Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/C3MXquhsrugCeqBITzraXX4fO3g.roa
File: C3MXquhsrugCeqBITzraXX4fO3g.roa (raw, json)
Hash identifier: Falgl4upREKScBrGnU8g82uYHE1RjYU53n7W2ajJnog=
Subject key identifier: 0B:73:17:AA:E8:6C:AE:E8:02:7A:A0:48:4F:3A:DA:5D:7E:1F:3B:78
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0B8A
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/C3MXquhsrugCeqBITzraXX4fO3g.roa
Signing time: Thu 15 Sep 2022 02:41:20 +0000
ROA not before: Thu 15 Sep 2022 02:41:20 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 1659
IP address blocks: 140.110.0.0/15 maxlen: 15
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2954 (0xb8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 15 02:41:20 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=0B7317AAE86CAEE8027AA0484F3ADA5D7E1F3B78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:8d:03:6a:f1:4d:3d:ed:27:e0:5f:a8:2b:e5:
ae:0b:66:da:72:da:bf:a0:f4:45:b8:5e:37:24:55:
89:2c:11:09:fc:e4:bc:e8:72:d3:36:9f:ea:c7:46:
16:24:84:91:24:b5:2c:3d:73:23:30:97:cc:26:6e:
96:54:0e:fe:72:ff:09:b3:23:b4:56:9a:0e:2c:bf:
0a:76:30:fe:6a:9f:da:e3:cd:c2:6d:78:88:fc:37:
81:3a:e8:9f:00:70:cc:87:17:fe:7c:b7:db:1b:f0:
b7:81:3c:15:f1:93:fd:c9:43:56:52:c8:a9:62:03:
65:45:ed:7e:7f:67:3c:df:64:a1:fa:cf:7b:ee:f1:
81:ea:b2:60:e1:cd:1b:44:e7:18:81:57:bd:96:84:
f2:93:e1:44:07:b5:53:68:f5:aa:69:88:b5:df:c4:
a3:f4:c4:38:53:c2:4c:1d:35:24:17:23:f1:ce:12:
2c:48:16:e7:2e:97:a3:a4:71:b4:bf:81:76:f7:4b:
3d:3b:b7:98:0f:a6:af:5e:dd:29:f5:04:a3:ff:30:
dd:de:2f:56:e8:8d:ef:67:99:29:29:02:ea:5a:7c:
c2:57:cd:b3:8d:3c:a3:e6:de:5d:f3:c6:c1:32:cb:
52:da:53:ab:bc:f2:64:b7:e7:76:91:ae:17:fb:15:
f4:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:73:17:AA:E8:6C:AE:E8:02:7A:A0:48:4F:3A:DA:5D:7E:1F:3B:78
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/C3MXquhsrugCeqBITzraXX4fO3g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.110.0.0/15
Signature Algorithm: sha256WithRSAEncryption
15:66:77:2b:58:c7:4a:24:d5:b9:57:5b:79:ab:be:47:d1:25:
a3:f0:dd:0c:fa:54:12:1a:3d:33:f3:f5:01:8f:70:56:c9:6d:
9c:a6:96:b1:5f:e5:b2:6b:a4:97:66:cf:90:fa:1d:5f:3b:3f:
16:d6:29:bb:1f:de:61:3b:a1:51:3c:53:ce:9a:f9:61:b5:e9:
92:9a:ea:80:4d:b9:2b:01:e9:df:c2:b6:cb:31:fc:0e:4d:cc:
d8:39:bf:59:1b:28:95:d9:31:c2:e9:6a:fd:06:c0:8f:61:3f:
6b:94:f6:49:b7:46:78:d4:6b:e0:db:f5:9b:58:e5:a1:8a:78:
0f:cc:e5:d4:7a:cf:43:d8:d5:77:d7:b7:24:b0:57:b3:7e:77:
3c:bd:92:e9:45:e5:be:b0:f6:3b:8b:1e:ab:46:a0:c6:0b:70:
02:ec:28:9f:4b:71:80:29:ef:5a:03:6e:52:f9:28:e4:5d:d7:
c3:d7:01:7c:e2:2f:92:ee:b9:c7:16:c6:0d:c6:94:3c:17:bb:
5e:0a:38:2b:2b:1b:1a:52:19:86:e0:87:9d:c7:6b:d1:d8:dd:
7d:bc:bc:1c:ae:1c:01:59:82:e6:20:94:3f:8c:9d:fb:13:a3:
6d:68:cc:12:76:cb:2a:c7:22:27:81:db:87:e5:4e:d3:ee:ae:
59:00:07:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org