Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/295JbYQc-eF-U64OERqtpqDorZI.roa
File: 295JbYQc-eF-U64OERqtpqDorZI.roa (raw, json)
Hash identifier: 3XTZ17IESS/omp5R7sfDqGmRhplDv9F24srRFTL6cLg=
Subject key identifier: DB:DE:49:6D:84:1C:F9:E1:7E:53:AE:0E:11:1A:AD:A6:A0:E8:AD:92
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 098E
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/295JbYQc-eF-U64OERqtpqDorZI.roa
Signing time: Sun 07 Feb 2021 12:38:58 +0000
ROA not before: Sun 07 Feb 2021 12:38:58 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 1659
IP address blocks: 140.136.0.0/15 maxlen: 15
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2446 (0x98e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Feb 7 12:38:58 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=DBDE496D841CF9E17E53AE0E111AADA6A0E8AD92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:d1:2e:cb:49:0f:6a:63:26:3f:b5:55:73:0c:
64:a1:fd:8e:af:a7:c4:7c:2c:39:3a:68:7a:ff:d8:
3d:65:8a:72:b7:cb:cd:27:21:c3:8a:f3:13:03:d1:
b1:ab:95:de:16:04:b6:8b:4f:6d:6c:37:85:40:d9:
9f:be:86:e0:1e:8c:f3:d5:f2:c2:8d:f5:d2:38:45:
1e:ff:ff:2b:a1:c7:77:63:56:c4:d9:ec:70:47:c0:
b6:cc:e8:d0:aa:84:8d:d2:7e:35:36:e7:d7:31:9d:
ee:5c:2a:a1:f8:b5:ef:6d:42:ab:ea:37:42:e2:34:
e9:1a:63:1c:58:2e:d5:19:70:19:0e:93:95:b1:cf:
40:be:c5:5f:cb:47:e3:5a:6d:35:9b:27:2f:9a:90:
6f:f0:2a:13:b1:06:4f:37:be:10:9b:b3:c2:03:5f:
1e:3f:2f:a8:d1:26:35:78:3a:9b:e3:5b:6c:fa:c7:
3b:31:58:d3:8a:36:e7:05:41:8b:1b:08:49:68:33:
fd:86:bc:5a:a0:90:c0:19:f6:31:34:ca:27:06:10:
44:b2:28:0f:f0:d6:c9:38:9d:6d:a4:1a:14:e6:74:
55:60:f0:0e:df:52:fb:9d:c2:d8:66:e9:b8:1b:7e:
d7:21:1b:13:6e:5e:6b:d0:53:20:36:a4:d0:a1:36:
2c:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:DE:49:6D:84:1C:F9:E1:7E:53:AE:0E:11:1A:AD:A6:A0:E8:AD:92
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/295JbYQc-eF-U64OERqtpqDorZI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.136.0.0/15
Signature Algorithm: sha256WithRSAEncryption
59:7f:99:8d:21:dc:82:fa:d9:fa:d8:b2:e6:f7:cc:6a:5f:d9:
fb:68:77:2d:e1:b3:a1:3b:94:9f:74:f8:8f:40:52:4a:cc:ed:
3f:3b:a0:4a:ad:c5:28:28:89:88:cf:e9:83:23:29:03:11:cc:
28:0f:00:48:7c:7b:35:ae:9a:24:22:a8:27:5c:b5:60:87:87:
5a:0b:4a:ed:d1:ad:00:7d:f9:33:59:04:f0:e6:02:5c:66:d7:
7a:da:29:da:18:29:45:13:ac:ce:b9:71:a8:f3:0b:22:6e:8c:
ae:f6:75:b6:05:5c:b7:95:76:0a:da:27:04:bf:9c:c4:ac:bc:
d5:a1:b2:49:ef:1f:d8:f1:19:18:4b:e1:11:0f:41:e0:8a:f2:
14:49:d6:b1:c1:86:86:53:0e:ac:82:0a:1a:df:79:ee:85:af:
95:f2:29:22:2b:0f:fd:3e:91:48:b2:ba:44:b0:e4:c5:09:5c:
23:0e:4f:cc:a8:30:e6:a8:9d:81:75:c1:c4:64:11:96:23:e3:
3a:5c:84:81:57:d4:e5:02:1e:1b:9e:17:51:61:e3:e0:58:df:
53:a4:f9:08:98:92:6f:b7:d6:2f:bd:da:d8:2b:e2:eb:db:0a:
4a:29:b5:71:96:8f:36:67:fa:78:89:16:3e:75:16:dd:f9:ee:
05:02:d2:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org