Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/3IjtuOBEPSZWhChydpI54PAN_No.roa
File: 3IjtuOBEPSZWhChydpI54PAN_No.roa (raw, json)
Hash identifier: JfFdRQTMp2qnxXeJX4B3gx4ORNV8oxXSJ02JAsxGJ6E=
Subject key identifier: DC:88:ED:B8:E0:44:3D:26:56:84:28:72:76:92:39:E0:F0:0D:FC:DA
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 09BA
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/3IjtuOBEPSZWhChydpI54PAN_No.roa
Signing time: Sun 07 Feb 2021 12:40:02 +0000
ROA not before: Sun 07 Feb 2021 12:40:02 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 1659
IP address blocks: 140.128.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2490 (0x9ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Feb 7 12:40:02 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=DC88EDB8E0443D2656842872769239E0F00DFCDA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:d0:e1:c1:6f:0c:35:9a:1a:54:32:e6:0a:b8:
39:50:67:c7:99:d3:78:51:44:42:a2:0a:3e:0d:20:
30:ea:77:10:f4:9e:f4:d1:f8:53:7b:ff:c2:5b:0c:
6d:21:e0:e9:ed:bd:ce:4b:c5:e2:0e:c6:74:13:ba:
a9:c0:f7:20:6e:60:f3:97:a3:75:97:9c:ac:2e:6e:
fc:87:95:d0:0f:c5:d4:2c:aa:58:96:c0:b3:52:7e:
dd:85:6c:00:4b:31:e8:24:bd:7c:b0:81:16:b7:92:
b4:66:07:1a:f2:43:b1:42:aa:2a:a4:3b:5d:5d:30:
18:a4:96:a1:8f:08:6e:dd:f4:73:03:5b:b7:cb:2c:
5f:5f:3c:28:d3:b8:79:42:57:d8:21:fc:62:74:20:
3b:41:38:74:c7:01:5f:94:a4:66:35:2a:56:0f:23:
09:24:60:53:af:eb:f0:be:35:88:44:15:32:d9:42:
dd:d2:dd:25:2c:9c:3a:ce:a2:c7:63:f0:ec:ae:4b:
aa:cd:7b:a7:39:8a:7b:0f:d9:3e:a6:6e:ee:c2:3c:
18:1c:bb:df:de:00:7a:6b:57:b9:dd:fa:74:a0:75:
4e:88:a7:0d:52:9c:24:58:c2:99:42:ae:7a:ac:b3:
40:94:fd:86:0c:c5:bc:52:54:89:23:db:c9:38:37:
f0:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:88:ED:B8:E0:44:3D:26:56:84:28:72:76:92:39:E0:F0:0D:FC:DA
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/3IjtuOBEPSZWhChydpI54PAN_No.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.128.0.0/16
Signature Algorithm: sha256WithRSAEncryption
58:80:f0:79:be:31:53:9d:c7:5c:5a:22:f7:bf:a9:6f:9d:5a:
5b:1d:3b:92:e4:eb:ef:ab:0b:8c:3f:2b:79:2b:17:39:af:d6:
63:60:c2:f6:c8:45:ce:4f:9b:98:73:f9:31:01:f5:b9:d6:ad:
5f:dd:44:ee:15:51:0e:41:c1:b9:0e:35:b4:24:5e:d2:f9:c9:
e2:8f:12:ba:f2:86:c2:da:8b:48:13:ed:29:2e:a1:e9:7b:43:
f6:0a:17:08:38:ea:70:03:43:be:f3:4e:4e:d7:7b:e2:24:d4:
87:5e:1f:6e:8c:fd:1a:43:ed:55:24:f7:5e:b8:4e:84:15:16:
17:57:fe:04:39:49:aa:e5:54:ff:5c:ce:a4:bb:e0:ce:32:68:
37:70:ed:32:f2:0e:4f:c9:77:c5:81:e8:fc:17:ec:ab:95:4b:
2c:50:50:eb:c1:5b:a8:54:f3:84:6c:0f:6e:f0:5d:6b:a0:2b:
59:d3:4f:83:5e:8e:9b:d6:9c:aa:20:d8:c7:12:6a:e1:07:53:
d5:b3:85:97:60:f8:e8:2e:60:c2:f2:ca:02:e5:72:26:b1:68:
82:39:20:11:a7:9d:35:ae:1e:7d:49:7d:16:5b:8f:44:e6:0a:
ac:64:3c:2a:2b:17:aa:85:db:00:f1:ac:52:5d:c7:d8:be:df:
7c:65:fb:51
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICCbowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3
QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yMTAyMDcx
MjQwMDJaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKERDODhFREI4RTA0NDNE
MjY1Njg0Mjg3Mjc2OTIzOUUwRjAwREZDREEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDu0OHBbww1mhpUMuYKuDlQZ8eZ03hRREKiCj4NIDDqdxD0nvTR
+FN7/8JbDG0h4Ontvc5LxeIOxnQTuqnA9yBuYPOXo3WXnKwubvyHldAPxdQsqliW
wLNSft2FbABLMegkvXywgRa3krRmBxryQ7FCqiqkO11dMBiklqGPCG7d9HMDW7fL
LF9fPCjTuHlCV9gh/GJ0IDtBOHTHAV+UpGY1KlYPIwkkYFOv6/C+NYhEFTLZQt3S
3SUsnDrOosdj8OyuS6rNe6c5insP2T6mbu7CPBgcu9/eAHprV7nd+nSgdU6Ipw1S
nCRYwplCrnqss0CU/YYMxbxSVIkj28k4N/ApAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQU3IjtuOBEPSZWhChydpI54PAN/NowHwYDVR0jBBgwFoAURXsQNypobj/3Nla+
tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv
UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC8zSWp0dU9CRVBTWldoQ2h5ZHBJ
NTRQQU5fTm8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAjIAw
DQYJKoZIhvcNAQELBQADggEBAFiA8Hm+MVOdx1xaIve/qW+dWlsdO5Lk6++rC4w/
K3krFzmv1mNgwvbIRc5Pm5hz+TEB9bnWrV/dRO4VUQ5BwbkONbQkXtL5yeKPErry
hsLai0gT7Skuoel7Q/YKFwg46nADQ77zTk7Xe+Ik1IdeH26M/RpD7VUk9164ToQV
FhdX/gQ5SarlVP9czqS74M4yaDdw7TLyDk/Jd8WB6PwX7KuVSyxQUOvBW6hU84Rs
D27wXWugK1nTT4NejpvWnKog2McSauEHU9WzhZdg+OguYMLyygLlciaxaII5IBGn
nTWuHn1JfRZbj0TmCqxkPCorF6qF2wDxrFJdx9i+33xl+1E=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org