Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/EwTnS8Qys28JB_XqlBrXxLp2B5Y.roa
File: EwTnS8Qys28JB_XqlBrXxLp2B5Y.roa (raw, json)
Hash identifier: 9iiV3VA+R1E+E+T1ahiI/VXySASfgpdnXH4TzlTE3zY=
Subject key identifier: 13:04:E7:4B:C4:32:B3:6F:09:07:F5:EA:94:1A:D7:C4:BA:76:07:96
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 07CD
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/EwTnS8Qys28JB_XqlBrXxLp2B5Y.roa
Signing time: Tue 29 Sep 2020 10:06:54 +0000
ROA not before: Tue 29 Sep 2020 10:06:54 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 7539
IP address blocks: 140.110.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1997 (0x7cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 29 10:06:54 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=1304E74BC432B36F0907F5EA941AD7C4BA760796
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:5e:6c:e3:5c:65:39:bd:e0:34:5e:9b:6f:4f:
04:a0:11:45:e7:bb:a3:63:2e:fb:99:10:33:b5:aa:
96:93:15:4c:66:e9:fa:ee:67:77:b1:77:4e:33:c0:
68:c1:f3:33:3e:f5:5d:37:e8:70:da:f8:d6:36:8e:
85:12:a1:7c:b7:3f:0b:5d:5e:66:18:dd:90:62:14:
9d:75:3b:39:29:fe:eb:80:9e:8b:2e:10:87:2e:cc:
e3:60:de:13:57:56:2e:30:46:3f:51:ce:cb:36:6d:
3e:03:dc:65:16:ea:11:f8:b9:7e:53:64:9c:3c:d3:
72:88:4a:7b:a9:07:f5:2a:3c:aa:f7:38:a4:b6:56:
31:f3:af:82:40:6d:d2:0d:b7:ee:d1:df:16:11:3f:
31:80:3c:f8:21:39:0c:83:f3:20:d3:41:0d:5b:1d:
ed:28:d4:13:d8:79:3d:a3:15:f6:79:fe:a5:d3:08:
73:c0:3a:a5:47:78:ee:5f:6a:7a:78:a2:ec:73:0f:
0a:a1:6e:13:56:96:f6:8a:6d:17:fe:99:1d:17:4b:
dd:be:2a:80:82:78:0a:92:1a:97:6e:01:3e:ae:87:
4d:de:f5:e8:7e:e6:6b:bc:c7:21:57:97:57:65:b2:
e4:5a:b0:01:0d:f8:8e:cb:19:e2:5d:76:6b:54:a9:
f5:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:04:E7:4B:C4:32:B3:6F:09:07:F5:EA:94:1A:D7:C4:BA:76:07:96
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/EwTnS8Qys28JB_XqlBrXxLp2B5Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.110.0.0/16
Signature Algorithm: sha256WithRSAEncryption
52:b6:98:cb:41:d5:56:9d:de:e7:4f:d7:08:1a:0c:7b:52:a0:
31:32:2f:96:24:24:0e:99:58:80:f5:58:dd:01:bc:05:53:b3:
3f:98:b6:a7:2c:2d:f7:30:66:6a:e6:07:4e:5a:14:06:09:9e:
bc:f3:32:aa:f9:4d:05:d7:1c:23:9a:b2:d2:08:99:ed:e4:8e:
32:85:31:80:7e:fd:2c:8d:20:e8:fb:ee:eb:2e:b9:61:ee:f9:
3a:d5:a7:be:ba:cf:19:2f:19:43:b4:ee:e5:cc:3a:99:c8:a6:
62:da:1c:a5:e3:51:be:ad:f5:c1:70:8d:9e:47:69:17:37:de:
12:c8:45:81:19:85:75:4d:e0:2d:4c:2c:6b:42:8d:2b:b4:3e:
62:9c:b0:63:a4:55:7e:d5:08:30:16:4d:a4:5a:91:b0:ec:ba:
d2:d5:12:81:05:69:aa:37:f8:12:bf:07:55:3b:bc:93:79:0a:
47:6f:ea:5e:a1:eb:56:e2:3e:06:0c:35:a3:bf:6b:56:6b:8c:
8b:92:01:36:d0:d9:35:e8:44:8f:f2:0d:07:84:ba:99:2c:83:
6c:22:8d:6f:93:f5:03:91:fa:07:9f:2e:a5:b2:25:af:d7:3f:
6d:fa:a0:1a:7c:8c:14:9f:e8:4f:11:b1:4e:22:03:1c:24:59:
17:04:3a:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org