Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/6nu0U-subroafWZJSZ5QlUYdQfA.roa
File: 6nu0U-subroafWZJSZ5QlUYdQfA.roa (raw, json)
Hash identifier: Phj+ANFOi7/TceUA87Fjphul0zu3isBFwJ81nNkBA8o=
Subject key identifier: EA:7B:B4:53:EB:2E:6E:BA:1A:7D:66:49:49:9E:50:95:46:1D:41:F0
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0B8A
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/6nu0U-subroafWZJSZ5QlUYdQfA.roa
Signing time: Thu 15 Sep 2022 02:41:17 +0000
ROA not before: Thu 15 Sep 2022 02:41:17 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38844
IP address blocks: 140.122.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2954 (0xb8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 15 02:41:17 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=EA7BB453EB2E6EBA1A7D6649499E5095461D41F0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:8f:a2:2d:b6:74:1a:ae:df:33:cb:37:b7:54:
49:51:6d:ef:b1:fb:80:5e:31:e4:1f:09:1c:f4:38:
93:c6:f9:1b:e7:52:dc:31:c3:4b:d3:c7:6a:b9:16:
6b:be:ec:51:97:77:25:b4:d2:27:13:e0:cf:bb:82:
15:f6:83:e0:df:62:49:7e:63:08:0a:fa:4a:ab:5f:
7f:ae:54:69:5b:96:ed:f5:c1:17:9f:4a:0c:3e:f8:
ba:fc:40:5e:fe:f6:e6:4a:37:a8:18:c0:10:43:36:
de:01:c6:96:a8:f5:5c:80:dd:ab:d6:21:f7:70:0b:
ad:82:56:f9:ac:18:a3:67:da:d4:44:cd:ea:fb:c4:
e5:af:16:bc:35:48:68:a8:a7:bf:a4:c9:e1:58:db:
30:2a:a1:67:0e:35:e0:08:b6:6f:0e:0d:a4:77:b5:
43:25:7d:18:6f:4a:3e:02:2e:47:0e:1e:0d:a9:ee:
c4:1b:28:8b:52:0c:db:1a:72:1f:20:bf:72:61:6e:
d2:e3:7b:fa:41:27:ef:02:aa:38:8e:35:81:9f:07:
07:a7:34:15:a9:f3:8a:67:e7:50:e0:a5:93:7a:4f:
6e:f4:05:81:f5:82:23:b7:3d:c8:d1:e8:cb:af:c8:
7b:99:d7:7a:26:0a:54:dc:37:20:92:f1:2b:d3:c4:
e5:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:7B:B4:53:EB:2E:6E:BA:1A:7D:66:49:49:9E:50:95:46:1D:41:F0
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/6nu0U-subroafWZJSZ5QlUYdQfA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.122.0.0/16
Signature Algorithm: sha256WithRSAEncryption
80:c8:35:62:ba:9f:9a:91:24:45:09:e0:67:f9:43:52:b3:2c:
f3:76:6f:52:7c:34:11:5a:57:c6:f7:5d:66:4a:8b:fa:3d:b2:
dd:6a:37:a2:e8:c7:e2:25:ae:24:0d:4c:31:dc:94:fc:5f:fc:
fc:c1:c3:da:e5:b0:ca:ea:b1:25:2f:d7:68:8e:89:57:7a:64:
74:bd:73:7d:67:9b:c1:a9:6c:06:ca:7d:a8:c6:72:fe:77:e6:
1b:9d:68:c5:5f:f7:d0:43:58:f5:fd:0d:52:12:83:45:70:66:
76:0d:8e:8d:ca:18:96:61:59:42:e2:e6:ed:19:b3:03:47:87:
ed:00:04:44:b8:e2:4f:52:4c:57:90:09:81:ac:42:e2:de:e2:
2d:07:75:86:a2:2f:5e:78:2c:c2:10:ec:b0:16:22:79:67:d2:
c4:b3:9b:5e:dd:92:ce:ab:7f:2c:2f:ae:d4:0a:e7:86:9e:b4:
87:6e:f5:3c:c6:87:fc:ce:8b:92:d4:6a:7d:37:3c:dd:6a:9b:
2e:e8:bb:6f:fd:d4:c3:58:cf:7c:bd:92:ab:96:04:68:0b:72:
73:fc:88:70:43:3d:ce:78:a7:09:96:6b:13:43:ec:b4:c1:9b:
d3:de:f1:c2:c3:8c:af:ac:3c:79:df:a5:6b:b7:16:7c:a5:3b:
f3:01:9e:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org