Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/-XBH4TvhfX0-eUs0-LixORrhLMY.roa
File: -XBH4TvhfX0-eUs0-LixORrhLMY.roa (raw, json)
Hash identifier: yqavzyN5BHebWyCmnXtAkPxeBthv67eTWSSIZAUXc98=
Subject key identifier: F9:70:47:E1:3B:E1:7D:7D:3E:79:4B:34:F8:B8:B1:39:1A:E1:2C:C6
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0B8A
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/-XBH4TvhfX0-eUs0-LixORrhLMY.roa
Signing time: Thu 15 Sep 2022 02:41:13 +0000
ROA not before: Thu 15 Sep 2022 02:41:13 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18047
IP address blocks: 140.114.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2954 (0xb8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 15 02:41:13 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=F97047E13BE17D7D3E794B34F8B8B1391AE12CC6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:9c:82:75:9c:00:74:fd:00:9d:58:a8:2d:34:
e3:09:84:f7:3f:8d:ca:86:da:e6:74:82:a0:ed:4f:
ac:b6:7b:0c:24:00:10:86:6f:33:13:2a:03:ee:4f:
c7:7b:2a:70:c8:27:c7:e9:54:44:5a:57:aa:2c:35:
9d:fb:8b:d7:ba:a2:25:b8:2c:0b:bb:9a:8d:5b:99:
ba:56:58:bb:95:6b:29:a2:42:72:5e:17:a2:ec:54:
31:b0:69:cc:01:c5:b0:75:03:0a:02:ce:6d:10:c8:
65:92:8c:44:f4:8b:43:f9:a6:46:77:21:b2:2f:7a:
21:59:68:cc:b4:80:93:b3:69:55:2d:ad:94:cd:06:
d4:9f:43:13:70:45:2f:89:8b:01:88:7c:37:5a:73:
95:40:25:8d:c3:21:22:3b:1a:c5:d6:c5:c8:47:ab:
bd:19:95:08:00:37:87:13:e6:03:4c:d4:4b:89:60:
2f:3d:64:0c:11:cb:bb:30:45:29:d2:33:2c:e1:15:
d4:43:4b:f3:0c:d4:0c:fc:4b:b1:5b:7c:97:1b:29:
a1:8e:bd:c3:2d:0c:13:c2:fd:6f:15:48:6b:b2:3c:
e3:69:cc:db:9c:1a:f7:85:3b:d9:a9:c2:72:69:f3:
9f:c5:ae:e2:d1:3e:cc:d1:58:45:44:a5:9c:d1:92:
0d:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:70:47:E1:3B:E1:7D:7D:3E:79:4B:34:F8:B8:B1:39:1A:E1:2C:C6
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/-XBH4TvhfX0-eUs0-LixORrhLMY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.114.0.0/16
Signature Algorithm: sha256WithRSAEncryption
77:7d:0c:f7:53:b5:c4:d5:d3:ba:c5:2c:05:4e:d6:62:40:ae:
49:dd:41:b1:48:0e:9b:9a:f5:49:52:a9:05:ed:dc:cd:a1:f5:
b0:13:c5:cf:f7:5c:a4:92:f3:f3:30:c2:de:ed:fb:9b:dd:62:
35:4c:75:99:65:3e:31:5f:a6:9e:dd:d8:a2:c6:25:7c:aa:3b:
3c:36:42:18:cf:fa:cc:1b:d1:ed:c7:12:f3:8d:9a:d3:cd:23:
00:7e:43:12:7f:7b:7f:f5:5e:49:49:42:2e:5c:a2:a2:a2:2b:
dd:61:3b:10:be:8d:27:ed:f0:50:3b:f1:7f:10:11:b4:3f:90:
8d:c9:a1:4a:b3:c2:ba:9f:f3:b1:27:80:e8:3f:de:c2:20:a4:
ee:db:9a:85:34:a0:25:ad:14:00:6d:15:87:78:28:b7:f2:1b:
b9:a9:09:98:81:d9:e2:64:e6:24:4d:d2:39:c6:c6:c8:ab:c6:
3a:72:33:41:53:0e:63:8c:9b:f2:a0:06:33:8c:9c:dc:68:1a:
50:5a:5c:34:b3:03:bf:be:34:53:45:7a:3b:5a:9a:1c:1c:8f:
25:bb:31:1d:99:78:b1:46:eb:3e:e1:58:4c:c4:48:92:61:f7:
83:fa:a0:3f:da:16:48:93:52:c0:5d:aa:45:6c:dd:76:3c:f8:
c8:f2:0e:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org