Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/FtIlQNHziz3ayLRXSZMwDtCL5iE.roa
File: FtIlQNHziz3ayLRXSZMwDtCL5iE.roa (raw, json)
Hash identifier: BJjAsYBR0MZaH9aOsAB7yTNNSoSyXAVHW4VoLamob2M=
Subject key identifier: 16:D2:25:40:D1:F3:8B:3D:DA:C8:B4:57:49:93:30:0E:D0:8B:E6:21
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0994
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/FtIlQNHziz3ayLRXSZMwDtCL5iE.roa
Signing time: Sun 07 Feb 2021 12:39:03 +0000
ROA not before: Sun 07 Feb 2021 12:39:03 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38845
IP address blocks: 140.136.164.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2452 (0x994)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Feb 7 12:39:03 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=16D22540D1F38B3DDAC8B4574993300ED08BE621
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:69:f7:d3:27:69:4d:67:a4:fd:b6:f3:0d:69:
91:f5:5c:13:59:6c:61:ee:de:1d:d1:b3:a6:fa:f3:
b9:13:98:b8:1d:78:b5:8d:10:51:9d:85:17:44:ca:
4e:89:ff:7b:4f:d1:42:cc:5e:f1:da:3e:d7:09:52:
c8:6b:72:93:9a:96:ff:d1:d0:c0:18:4f:ce:9e:41:
53:f0:0e:2e:b5:72:87:40:1a:b6:95:20:30:7f:eb:
78:c9:6d:d7:da:5e:cd:e1:9d:ca:53:73:6d:7e:f2:
71:ca:4c:de:1e:41:cc:3d:4d:e0:21:1d:64:d3:d1:
d7:2a:40:53:03:69:5c:14:b4:32:24:69:ce:ab:53:
8b:c7:39:47:9f:fe:b2:a2:bf:18:ca:d3:7e:37:29:
d3:d3:c2:9f:22:a2:ce:9e:56:63:57:6b:bf:d7:a7:
0e:41:e6:62:97:2b:7d:c0:da:fb:1d:2d:94:22:fe:
3b:9c:8a:b6:56:ed:ba:13:55:c5:1a:08:d4:85:32:
49:e8:59:02:35:9f:a4:7d:a6:ff:bb:d0:95:79:2c:
db:9e:5b:90:36:75:1c:87:58:ff:48:eb:91:b8:61:
f9:bd:7b:a8:64:b1:5d:2b:57:1d:80:50:23:01:4f:
a5:07:12:c8:13:02:58:df:ae:71:41:ac:42:13:db:
ca:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:D2:25:40:D1:F3:8B:3D:DA:C8:B4:57:49:93:30:0E:D0:8B:E6:21
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/FtIlQNHziz3ayLRXSZMwDtCL5iE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.136.164.0/23
Signature Algorithm: sha256WithRSAEncryption
62:72:4f:a2:6d:c0:ed:bb:6c:88:3a:50:4a:b2:f3:ab:89:bb:
31:c7:6a:b9:cc:35:f0:63:cd:34:e6:8b:d6:7c:b4:ae:29:9a:
c6:4f:32:18:eb:17:dc:00:2a:7a:6f:d5:6e:ea:b9:b9:90:ab:
8e:59:0b:88:64:1d:79:67:aa:78:26:66:56:3e:8f:9c:76:d4:
9b:dd:cc:80:99:da:b7:da:1d:54:d3:54:ea:fb:51:e9:e0:e8:
20:85:3a:45:2e:28:de:e0:a4:32:a2:17:aa:0f:8e:22:9f:fc:
70:33:57:f8:63:a1:9d:aa:9e:9c:09:d7:2f:54:50:ec:fc:a2:
2a:a8:22:c5:f7:91:48:9f:57:42:56:cb:10:ab:8a:85:9d:86:
3f:87:48:b4:8d:49:fe:18:35:d7:96:74:65:76:52:fd:3f:d4:
cd:d8:0b:f5:ee:b2:ac:b7:86:ea:9f:a0:e2:c4:a1:26:f2:59:
06:4e:8b:65:b6:9e:ec:9b:30:24:e8:9d:47:de:64:33:c6:39:
6f:ce:7d:96:ee:ae:75:a7:64:72:64:b1:ee:a8:1a:f3:6e:83:
40:9c:0d:38:b3:a2:d3:f4:52:68:75:09:b6:e3:74:f0:2f:35:
65:6b:27:38:d4:fd:5d:e9:3e:c5:d4:a7:2e:4c:c0:dd:21:96:
2a:1d:ec:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org