Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/1fEXXABlTnDEbb4CdJksoqANdpE.roa
File: 1fEXXABlTnDEbb4CdJksoqANdpE.roa (raw, json)
Hash identifier: KbyCtTk8ir//T3H7GxWxyJ8h35VUdKeS0iCUQdV0V7o=
Subject key identifier: D5:F1:17:5C:00:65:4E:70:C4:6D:BE:02:74:99:2C:A2:A0:0D:76:91
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0B8A
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/1fEXXABlTnDEbb4CdJksoqANdpE.roa
Signing time: Thu 15 Sep 2022 02:41:17 +0000
ROA not before: Thu 15 Sep 2022 02:41:17 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 7539
IP address blocks: 140.110.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2954 (0xb8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 15 02:41:17 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D5F1175C00654E70C46DBE0274992CA2A00D7691
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:a2:4d:7a:78:28:2b:0a:9f:62:0a:53:4b:c2:
6f:86:2e:be:7e:1c:2b:d0:10:5e:76:2c:87:65:45:
9c:e6:c4:68:58:19:45:3d:f2:e9:82:62:31:f7:f2:
4e:2c:c4:39:2b:c6:75:08:5c:73:20:47:68:b4:26:
f7:f2:fb:d5:6f:10:6f:5b:61:42:2e:b2:19:9e:43:
dd:e5:58:6d:c7:f9:09:cd:79:0a:50:70:d3:7e:f9:
19:5d:d4:01:30:29:80:f2:98:a4:76:af:42:2f:28:
ad:74:b7:73:2e:97:53:17:7f:c3:cd:12:1c:85:98:
a9:19:55:90:68:6d:40:cc:13:30:2a:51:04:ee:d0:
2f:e7:67:04:a5:29:34:b8:0d:0d:19:3c:ed:79:c3:
a8:70:ad:33:ab:ef:ab:7e:b3:8f:c4:b8:97:a9:40:
b3:92:b3:61:e3:e9:d4:f8:2c:4f:41:2f:e1:f4:1b:
f2:4d:76:a5:01:00:b1:e6:13:30:e6:6d:ed:fd:4f:
8b:8b:c7:58:9b:29:a0:d0:67:44:3f:b0:f8:ba:b6:
c3:c9:74:dc:11:d6:58:e1:10:75:43:e4:5b:4c:a5:
67:cf:6f:c6:0c:f6:f2:07:20:76:77:ff:5c:8b:05:
45:16:6b:91:51:c3:65:da:fc:ba:a8:59:a9:15:e3:
69:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:F1:17:5C:00:65:4E:70:C4:6D:BE:02:74:99:2C:A2:A0:0D:76:91
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/1fEXXABlTnDEbb4CdJksoqANdpE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.110.0.0/16
Signature Algorithm: sha256WithRSAEncryption
34:2a:e0:d3:40:b3:db:11:8e:67:5c:56:66:fe:4e:1e:dc:31:
f3:f0:ab:1c:64:40:98:3a:cd:2f:21:e5:71:bb:cc:c3:aa:db:
54:d8:db:96:ba:93:04:46:3c:84:e8:60:93:01:04:bd:92:93:
94:6d:5c:9e:30:79:5f:04:7c:f4:e0:5f:8f:12:bf:c2:26:6f:
e3:c2:c7:95:2e:27:cf:0c:d9:0c:be:2c:4f:17:a1:84:94:eb:
fb:b8:ce:82:c9:18:ba:7e:76:ef:5a:84:34:d7:30:c6:7f:d5:
77:b8:83:25:0b:68:80:6f:9b:7c:56:f0:63:58:e4:1b:38:5d:
7d:d0:0c:4c:c7:f7:10:b2:9a:83:74:67:97:8e:22:c9:af:ae:
d7:b9:a3:78:0c:3b:8f:6b:15:ce:38:5e:d5:4e:2d:21:a8:56:
d7:11:fe:ab:da:4d:20:ac:d5:16:46:10:7d:c6:f1:65:81:06:
47:07:ab:99:e0:f9:7f:43:fb:d5:a5:c7:5a:a9:df:a9:03:59:
00:46:21:e5:ed:03:6f:c2:41:51:a0:94:38:e2:f5:ea:ca:0c:
63:e6:74:88:ff:6a:1d:6b:94:a4:86:65:46:84:43:ad:75:62:
2f:3a:a9:35:46:ff:c5:7e:f3:90:26:92:d6:68:b4:11:40:fd:
cf:d2:1f:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org