Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/GYI47pTrFjV9UMfR1vqIhQYXSjI.roa
File: GYI47pTrFjV9UMfR1vqIhQYXSjI.roa (raw, json)
Hash identifier: wccfVbx2MIlWOsidBAGXKnUCp8EMSRO1ondPGD5RWLk=
Subject key identifier: 19:82:38:EE:94:EB:16:35:7D:50:C7:D1:D6:FA:88:85:06:17:4A:32
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0A97
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/GYI47pTrFjV9UMfR1vqIhQYXSjI.roa
Signing time: Wed 29 Sep 2021 02:41:25 +0000
ROA not before: Wed 29 Sep 2021 02:41:25 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38844
IP address blocks: 140.122.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2711 (0xa97)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 29 02:41:25 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=198238EE94EB16357D50C7D1D6FA888506174A32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:0f:01:e0:f7:52:12:88:82:32:9d:6b:1b:6c:
71:04:48:3c:5e:9d:b9:f1:d1:47:ec:6e:31:62:03:
05:26:55:11:79:3a:3d:cd:64:02:54:3c:40:3d:68:
52:75:e9:66:b4:b2:d3:31:40:5a:74:6d:dc:95:7e:
7e:47:41:d1:0f:a8:59:4d:32:05:19:2b:cd:bb:e6:
1c:80:8b:8c:a2:fb:4c:e4:9d:b8:d7:c1:2d:14:dd:
5b:16:c1:f6:51:6f:61:0f:9b:7e:7e:00:01:38:0a:
b4:58:e2:f2:12:a0:94:03:6f:6f:23:ac:a8:f0:c5:
0d:38:a5:84:c1:70:84:60:2b:4a:43:ce:3c:35:2e:
ab:24:8b:a1:ab:10:ab:3f:d9:94:83:91:1a:35:e7:
cd:2e:39:6c:c0:b5:27:a1:aa:2a:be:36:f0:08:ce:
04:a6:1b:c0:c7:a3:f7:0e:61:0f:ab:d0:72:f6:a9:
9a:04:cc:c1:4e:0c:1e:c7:3c:6d:17:f2:0f:17:be:
28:d9:cc:47:80:5c:3c:8d:2f:be:4a:6e:4f:fd:50:
de:69:2e:0e:5a:0a:24:48:39:9c:3d:62:d6:17:57:
62:39:ab:01:c8:ca:d0:7b:85:1a:29:57:09:4b:72:
9c:c1:6e:6e:96:e8:43:15:eb:5e:5f:18:b8:43:ed:
57:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:82:38:EE:94:EB:16:35:7D:50:C7:D1:D6:FA:88:85:06:17:4A:32
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/GYI47pTrFjV9UMfR1vqIhQYXSjI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.122.0.0/16
Signature Algorithm: sha256WithRSAEncryption
15:0d:39:05:50:65:6f:37:81:29:a9:e1:c8:62:f8:9e:5e:17:
f1:66:37:c4:97:eb:ac:c6:dd:75:9f:c0:13:b7:b9:e1:c2:65:
ee:b3:b5:93:c7:43:e5:87:a8:a6:bb:91:ac:c6:88:a3:71:cb:
28:94:0c:e6:ce:5c:34:2f:3f:6d:4d:6d:ea:cd:5f:a5:25:9b:
5e:bd:8a:aa:dd:d4:de:ea:d4:01:04:66:98:97:c0:34:f1:c1:
bc:ae:81:de:29:31:70:95:c0:22:ab:19:a1:9c:f3:a4:7e:7e:
1a:30:ff:4a:2c:ce:c1:f8:8a:ba:c0:53:f5:2b:3f:aa:cd:56:
33:f5:d6:6e:f0:f6:f7:a6:79:87:24:5b:ca:7d:0f:04:b8:5d:
26:38:54:39:24:38:a4:8b:f6:bf:cb:ef:30:48:10:85:6f:42:
14:16:49:b2:9b:d7:9c:f4:43:92:6e:12:88:06:02:c5:96:86:
47:01:6c:73:61:4e:2b:dd:7a:ec:72:1f:90:dd:75:f6:1b:6d:
a1:75:2b:13:1a:00:44:ec:14:d7:e0:7d:ac:9f:ff:1f:1b:5b:
3a:d6:6a:eb:2e:59:89:52:de:8b:40:ad:f8:da:8f:48:03:3a:
ee:9d:b2:ba:b7:7f:ca:25:d3:aa:88:b6:97:44:f3:a0:95:20:
36:5a:1d:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org