Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/0DQfyMM-62Pofl9kUPthxJjX1_k.roa
File: 0DQfyMM-62Pofl9kUPthxJjX1_k.roa (raw, json)
Hash identifier: b0CRrFwK5UwY9ELZUjE2MYeV3jVFoTvCPPYnHvUT1e4=
Subject key identifier: D0:34:1F:C8:C3:3E:EB:63:E8:7E:5F:64:50:FB:61:C4:98:D7:D7:F9
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 07BA
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/0DQfyMM-62Pofl9kUPthxJjX1_k.roa
Signing time: Tue 29 Sep 2020 10:06:48 +0000
ROA not before: Tue 29 Sep 2020 10:06:48 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 1659
IP address blocks: 140.138.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1978 (0x7ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 29 10:06:48 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D0341FC8C33EEB63E87E5F6450FB61C498D7D7F9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:b5:8b:80:86:56:01:39:35:1d:72:d3:3a:77:
26:3a:6d:c4:7c:46:b0:2d:ce:76:3a:c3:15:4a:11:
5a:9b:dc:a4:2c:eb:18:e6:50:47:ef:f8:52:28:ee:
b7:be:08:de:35:30:f3:10:54:a6:fc:b8:f1:07:92:
9a:b7:32:cd:98:8f:71:a0:57:dd:5f:41:a7:98:2f:
f9:ec:62:51:82:17:4c:91:db:a7:1b:9f:07:44:7a:
cd:ab:cd:3b:e9:2a:43:5f:97:0b:0d:8c:52:c2:62:
c0:bf:8c:80:10:fc:eb:87:62:47:c0:32:4b:fd:99:
c5:0c:d4:47:b8:ad:49:fc:d9:e5:28:72:66:25:4a:
be:69:35:2c:da:5c:ad:d7:00:a0:d3:47:ed:42:97:
ac:ba:15:8e:a0:5b:74:f0:20:a0:05:2f:77:40:73:
d4:12:d4:e6:f0:38:0c:a4:f1:67:96:90:41:e3:2a:
c4:f3:88:5f:00:54:7d:4d:b7:fd:1f:14:55:fc:9c:
70:8c:45:64:cd:1d:dd:0f:29:f4:9a:ea:ba:b1:17:
a7:fb:9b:04:f8:19:bc:98:e1:e6:6e:2e:a5:33:9a:
14:37:ae:bf:1e:9d:b9:43:48:7e:93:de:b1:85:a5:
7a:fb:e2:e1:91:2b:c9:0e:f5:d1:0d:23:be:1d:52:
ab:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:34:1F:C8:C3:3E:EB:63:E8:7E:5F:64:50:FB:61:C4:98:D7:D7:F9
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/0DQfyMM-62Pofl9kUPthxJjX1_k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.138.0.0/16
Signature Algorithm: sha256WithRSAEncryption
4a:bc:93:4a:c2:ae:36:b0:49:03:67:69:22:64:7a:d8:8a:2f:
00:0e:67:72:0e:c8:c5:8d:e2:44:0a:84:f1:42:e1:53:b9:e3:
42:82:de:ab:21:5c:6f:a1:cc:57:2f:16:80:b8:d0:8c:62:84:
8e:5b:0a:1c:09:93:80:b7:cf:d6:cb:ec:f8:72:da:9c:cc:07:
7a:c0:3e:13:eb:72:55:e3:ca:b9:06:ad:d2:ff:15:61:4b:e7:
64:00:73:5f:fa:af:dc:e2:75:ac:d7:da:b4:9e:18:08:08:e7:
f4:5c:49:49:8f:b4:89:d7:2e:03:be:b5:87:ab:be:94:bd:7a:
b4:36:bd:73:fc:e7:48:a2:02:a2:26:04:07:be:d2:84:3a:1c:
72:c9:c7:5e:e4:94:21:35:e8:f3:79:e9:cc:af:74:16:0f:06:
9f:20:41:21:80:27:50:11:c6:8d:57:88:8b:f5:6c:7f:0c:c8:
4b:2a:a3:2a:b8:f1:f8:39:a6:7a:a0:5d:94:33:e3:02:61:ff:
fb:f8:07:7b:3c:50:60:ae:68:a8:62:c9:06:f7:f5:5a:fa:da:
ee:d1:4e:50:48:3b:d3:92:c4:36:62:5f:61:fc:d2:1f:db:20:
de:e0:16:35:46:c1:71:a9:07:0d:e0:7c:d5:3b:ff:a8:25:7d:
1a:5b:f9:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org