Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/7Xly_TMWh6jdCFRoWwws5skO9Xs.roa
File: 7Xly_TMWh6jdCFRoWwws5skO9Xs.roa (raw, json)
Hash identifier: FYni1wrFcfzrkcUiEEzeNXKwivheYANMK0jLjCSTfcI=
Subject key identifier: ED:79:72:FD:33:16:87:A8:DD:08:54:68:5B:0C:2C:E6:C9:0E:F5:7B
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 09D3
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/7Xly_TMWh6jdCFRoWwws5skO9Xs.roa
Signing time: Sun 07 Feb 2021 13:13:03 +0000
ROA not before: Sun 07 Feb 2021 13:13:03 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9916
IP address blocks: 140.129.80.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2515 (0x9d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Feb 7 13:13:03 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=ED7972FD331687A8DD0854685B0C2CE6C90EF57B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:36:93:f2:dd:ac:75:cc:8d:63:7e:0b:a5:66:
b7:25:6a:65:24:89:8c:d8:24:2a:51:ba:20:17:2c:
17:df:b4:bd:d9:1a:19:e2:fa:10:41:93:9c:1e:ad:
55:71:e4:6d:0a:85:3f:5d:0a:5f:4d:7c:90:10:dd:
1a:93:71:1b:f6:0c:f2:97:d2:17:fe:53:bc:b2:63:
5a:16:9c:e2:2f:8a:5c:7d:46:8a:76:ef:6b:cb:27:
fd:bf:a7:0d:73:0d:7e:bc:6d:da:fa:31:87:47:14:
6b:b1:c9:72:d1:35:bf:70:b2:b7:e2:6c:64:73:17:
6d:ab:44:5f:e5:29:33:c6:6b:d6:3f:ac:48:f7:70:
91:7b:32:a7:f4:eb:1a:97:41:ca:ee:fe:5e:ff:a6:
fd:92:e1:99:2f:db:9e:ce:08:86:45:58:01:6d:d8:
90:95:e6:84:2d:e6:67:60:d2:48:68:6f:c1:aa:2b:
2a:5b:ed:82:1b:ba:ff:45:d9:54:07:f6:44:d9:07:
d1:1c:0b:93:45:bc:e4:2e:63:1c:63:9d:51:a5:dc:
44:cb:59:70:11:c3:f9:8a:fb:52:cb:ea:65:84:61:
92:fd:15:d8:12:a3:cc:3e:29:96:86:33:3a:6f:2a:
22:71:67:3f:1e:a2:32:b6:99:d1:9d:f5:c8:10:8d:
0d:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:79:72:FD:33:16:87:A8:DD:08:54:68:5B:0C:2C:E6:C9:0E:F5:7B
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/7Xly_TMWh6jdCFRoWwws5skO9Xs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.129.80.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:de:3d:0c:bb:b4:ea:e9:64:19:57:c4:bf:25:4f:b1:df:53:
b1:27:a9:d3:53:c2:ac:ec:4b:38:1c:85:2d:2d:87:02:6a:a0:
4b:ad:e9:d3:c5:9d:41:ae:46:71:fa:6a:55:fe:c2:b7:e3:05:
86:c1:7a:c0:89:a5:2f:56:65:f9:18:8d:35:b4:eb:45:3a:89:
be:9a:54:5c:3c:73:44:56:79:a4:da:98:48:7c:24:51:80:8f:
f2:bd:9b:d1:ec:f3:44:be:02:39:9c:49:d4:ab:54:c4:68:fe:
b7:45:88:8a:d5:ee:2c:5c:a7:57:3b:13:77:1b:eb:0e:ab:74:
60:24:03:7c:ac:9b:96:01:a6:ca:29:72:f2:6c:b6:e8:5d:06:
72:0d:f3:49:c9:47:65:a5:97:12:dd:51:66:31:01:c1:ad:e5:
03:53:69:a2:58:2f:f7:98:a7:82:95:5b:b0:18:36:2b:84:7f:
07:50:8b:64:f0:2f:e2:d9:af:65:e1:03:5d:a7:7e:0b:7d:af:
0e:c0:20:a1:87:11:ec:bc:72:0d:88:e6:f0:96:46:cd:f9:ab:
9a:2e:04:93:c3:e7:78:e7:10:07:d0:f9:2a:6a:bc:41:92:22:
2e:d3:33:e8:d1:dd:3e:ab:23:40:a3:d2:a0:75:eb:ff:80:9d:
28:a5:dc:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org