Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/us7kj0bljqBv3nbr1S6LW-YLyNI.roa
File: us7kj0bljqBv3nbr1S6LW-YLyNI.roa (raw, json)
Hash identifier: 4BGjsm+MsynBUtFgQFpdxKObJ+LyF2xCgRdK4sgJGtA=
Subject key identifier: BA:CE:E4:8F:46:E5:8E:A0:6F:DE:76:EB:D5:2E:8B:5B:E6:0B:C8:D2
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0E3F
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/us7kj0bljqBv3nbr1S6LW-YLyNI.roa
Signing time: Wed 29 Sep 2021 02:40:08 +0000
ROA not before: Wed 29 Sep 2021 02:40:08 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131591
IP address blocks: 2404:0:8000::/36 maxlen: 56
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3647 (0xe3f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 02:40:08 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=BACEE48F46E58EA06FDE76EBD52E8B5BE60BC8D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:e2:de:b5:9c:fe:18:c3:0f:bd:e3:a6:4c:ab:
54:22:1d:c7:83:2b:87:38:33:d0:29:a7:86:2c:6c:
94:e4:9e:3a:61:9a:2b:ca:a6:34:53:87:a8:a4:7c:
01:9f:6a:7d:bf:06:a7:e1:95:63:38:21:4a:10:d4:
a4:a0:ed:c0:5f:ad:98:19:b6:7b:f6:ea:59:4b:f9:
9a:5a:1a:c4:f2:4b:ea:a2:09:64:4f:66:a7:e9:33:
49:a2:8d:d0:55:1d:8a:ae:cc:d7:38:4c:ed:3b:a2:
94:5c:81:b7:5a:0b:1b:78:6b:54:8b:d7:6f:62:2d:
7e:c1:ad:32:3f:b9:60:52:30:25:90:21:86:0c:de:
35:be:3f:cd:04:02:24:25:ef:33:f2:4d:d6:ff:ca:
5d:bd:6a:a6:4e:c4:58:98:4f:e8:32:ae:b6:1a:c7:
ed:48:aa:6b:80:95:4f:52:aa:4c:b0:50:a0:73:d6:
15:de:2a:80:07:52:25:4f:04:b6:1e:20:bb:f4:6a:
52:6d:02:f1:48:ba:0c:9c:cf:34:fe:6c:aa:0d:35:
a4:16:f0:56:29:12:76:d0:7a:aa:2b:93:e5:11:b2:
00:28:f5:60:f5:38:e8:1c:a4:6e:35:a6:07:d3:bd:
7c:2c:0d:e7:ed:a8:cb:01:57:86:cb:5d:1c:69:e7:
cf:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:CE:E4:8F:46:E5:8E:A0:6F:DE:76:EB:D5:2E:8B:5B:E6:0B:C8:D2
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/us7kj0bljqBv3nbr1S6LW-YLyNI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:0:8000::/36
Signature Algorithm: sha256WithRSAEncryption
6f:13:d1:ae:3e:f1:7a:6b:58:85:c2:7f:d4:f6:26:9c:5b:a9:
52:35:7b:f1:c8:31:18:ea:f0:96:c1:38:d1:79:cd:84:31:00:
e0:7c:4b:a6:e8:a1:80:5a:b5:10:d9:e9:57:c2:21:37:cc:f9:
c1:85:5c:e5:3b:6f:9b:5d:ea:ed:9c:72:6f:64:6a:d3:40:71:
21:9b:08:a5:3e:72:bd:b8:6c:40:17:3e:7c:37:39:4b:d6:f7:
97:3f:79:15:21:f9:03:45:2f:5c:30:d2:c0:5b:e3:da:63:d8:
43:c2:fb:5e:43:f5:9b:e5:b9:6b:a2:dc:d3:82:7e:43:f4:a9:
a3:07:22:e9:30:3c:e2:1c:57:23:75:88:7d:c1:9a:30:be:8d:
0f:b5:e0:d2:bb:b5:9a:9a:85:cf:ef:21:2a:be:19:04:7a:1d:
52:31:70:4d:10:4c:1f:ac:c2:b8:f7:4a:0c:88:7e:df:57:01:
40:cc:4d:3b:1c:14:49:ae:86:3c:53:ee:df:1a:65:0c:1a:32:
0b:f7:fb:30:4c:5e:c4:be:c6:03:82:42:14:42:8b:6c:a4:5b:
f7:4e:a2:fa:a2:d4:d7:4b:eb:b1:1f:0f:b5:5b:a6:e4:2d:eb:
82:b0:5c:30:d9:a0:be:c2:5a:23:63:a9:c0:d2:11:ce:a2:fe:
4e:5a:49:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:46 2023 by rpki-client on console-ams.rpki-client.org