Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/JfRUNKdet2z7UXGk1u9xCyF0_us.roa
File: JfRUNKdet2z7UXGk1u9xCyF0_us.roa (raw, json)
Hash identifier: mBjanKTi8ZuO8NDNMt85oqVgxi/f+Fbzrk9plP4nXEU=
Subject key identifier: 25:F4:54:34:A7:5E:B7:6C:FB:51:71:A4:D6:EF:71:0B:21:74:FE:EB
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0A99
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/JfRUNKdet2z7UXGk1u9xCyF0_us.roa
Signing time: Wed 29 Sep 2021 02:41:25 +0000
ROA not before: Wed 29 Sep 2021 02:41:25 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18420
IP address blocks: 140.115.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2713 (0xa99)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 29 02:41:25 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=25F45434A75EB76CFB5171A4D6EF710B2174FEEB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:8b:b7:09:fa:bd:49:1b:aa:dc:ec:78:dd:0b:
71:2c:15:cf:3f:0d:d2:34:ee:45:a9:f9:df:f6:05:
e7:bb:d8:ea:b9:81:73:4b:fd:4c:5e:5b:14:7b:7e:
09:b6:ee:59:4c:1c:f0:3f:31:60:69:66:8f:08:1f:
0b:58:2f:4e:6a:d8:fe:d7:ce:ec:8f:a7:64:36:8a:
21:de:9b:a9:18:e7:c3:1b:2e:ec:7e:e5:fb:b8:5d:
cc:d6:4e:ea:33:3e:b6:6c:40:54:e6:54:4a:7d:99:
64:b3:6a:ed:73:f4:b8:d6:9c:c7:d8:03:ec:ff:7c:
01:c3:34:cc:4c:5f:db:e4:51:d8:f1:84:19:2a:07:
a6:54:f1:34:4b:cf:07:64:40:61:de:fa:18:c9:d1:
19:7a:b5:85:2a:e5:5b:78:56:4e:79:2e:9d:64:53:
bb:2f:33:74:53:af:cb:e3:bd:98:84:81:41:f0:bd:
53:33:a2:19:cd:74:93:4c:4d:6c:e5:4c:e8:82:78:
01:b4:3c:47:07:fc:7a:24:12:9a:3d:b7:c1:fb:ae:
1d:33:1c:f7:79:ad:5a:7e:9b:cc:52:36:8b:00:3b:
67:4c:00:56:7b:b6:fb:6a:11:75:e2:af:83:70:65:
21:e0:59:f7:1e:5c:31:69:f4:e6:94:b2:84:69:c5:
5c:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:F4:54:34:A7:5E:B7:6C:FB:51:71:A4:D6:EF:71:0B:21:74:FE:EB
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/JfRUNKdet2z7UXGk1u9xCyF0_us.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.115.0.0/16
Signature Algorithm: sha256WithRSAEncryption
76:44:15:82:33:b4:69:72:89:d0:23:e1:5d:a3:ab:91:cb:41:
c7:33:86:6e:ab:31:83:ba:d2:2d:9f:8b:73:fc:ce:e1:59:3a:
4a:07:ce:f8:31:eb:12:7d:06:1d:b2:ff:83:80:c3:89:6c:35:
e6:8c:6a:dd:4c:62:b6:d7:3d:fe:1d:6b:59:b6:33:08:12:ea:
29:76:72:63:9d:0b:66:2c:01:d5:a9:01:be:ac:c8:39:8a:67:
74:09:0a:58:b0:c3:92:1b:b6:a9:56:03:4f:5a:e9:d8:46:e6:
78:5a:37:1e:32:8b:0f:15:d7:a8:19:2e:a4:26:79:be:5d:f0:
2b:5e:71:29:c8:85:42:a9:81:83:f4:4b:b4:1d:c2:a2:71:66:
e9:05:5e:f9:a4:17:fb:ab:2f:e1:8a:1e:0b:b0:d4:07:72:65:
62:0c:ed:17:ec:dd:53:50:6f:c3:55:fb:05:ee:5b:31:1e:20:
32:40:d2:a7:75:63:35:aa:a5:95:5e:97:8d:3b:05:f0:00:8e:
69:d7:1b:a9:6f:13:c4:84:eb:e7:c4:a4:e9:fa:cc:5d:ed:fc:
9b:b3:7d:38:8d:87:49:16:20:10:2b:c3:66:b8:43:9d:97:70:
df:57:9c:06:be:71:56:a6:e6:13:81:65:38:15:f5:4e:cc:6f:
0d:c8:0e:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org