Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/wj-shL1SswHh4n8mQJ0lPwxArW8.roa
File: wj-shL1SswHh4n8mQJ0lPwxArW8.roa (raw, json)
Hash identifier: D49f6QipYLbTUFeyhDn5azgoJUv9XJJNQ5ZNzrmukNw=
Subject key identifier: C2:3F:AC:84:BD:52:B3:01:E1:E2:7F:26:40:9D:25:3F:0C:40:AD:6F
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0959
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/wj-shL1SswHh4n8mQJ0lPwxArW8.roa
Signing time: Tue 29 Sep 2020 10:01:44 +0000
ROA not before: Tue 29 Sep 2020 10:01:44 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17709
IP address blocks: 210.85.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2393 (0x959)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 29 10:01:44 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C23FAC84BD52B301E1E27F26409D253F0C40AD6F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:89:55:a0:a9:c8:e4:55:3d:8c:5b:e0:26:80:
cb:9f:62:45:b8:d7:37:1f:54:4d:02:7e:e5:4d:58:
65:e1:3e:4b:65:2d:48:ef:51:78:b4:1e:7f:63:67:
b4:66:e6:7f:a9:36:b1:97:5e:ec:8a:b9:95:28:ea:
71:e0:f6:6d:69:c7:f7:08:a9:28:c8:06:1b:e8:4e:
33:d9:81:55:72:9f:9d:06:8d:e7:32:19:59:ed:27:
e1:e3:54:53:14:06:4a:e6:fa:ca:1c:73:77:aa:0b:
50:de:ea:86:e7:68:b3:7f:04:04:41:16:56:67:fa:
da:7f:08:3f:32:67:24:e4:9e:26:e0:f4:58:0b:5f:
1f:e8:ac:ce:a9:f0:dc:d7:e8:d2:83:6c:2c:5f:62:
be:57:a2:b9:2e:16:a7:9a:f4:91:64:c0:ef:c8:4b:
37:b0:ec:4c:e8:19:c5:d6:e2:99:3f:b0:53:97:bd:
44:50:84:ea:28:eb:b8:d7:13:33:f7:43:ca:25:63:
f4:a4:41:47:03:07:14:2a:64:44:77:97:3c:e0:78:
38:98:fe:b7:82:00:ff:81:ab:1f:12:33:b7:19:2a:
00:0f:86:90:13:0d:41:3a:a3:a5:28:ff:c6:16:02:
12:c8:ce:64:1a:74:bb:8d:3a:52:fb:75:61:20:47:
9f:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:3F:AC:84:BD:52:B3:01:E1:E2:7F:26:40:9D:25:3F:0C:40:AD:6F
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/wj-shL1SswHh4n8mQJ0lPwxArW8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.85.0.0/16
Signature Algorithm: sha256WithRSAEncryption
6f:8f:bf:c7:fa:ce:9e:65:28:b2:17:6e:63:92:ca:34:96:43:
fe:44:50:41:8f:2d:d9:11:8e:76:a6:e8:d4:ea:d1:22:5d:98:
73:fa:c0:e5:78:ef:09:c3:29:ca:70:4c:89:98:f7:db:07:67:
e8:c8:e1:ef:b1:44:48:bc:39:d8:b3:d6:a7:34:1d:3a:ab:04:
61:a9:4a:f6:9f:ac:fe:d6:7d:9d:2c:01:fe:f3:02:a3:a4:08:
da:95:68:63:14:de:70:43:b5:03:7f:cd:11:f0:e3:12:9b:47:
b7:c5:9a:14:d1:46:7c:ad:6a:31:d8:3d:a4:78:59:27:e9:ea:
b5:df:f9:d8:01:34:31:9d:6c:40:3a:10:0d:42:81:df:8b:c7:
00:36:91:70:49:e3:1a:39:e9:eb:e5:c0:df:77:90:44:d5:82:
22:a0:58:27:6d:90:35:cc:e3:f2:24:c8:b1:3b:c7:43:c6:44:
ab:3e:43:52:3b:b5:99:32:78:b6:84:c2:52:da:c4:78:48:13:
a0:7f:ea:ee:1a:64:1c:b0:80:ab:1a:3c:c8:4c:4a:fd:4a:2c:
35:a4:a6:6a:13:a7:03:b4:2d:89:87:5b:e8:67:d8:40:db:5a:
3c:d1:8e:db:ca:63:0f:63:04:aa:4e:4b:db:6f:f6:bc:b6:7f:
04:d0:21:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:46 2023 by rpki-client on console-ams.rpki-client.org