59:b7:8d:92:b2:8d:fc:ef:7f:62:9f:e7:f8:
ec:e9:5e:2c:0e:8d:a3:16:46:59:df:f2:9c:77:02:
14:b7:4f:b5:e5:5f:b8:a8:e4:67:da:0e:45:95:cd:
82:94:d6:1c:ea:02:ba:22:a3:a9:df:74:1d:66:47:
f9:f3:e1:c2:d7:f8:71:70:f5:d4:69:37:f0:76:9c:
d4:4b:2f:a7:9d:66:33:7d:5f:9b:16:5a:55:d3:f1:
ba:90:5d:79:27:d3:40:92:7a:f2:b4:7d:80:5c:ba:
44:1e:1c:56:71:36:13:81:5e:c6:c5:91:db:c2:d0:
03:d7:b4:d1:0e:df:f3:88:df:6b:74:45:33:6c:ba:
17:1e:fe:5e:58:56:26:ae:d3:51:14:5b:50:c8:a0:
bc:97:74:a3:41:53:f8:75:b5:c1:1b:77:1a:ea:f3:
5f:ca:4f:f7:29:e7:8d:bc:41:72:8f:62:ff:7a:4c:
a7:b3:8a:f9:94:22:d8:b4:85:b6:17:16:04:bc:ba:
b2:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:E8:D5:43:F3:EC:E9:54:A7:20:68:B5:FF:2F:69:33:94:F7:CD:85
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/tujVQ_Ps6VSnIGi1_y9pM5T3zYU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.22.16.0/22
Signature Algorithm: sha256WithRSAEncryption
ad:38:53:8b:b0:12:78:9d:e2:5b:2d:73:90:fe:05:70:e7:9a:
cb:6d:b7:e9:0f:b6:9c:e3:23:be:9a:9f:b3:c0:e8:7e:8e:6d:
a8:aa:38:b9:9b:5c:8a:28:ae:99:e3:64:b4:72:2b:df:45:02:
ef:d3:2c:76:6a:9f:e8:5c:e2:79:77:f7:59:36:8a:81:f1:54:
48:4a:65:fd:d2:8f:b6:fb:dd:d2:cc:6f:be:49:e3:8e:ee:6a:
e3:4d:59:97:bb:1e:1d:26:98:25:ca:e8:95:f4:a7:c3:ae:7d:
2d:71:11:8b:b4:7b:a1:b6:8c:e6:98:12:71:e9:9d:63:a1:43:
7b:f1:89:b3:74:ae:2c:6a:d1:2e:f0:5a:83:c5:64:67:21:8e:
aa:ab:4f:00:41:9c:76:8b:19:21:a4:a0:e7:e5:9a:48:83:06:
3f:50:59:1e:57:93:3d:c4:0f:9b:11:fd:82:cd:22:ec:5e:bb:
a1:90:1a:26:07:8b:62:02:d4:fc:d6:72:23:de:3d:d3:4d:b3:
19:ec:d0:2e:ec:11:42:a2:ac:f1:7f:50:a9:7f:5e:22:03:1a:
81:e9:36:ed:1b:39:72:cd:0b:27:63:2f:6e:ab:fa:8f:1c:9d:
72:9a:24:98:68:35:94:98:67:f8:d0:16:47:8d:40:df:17:70:
04:64:e1:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:56 2023 by rpki-client on console-fra.rpki-client.org