Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/38BlMvTRZu9H7R6U4LUI3rbx_Pc.roa
File: 38BlMvTRZu9H7R6U4LUI3rbx_Pc.roa (raw, json)
Hash identifier: aAtyyxSLyVxz6o5MD3p6R3vhAREvdy7nauAv6LfvvXY=
Subject key identifier: DF:C0:65:32:F4:D1:66:EF:47:ED:1E:94:E0:B5:08:DE:B6:F1:FC:F7
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 07B4
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/38BlMvTRZu9H7R6U4LUI3rbx_Pc.roa
Signing time: Tue 29 Sep 2020 10:06:46 +0000
ROA not before: Tue 29 Sep 2020 10:06:46 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 1659
IP address blocks: 140.110.0.0/15 maxlen: 15
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1972 (0x7b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 29 10:06:46 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=DFC06532F4D166EF47ED1E94E0B508DEB6F1FCF7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:2b:95:fc:50:bd:40:2c:f2:76:29:f3:fd:2f:
7c:81:65:93:3c:28:f7:01:59:33:3e:a9:12:99:5e:
04:d4:4e:fe:82:39:ce:84:9c:d7:a4:b7:2b:53:d7:
a5:35:88:7f:68:4b:69:fd:75:fa:40:7b:09:a3:27:
26:41:26:89:cb:79:a9:3e:47:28:2b:3d:1d:15:bc:
dd:2b:aa:43:12:3e:23:fa:1c:9b:e8:6e:df:48:3f:
bb:82:41:76:58:95:8f:02:5e:e4:62:14:44:7e:77:
ca:1b:b6:03:05:26:c4:f3:cd:72:9e:20:3e:1f:c6:
b2:e3:c5:c4:d7:bd:f8:0a:0b:f9:d5:b1:cb:76:51:
a2:f3:c2:40:78:d3:53:19:e7:61:66:36:46:31:17:
d3:fe:c4:9a:e7:dd:70:58:2b:3b:4a:17:20:a6:40:
2a:64:f3:fa:52:57:bd:51:3e:40:f8:9b:9e:77:c2:
5f:ee:7c:e3:fb:1b:b7:11:6b:3c:4e:d2:02:d1:62:
d0:d9:a7:10:2d:f1:e7:87:3f:dc:47:8a:82:51:5a:
60:20:e8:ab:66:e1:a2:9b:39:b5:44:29:79:66:6d:
3c:2c:cd:b4:8d:a4:09:a1:e5:62:97:73:ed:bc:b2:
7f:81:f4:66:bd:a8:85:75:3c:3b:b8:9a:c3:16:e3:
a4:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:C0:65:32:F4:D1:66:EF:47:ED:1E:94:E0:B5:08:DE:B6:F1:FC:F7
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/38BlMvTRZu9H7R6U4LUI3rbx_Pc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.110.0.0/15
Signature Algorithm: sha256WithRSAEncryption
0b:df:14:59:4f:5e:5e:16:37:5c:3a:32:bd:6e:c0:8a:12:1d:
d8:a2:2c:18:28:18:b5:0e:85:a1:d3:eb:c1:22:be:ed:62:ba:
f5:9b:7f:57:36:98:39:00:f0:dd:18:fc:b4:49:bd:c1:9a:96:
62:92:b0:2e:5e:1c:ae:a4:41:64:0d:df:8d:a6:63:ce:6a:e3:
b3:32:bd:35:3f:b2:dd:33:6c:a1:cb:8b:5f:e5:72:c4:c8:3f:
78:d0:24:be:04:32:7d:b6:b6:6c:fb:30:e0:c0:42:2e:c3:ee:
32:d1:e4:17:a2:27:e8:6f:8e:f2:bc:8d:11:6b:22:fb:17:79:
b3:08:99:6d:9a:d0:7c:a2:b2:02:3c:c4:73:19:90:48:d4:45:
44:9d:c4:a2:f4:83:36:46:14:f8:62:36:4f:e5:61:52:df:48:
9d:a6:c3:1c:c3:6d:74:09:5b:89:d3:ce:27:16:42:d2:05:72:
39:db:92:cf:14:b3:47:b4:87:a1:11:b6:56:6b:61:07:56:75:
4f:05:49:12:ba:df:92:ee:4c:b6:66:a9:66:c0:56:7c:b6:54:
94:a2:30:bb:76:a2:dc:66:fe:96:3d:77:bc:30:14:9f:ab:46:
05:3f:e4:96:ee:37:a9:71:2c:d2:69:72:08:11:f1:4e:a2:d4:
c9:56:24:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org