Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/KY9nipFdbBzZ6tXjEbnLZzuAQMI.roa
File: KY9nipFdbBzZ6tXjEbnLZzuAQMI.roa (raw, json)
Hash identifier: qW29y6ih7AetuwYI7IJt4xsbtg39jfVxRHNLrgjKLsU=
Subject key identifier: 29:8F:67:8A:91:5D:6C:1C:D9:EA:D5:E3:11:B9:CB:67:3B:80:40:C2
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0B8A
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/KY9nipFdbBzZ6tXjEbnLZzuAQMI.roa
Signing time: Thu 15 Sep 2022 02:41:24 +0000
ROA not before: Thu 15 Sep 2022 02:41:24 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 1659
IP address blocks: 140.128.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2954 (0xb8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 15 02:41:24 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=298F678A915D6C1CD9EAD5E311B9CB673B8040C2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:8d:d5:69:90:74:8a:08:96:9f:ff:88:51:4e:
34:b1:a1:4d:00:c1:91:a7:90:0c:63:a3:ac:89:93:
0b:e2:31:1d:25:d6:6f:f0:fd:f1:7d:29:8b:4e:cd:
01:19:5f:14:1d:fc:1d:64:f7:57:3d:be:53:52:eb:
f2:6e:9d:a0:70:4b:f2:12:c5:ce:38:39:19:a4:8f:
09:6a:f8:29:98:96:0b:5c:c6:3b:70:e6:b6:44:52:
f0:0c:d9:ec:82:88:ef:9a:83:cd:78:a6:6f:fa:6b:
f8:25:53:ec:f6:dc:dc:1f:db:c9:18:5b:02:50:43:
de:96:45:bb:91:ab:c6:33:2b:e0:fc:7a:ac:7f:fd:
12:13:8e:8f:62:78:0f:30:a6:d6:86:38:26:ec:a6:
22:01:8a:dc:1f:6b:a7:9b:c0:bc:75:cb:fd:d6:bf:
d6:9c:13:9b:de:4e:64:4a:12:11:53:be:f3:e2:1d:
93:85:14:95:d1:9f:aa:f8:f9:b0:ec:50:f6:73:7b:
4a:f3:ed:6f:60:8c:0c:87:fb:24:fd:1b:c3:e1:d9:
2c:66:5f:6a:04:e0:f1:a5:f6:4d:88:6a:c3:71:63:
67:05:4f:61:c2:73:bf:0b:5b:d7:e7:f6:dc:e9:f6:
51:6c:a1:0d:4d:24:db:ad:c2:5e:27:11:6f:ea:bc:
b7:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:8F:67:8A:91:5D:6C:1C:D9:EA:D5:E3:11:B9:CB:67:3B:80:40:C2
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/KY9nipFdbBzZ6tXjEbnLZzuAQMI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.128.0.0/16
Signature Algorithm: sha256WithRSAEncryption
0a:d7:b1:89:fe:cb:5e:52:c7:58:eb:61:b5:9f:33:29:35:a8:
95:43:b4:3a:cf:37:7d:cc:5c:d8:47:8c:9f:6d:69:c2:2b:08:
e5:90:96:03:04:16:ce:e2:9a:a0:d4:92:a3:5e:36:49:e4:9f:
67:ad:05:c9:c4:0f:50:49:dc:07:68:70:b9:16:2a:c0:b8:be:
c6:ab:a2:95:75:94:5d:14:5d:fb:2e:e7:c2:d3:32:6b:03:a3:
72:59:7f:f9:c4:0f:33:0f:c2:a0:e1:65:4a:28:30:59:5a:0e:
cf:6c:58:37:e5:e6:f5:0c:fb:b9:86:1a:77:39:4c:ab:47:eb:
bf:98:d2:a4:fa:6f:ef:f8:5d:3f:41:95:2d:70:ff:2f:45:30:
28:aa:3a:84:ef:f7:37:37:5b:35:6c:b5:a9:da:78:43:25:61:
45:94:62:ed:d1:df:a6:15:79:76:c9:ca:97:0a:24:c6:43:44:
a2:44:97:42:ed:9e:97:e0:73:5b:c9:a4:20:46:05:77:b1:27:
67:2a:12:1b:35:30:b4:25:4c:b0:4c:3f:b9:ca:e0:e6:b8:4c:
af:b6:9d:76:79:f6:07:2b:66:f4:44:78:37:de:6d:ce:79:43:
54:be:19:ad:f0:ce:d4:31:18:3d:02:e0:06:6e:34:4c:2c:d9:
97:93:74:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org