Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/09ax_gie7emjBdspFarppXQ_Lvs.roa
File: 09ax_gie7emjBdspFarppXQ_Lvs.roa (raw, json)
Hash identifier: wTqxoEnf0Mau0HG9dklDhweP7cVfruMJvIcJ9q3m4WI=
Subject key identifier: D3:D6:B1:FE:08:9E:ED:E9:A3:05:DB:29:15:AA:E9:A5:74:3F:2E:FB
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0B8A
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/09ax_gie7emjBdspFarppXQ_Lvs.roa
Signing time: Thu 15 Sep 2022 02:41:11 +0000
ROA not before: Thu 15 Sep 2022 02:41:11 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9916
IP address blocks: 140.129.80.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2954 (0xb8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 15 02:41:11 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D3D6B1FE089EEDE9A305DB2915AAE9A5743F2EFB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:31:b2:f9:e1:66:5a:d0:c5:17:9c:0d:08:01:
64:d2:17:b5:e3:4a:79:04:6f:c0:91:21:fc:13:e8:
37:b3:67:64:7f:94:9b:24:4d:60:e1:f5:de:79:b7:
9f:3c:dd:e3:95:54:31:61:f0:5f:05:24:96:4b:74:
b0:4a:ca:34:97:4f:7a:a5:d4:23:84:80:a5:99:76:
91:2e:97:09:e0:3f:42:69:cf:43:57:ee:25:8f:a0:
7d:27:78:36:d7:fd:a0:a4:ac:1f:3d:a4:4f:79:be:
cd:47:3d:48:ae:34:8f:60:6a:c0:bd:9d:16:62:4a:
a9:05:40:00:22:0d:fd:e4:f1:33:a1:6f:80:c3:c5:
08:c8:b6:fc:01:96:aa:54:cc:f4:d3:83:c1:1a:4c:
96:3a:56:ef:e9:74:13:a0:3d:fb:cd:94:22:c6:82:
4f:6a:dc:67:30:ec:f7:9f:65:36:d9:aa:52:3d:73:
a1:29:eb:fb:16:bf:0d:af:e2:77:54:97:41:a7:f9:
b7:bc:a8:37:c3:a4:43:74:fc:28:80:87:02:67:cf:
fc:33:2d:e4:31:3d:e9:a0:96:fc:47:7f:08:ea:0d:
ad:15:a8:7e:74:6c:8c:09:03:a6:84:a5:fd:9f:ff:
32:c9:ad:43:b6:09:e8:3c:9e:26:b7:93:54:c1:cd:
d4:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:D6:B1:FE:08:9E:ED:E9:A3:05:DB:29:15:AA:E9:A5:74:3F:2E:FB
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/09ax_gie7emjBdspFarppXQ_Lvs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.129.80.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:0f:a9:80:a7:ac:fc:f5:1f:5f:04:05:92:2b:9c:1e:22:58:
c8:04:5d:44:87:7f:3d:af:3f:7b:f7:f6:58:f4:da:16:a6:69:
00:af:86:fc:32:34:42:88:ee:e0:4c:0b:67:84:bd:84:30:80:
c5:92:4c:b2:39:f0:08:7d:1b:31:1b:c1:ab:e6:b0:0d:1f:27:
52:94:4f:14:47:09:c4:32:eb:df:bc:18:d9:d6:20:a2:21:b7:
91:bb:7a:08:01:39:09:e9:52:1e:0c:ef:23:a9:d6:12:65:81:
9a:23:75:c1:0d:04:28:ef:f2:5b:05:51:74:da:d0:5d:6c:c0:
a5:a2:ac:4a:8e:a9:f1:50:32:0e:62:6a:3d:6c:5f:ac:1c:60:
8b:13:d6:6b:1b:1c:db:15:e5:f6:84:01:c1:df:45:9e:03:d6:
e2:45:f9:aa:d2:4d:eb:86:84:75:9b:06:0e:53:c5:64:f5:b9:
bd:e4:fc:10:7e:46:3c:cc:6e:8d:32:de:34:4e:89:be:13:5f:
57:f3:6f:64:cf:ff:c2:75:cb:9d:e4:1d:81:1b:45:be:52:fe:
be:3d:3a:51:64:ac:2b:0c:61:6e:6a:5f:07:96:d2:7b:dd:9d:
9b:3d:80:c7:31:da:8b:85:23:1c:11:51:65:17:2b:57:27:69:
6f:49:15:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org