Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/Db2bCfSwrn-x_nK3TxddNr3eLJQ.roa
File: Db2bCfSwrn-x_nK3TxddNr3eLJQ.roa (raw, json)
Hash identifier: 0+0OUuB2VCi75ppEJGQ75HVIE8cFVrut+gr3cmDzDG8=
Subject key identifier: 0D:BD:9B:09:F4:B0:AE:7F:B1:FE:72:B7:4F:17:5D:36:BD:DE:2C:94
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 09CF
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/Db2bCfSwrn-x_nK3TxddNr3eLJQ.roa
Signing time: Sun 07 Feb 2021 13:12:58 +0000
ROA not before: Sun 07 Feb 2021 13:12:58 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9916
IP address blocks: 140.129.56.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2511 (0x9cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Feb 7 13:12:58 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0DBD9B09F4B0AE7FB1FE72B74F175D36BDDE2C94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:61:88:c9:26:13:36:54:59:90:16:df:87:58:
e2:0f:3c:5f:c3:68:4c:eb:7f:40:83:24:7b:e1:5d:
77:35:4a:75:05:5d:f2:52:27:f6:95:bd:44:0e:0a:
ab:92:62:c4:0f:c8:cd:24:db:38:c2:3e:df:63:23:
27:ed:4d:4e:b9:b2:73:86:b6:c3:9c:3a:29:5a:3f:
da:ca:37:8a:39:94:fe:23:58:2d:19:39:80:da:4c:
71:23:01:db:d0:66:1e:f6:e6:01:5a:d1:a8:1e:54:
51:34:09:e2:6c:99:39:21:b2:93:6c:78:c7:a2:a9:
92:b8:80:a1:f8:5b:47:5c:f8:3a:b8:bd:05:16:17:
f8:62:34:b9:a7:0d:8b:f4:07:f3:70:a9:fe:22:81:
fb:cb:d1:94:0c:c6:3c:53:76:d1:6c:08:1b:2f:3f:
44:53:57:f5:4f:b8:73:8a:f0:0f:96:ec:69:91:6a:
95:23:97:0d:7d:bc:92:5e:1c:eb:7d:f8:22:06:7f:
1e:68:de:0c:82:1f:d5:5d:77:f3:a1:d9:2a:a7:1b:
53:f8:14:2a:e7:69:29:67:6b:c2:9e:df:57:0e:29:
ae:ba:fb:de:dc:29:8e:32:21:03:01:20:1b:31:dd:
59:39:d4:65:e6:91:fc:9b:ee:98:b4:ee:9c:e8:6f:
a8:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:BD:9B:09:F4:B0:AE:7F:B1:FE:72:B7:4F:17:5D:36:BD:DE:2C:94
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/Db2bCfSwrn-x_nK3TxddNr3eLJQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.129.56.0/21
Signature Algorithm: sha256WithRSAEncryption
78:94:ce:2a:c0:03:5d:09:cb:2c:df:63:24:08:89:92:ee:f9:
df:50:e1:16:45:22:5d:28:fe:8f:f3:e5:f3:0f:da:15:35:89:
bc:8f:09:86:6e:7e:00:55:ea:01:41:3d:94:0a:f3:64:ca:7e:
f2:fb:f2:ee:af:22:69:02:3d:1c:26:3b:b1:b9:86:7c:40:26:
85:e7:82:3c:c2:ce:f6:68:18:a0:e0:62:ca:6d:d0:7e:5e:20:
ce:6f:9b:b7:aa:5d:8e:e0:8d:38:f4:7a:3b:39:ee:aa:0d:3f:
a7:8b:40:9e:fa:17:fe:26:a8:fb:94:53:23:7d:2e:02:f9:1d:
df:8f:2a:92:70:fe:6d:4c:fd:00:bd:43:7a:5b:29:bb:b2:07:
9e:e9:3f:f4:c3:1b:64:5b:2d:0f:2d:0b:4e:32:59:a0:54:ef:
84:8a:72:94:ba:9a:84:e3:58:6a:9a:f5:67:8e:96:d1:a9:14:
ac:67:2e:78:d9:15:09:a3:8a:a8:a3:b6:1a:35:8b:ce:02:37:
fc:3d:9b:b3:43:49:4a:e0:34:eb:fb:c1:3c:6d:f1:e0:3f:84:
7d:5c:e9:c3:c9:6d:17:3e:e8:61:56:14:cf:45:e1:a1:b2:32:
54:c3:97:75:14:69:5a:f6:5c:d3:c6:56:fc:ee:65:16:2c:d8:
3b:4d:89:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org