Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/CE3hoVhiV7pGpCtV2fX7zVk2vE0.roa
File: CE3hoVhiV7pGpCtV2fX7zVk2vE0.roa (raw, json)
Hash identifier: HrIQtQRwAd/ejWwHsFhhHHRzqgOdEwSOBA11VGkm0i4=
Subject key identifier: 08:4D:E1:A1:58:62:57:BA:46:A4:2B:55:D9:F5:FB:CD:59:36:BC:4D
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 07C3
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/CE3hoVhiV7pGpCtV2fX7zVk2vE0.roa
Signing time: Tue 29 Sep 2020 10:06:51 +0000
ROA not before: Tue 29 Sep 2020 10:06:51 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38844
IP address blocks: 140.122.0.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1987 (0x7c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 29 10:06:51 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=084DE1A1586257BA46A42B55D9F5FBCD5936BC4D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:74:a9:55:a4:c5:b3:dd:96:01:7a:82:fb:7e:
31:b4:80:16:4c:6e:e3:30:a1:79:90:b3:02:fb:bf:
53:b3:69:e8:ff:05:21:fe:6a:14:df:d4:17:a9:e8:
ce:6a:f3:7a:1d:01:51:2a:82:d1:53:04:c6:e9:c6:
73:cb:bc:c8:85:65:2e:63:c2:12:e8:41:62:f5:f8:
99:0d:a8:c9:d6:b6:de:da:63:95:b3:e4:3c:1a:67:
fd:4a:7e:d2:6e:6e:5e:cf:38:79:9c:bf:a8:91:83:
59:12:ad:f7:a2:77:e4:b9:77:91:27:63:19:57:39:
54:13:a9:c3:f0:76:ef:48:20:f0:2f:63:57:5f:7b:
3c:46:79:57:ae:ff:ee:5f:9a:83:a7:06:9a:38:77:
8f:a3:50:5c:51:f3:a0:7d:e8:2e:b0:1a:50:52:9a:
3d:77:04:93:2a:0b:9e:22:df:ab:ed:a9:68:ee:63:
d8:f8:dd:b8:8a:a0:8d:c7:aa:70:3b:e3:13:91:16:
1d:2f:d9:20:95:bb:21:97:ec:5e:5a:81:55:64:7f:
5d:28:7a:9f:35:72:b4:f8:26:ef:ed:b7:01:f4:5d:
e7:4c:91:4c:5d:28:ed:bc:aa:d3:ab:77:48:f0:6d:
c6:6e:c5:f0:63:7f:38:3c:f1:05:fa:ea:46:98:28:
6b:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:4D:E1:A1:58:62:57:BA:46:A4:2B:55:D9:F5:FB:CD:59:36:BC:4D
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/CE3hoVhiV7pGpCtV2fX7zVk2vE0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.122.0.0/17
Signature Algorithm: sha256WithRSAEncryption
21:1f:5e:f8:3a:4a:5f:10:32:e7:1d:12:b8:31:04:44:ca:9b:
8e:4f:76:31:33:3c:46:25:71:30:9e:ca:25:6c:87:ef:d3:77:
98:c1:41:8d:57:90:27:a4:a2:9f:0a:06:20:a0:0f:92:cd:1d:
6f:6e:73:22:e0:8e:38:86:f8:8f:7a:2d:3a:17:02:5c:b5:36:
61:a7:c6:8f:26:90:20:64:8c:59:c3:a4:f2:f7:a9:0e:01:23:
c2:1a:80:fa:4d:9a:d4:1c:1c:69:29:d3:e1:13:b3:18:59:81:
57:4b:9a:36:12:e3:97:ac:c7:65:04:d2:9a:91:e9:68:54:f1:
5a:a8:81:db:92:31:01:3f:c0:c6:76:e6:e1:16:9d:d2:d0:19:
12:f9:4f:c3:4d:77:3e:47:0d:da:77:84:0b:f0:c2:98:bc:7d:
d2:91:f2:ef:16:aa:87:30:13:af:ce:8e:f9:56:6c:f3:75:e8:
36:3c:3a:1a:ec:d1:0c:f6:87:cc:26:b4:c2:4c:31:23:83:d7:
7b:aa:df:f7:a8:f5:82:7f:fc:33:87:89:59:02:ad:aa:48:91:
56:6a:d1:c8:aa:28:d6:0b:8a:6b:71:24:56:ca:db:7a:eb:38:
2a:d3:98:ef:94:de:d2:32:b6:44:d5:3e:f4:27:6f:b2:51:80:
cc:20:70:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org