Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/CpTjJCKsTAmr025QwpRjGap6hQc.roa
File: CpTjJCKsTAmr025QwpRjGap6hQc.roa (raw, json)
Hash identifier: QVmy+fXrvC9/IewQSzGFgFwmeGTEUPyRDQ5YggozQ7w=
Subject key identifier: 0A:94:E3:24:22:AC:4C:09:AB:D3:6E:50:C2:94:63:19:AA:7A:85:07
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0A81
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/CpTjJCKsTAmr025QwpRjGap6hQc.roa
Signing time: Wed 29 Sep 2021 02:41:18 +0000
ROA not before: Wed 29 Sep 2021 02:41:18 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 1659
IP address blocks: 140.110.0.0/15 maxlen: 15
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2689 (0xa81)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 29 02:41:18 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=0A94E32422AC4C09ABD36E50C2946319AA7A8507
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:4d:8e:29:14:50:5d:f8:83:8e:fb:63:d1:71:
64:a8:10:32:1e:e0:e7:de:8b:fe:15:fc:68:c2:6e:
52:0f:00:d7:66:5b:1e:0b:63:b0:a9:aa:8f:45:3e:
54:81:4c:13:71:2a:ec:13:48:14:0d:fc:4a:70:fe:
e9:e1:34:ad:26:9e:9e:6c:2e:0c:b3:3f:20:5f:11:
d3:dd:83:71:90:45:3b:0a:38:92:69:bb:3d:b5:f4:
bb:00:4e:f3:b0:ea:4b:9b:b2:7c:3b:e9:c8:2f:a2:
97:0b:7c:1d:b7:47:5f:d1:56:4b:56:6f:20:fd:00:
dd:e7:59:9c:a2:cd:90:ce:22:0d:04:4c:fd:cd:33:
81:df:60:b2:85:38:9c:44:e3:33:ab:2e:1b:f8:b6:
ec:cf:d3:92:02:f9:04:51:ce:dc:3b:de:f9:23:70:
be:1a:3a:6f:9c:85:38:a0:5e:55:e7:97:c8:6b:62:
41:84:46:2b:57:6a:66:5f:ce:c7:38:4f:d9:55:70:
51:6d:f4:12:e1:78:c5:d8:fe:b5:a7:05:b6:2f:52:
c7:48:e5:fd:1b:0c:17:e4:b3:60:67:46:8f:d8:f9:
19:d4:d2:be:48:a0:07:9a:84:09:d4:0b:4c:68:5e:
6f:3d:03:ae:9a:6f:57:65:88:b9:50:3f:11:d7:e3:
09:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:94:E3:24:22:AC:4C:09:AB:D3:6E:50:C2:94:63:19:AA:7A:85:07
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/CpTjJCKsTAmr025QwpRjGap6hQc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.110.0.0/15
Signature Algorithm: sha256WithRSAEncryption
76:c1:9e:f3:1c:89:7b:6f:ed:ae:f0:53:db:ef:a9:12:5a:24:
09:97:8d:c5:08:42:c7:90:e9:06:6d:7c:70:a5:37:4d:18:1b:
f5:34:41:0a:55:c5:17:02:7b:a4:4b:08:68:8f:3d:12:bc:46:
2b:20:1e:9b:ae:29:d4:49:22:86:13:d8:a9:54:79:69:25:46:
40:ef:d6:29:c6:33:33:09:c4:5c:16:af:2f:cb:86:c3:41:ff:
ef:53:e6:42:ec:b9:e2:b2:95:db:95:0d:7a:ec:f3:58:6d:54:
60:32:e6:df:c0:75:09:89:91:98:db:47:c6:6a:35:6c:51:59:
1e:e5:89:7a:ed:2a:89:c3:4b:6d:06:ad:55:ca:06:52:d6:e4:
4c:f2:81:62:95:ce:e7:01:c5:05:2e:ec:6f:91:ff:52:36:87:
8a:72:1d:05:3e:21:b2:cb:50:6c:ad:a5:b9:ce:ed:ed:ac:2d:
b7:0e:9a:b0:50:02:fb:f0:2c:4d:fb:5d:77:9d:c5:44:62:13:
3c:6e:0a:20:9f:83:f5:3d:e4:f3:a8:f4:ff:a0:f0:76:7b:40:
d7:df:00:ce:81:ce:a8:1f:71:a9:ee:38:07:e4:74:9e:34:6e:
d7:3b:b3:33:fb:54:75:47:0c:fd:a3:cc:bc:4e:dc:87:b2:84:
60:8c:79:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org