Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/241lEzZiw4dp_OOg9iPvGrV0MdE.roa
File: 241lEzZiw4dp_OOg9iPvGrV0MdE.roa (raw, json)
Hash identifier: 5GZ5DnkOdGFTgNJ1RjsZ8StFkyG37FRHx+1jjCWQArg=
Subject key identifier: DB:8D:65:13:36:62:C3:87:69:FC:E3:A0:F6:23:EF:1A:B5:74:31:D1
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 07B3
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/241lEzZiw4dp_OOg9iPvGrV0MdE.roa
Signing time: Tue 29 Sep 2020 10:06:46 +0000
ROA not before: Tue 29 Sep 2020 10:06:46 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24167
IP address blocks: 140.109.98.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1971 (0x7b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 29 10:06:46 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=DB8D65133662C38769FCE3A0F623EF1AB57431D1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:ab:2b:d0:9c:07:83:43:94:dd:93:4e:58:d4:
e6:c2:1d:71:05:a4:2d:e1:01:c7:2e:8d:9b:98:a7:
30:bf:58:84:5e:33:d1:73:84:58:d5:17:05:fb:16:
b8:af:b3:cb:c4:60:81:56:c7:3e:91:d1:20:17:91:
0f:26:02:a4:3a:7d:4c:8a:9f:3b:8a:73:9a:24:9f:
99:21:7c:2e:5c:b1:bd:eb:67:8d:45:67:84:2f:7e:
2d:a0:ad:cb:dd:d3:9d:4b:e2:c2:8a:92:46:a3:86:
07:86:e0:59:00:a6:36:95:61:cb:b5:7f:8c:d8:95:
cf:0f:da:01:58:86:6b:96:8a:50:c2:71:a7:c9:63:
2d:0a:03:f7:74:3e:b1:47:72:71:dd:c9:fc:b4:7d:
05:4b:1a:09:9c:e2:e8:3d:db:26:92:3c:44:38:01:
73:51:49:a1:d9:29:7e:cc:4c:1f:ad:48:fc:f9:19:
1b:f2:f0:1e:ff:4a:71:f4:98:56:a8:b7:61:c9:84:
76:b8:a4:a8:81:2a:30:da:ba:69:79:d7:07:7b:25:
09:8c:79:b9:ee:14:91:24:24:1d:2a:2f:09:30:dc:
e3:9f:46:df:39:f9:25:ae:49:5a:d0:2c:d4:e5:e8:
30:f3:77:a0:57:e5:0c:29:29:52:91:cd:bb:33:20:
d1:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:8D:65:13:36:62:C3:87:69:FC:E3:A0:F6:23:EF:1A:B5:74:31:D1
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/241lEzZiw4dp_OOg9iPvGrV0MdE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.109.98.0/24
Signature Algorithm: sha256WithRSAEncryption
91:6a:68:68:23:93:fb:a4:7b:5b:65:5d:ac:80:8c:01:a5:c2:
8c:eb:45:9c:f6:5e:e5:4f:ce:f9:df:6d:8a:76:a5:82:10:75:
ab:c6:7a:b9:8a:c5:f8:70:84:0c:f4:27:92:da:e5:5c:e0:76:
64:fd:1a:75:c4:80:85:c5:9b:02:25:c4:2c:ce:d0:b3:a8:94:
16:8d:be:24:9e:84:0d:61:cb:29:ce:8e:7d:4c:58:f4:7d:6a:
b2:b5:f1:08:58:40:6a:cd:eb:12:f5:4a:41:09:dd:ee:a6:35:
90:dc:bb:9b:34:dd:44:2c:cb:5a:23:dd:8f:6c:32:a6:32:78:
96:26:73:b1:d7:c9:37:85:cf:d8:61:5d:3e:f4:ee:97:b2:00:
03:35:c4:9a:e1:6d:9d:ba:de:b1:83:0d:2f:e0:75:ad:4a:a1:
4e:2a:79:97:bf:a5:68:8b:56:bb:e6:75:38:1e:11:5a:94:22:
e4:de:4c:0d:7c:92:5e:0a:41:2d:4d:81:0f:22:4f:20:c8:49:
90:dd:c6:d9:3c:b5:d9:ab:b7:da:6a:83:8e:bd:1e:4b:bb:36:
ba:5f:b3:9f:37:fd:6e:5e:18:99:4b:63:37:51:69:d4:ec:28:
92:89:5f:21:ce:76:2b:a1:38:bb:07:9b:4f:ca:b6:ce:f4:42:
61:40:df:6d
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICB7MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3
QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yMDA5Mjkx
MDA2NDZaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKERCOEQ2NTEzMzY2MkMz
ODc2OUZDRTNBMEY2MjNFRjFBQjU3NDMxRDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDiqyvQnAeDQ5Tdk05Y1ObCHXEFpC3hAccujZuYpzC/WIReM9Fz
hFjVFwX7Frivs8vEYIFWxz6R0SAXkQ8mAqQ6fUyKnzuKc5okn5khfC5csb3rZ41F
Z4Qvfi2grcvd051L4sKKkkajhgeG4FkApjaVYcu1f4zYlc8P2gFYhmuWilDCcafJ
Yy0KA/d0PrFHcnHdyfy0fQVLGgmc4ug92yaSPEQ4AXNRSaHZKX7MTB+tSPz5GRvy
8B7/SnH0mFaot2HJhHa4pKiBKjDauml51wd7JQmMebnuFJEkJB0qLwkw3OOfRt85
+SWuSVrQLNTl6DDzd6BX5QwpKVKRzbszINFFAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQU241lEzZiw4dp/OOg9iPvGrV0MdEwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+
tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv
UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC8yNDFsRXpaaXc0ZHBfT09nOWlQ
dkdyVjBNZEUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAjG1i
MA0GCSqGSIb3DQEBCwUAA4IBAQCRamhoI5P7pHtbZV2sgIwBpcKM60Wc9l7lT875
322KdqWCEHWrxnq5isX4cIQM9CeS2uVc4HZk/Rp1xICFxZsCJcQsztCzqJQWjb4k
noQNYcspzo59TFj0fWqytfEIWEBqzesS9UpBCd3upjWQ3LubNN1ELMtaI92PbDKm
MniWJnOx18k3hc/YYV0+9O6XsgADNcSa4W2dut6xgw0v4HWtSqFOKnmXv6Voi1a7
5nU4HhFalCLk3kwNfJJeCkEtTYEPIk8gyEmQ3cbZPLXZq7faaoOOvR5Luza6X7Of
N/1uXhiZS2M3UWnU7CiSiV8hznYroTi7B5tPyrbO9EJhQN9t
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org