Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/LOOF00oqfpEr4qMg8n-q0txW8WI.roa
File: LOOF00oqfpEr4qMg8n-q0txW8WI.roa (raw, json)
Hash identifier: fFl0KWJqymWuNti9wXDVi+2/QqggeiOKhyReo8sat4w=
Subject key identifier: 2C:E3:85:D3:4A:2A:7E:91:2B:E2:A3:20:F2:7F:AA:D2:DC:56:F1:62
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0B8A
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/LOOF00oqfpEr4qMg8n-q0txW8WI.roa
Signing time: Thu 15 Sep 2022 02:41:22 +0000
ROA not before: Thu 15 Sep 2022 02:41:22 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9916
IP address blocks: 192.83.179.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2954 (0xb8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 15 02:41:22 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=2CE385D34A2A7E912BE2A320F27FAAD2DC56F162
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:c8:f7:85:f6:c5:3a:cc:6c:b6:8e:a0:f1:19:
4f:fe:cc:e8:08:ad:0a:05:85:2d:f1:a7:ab:e0:20:
a0:46:a7:b6:56:5a:be:5c:5a:87:aa:46:56:db:e0:
94:08:8e:0e:78:d5:ac:c9:82:0b:0a:ac:9a:16:03:
84:cb:c1:0b:50:1c:eb:78:ed:85:cf:d8:74:6b:23:
cc:02:9b:42:e6:70:50:ad:0b:30:0f:61:6f:96:07:
e8:1f:f2:42:16:36:04:32:54:78:d4:15:68:1e:1a:
42:5e:eb:f5:f7:c5:1a:a9:08:80:ec:99:b0:92:ec:
89:3a:64:28:6e:bb:78:a3:14:c1:db:04:75:67:9c:
7a:ea:33:e4:d1:f5:cf:37:8b:14:82:b0:31:7b:cf:
e4:21:5f:eb:c8:64:68:b0:8e:e6:5b:fe:57:99:d0:
fd:d6:07:b9:44:15:a6:36:c6:dc:57:88:c7:13:30:
97:15:25:ee:df:3f:8d:82:24:32:a6:0b:a6:8d:89:
82:ca:8e:9b:73:d1:27:f9:2d:f5:a4:b7:62:cf:bd:
b3:85:7c:93:1f:b5:6a:a8:70:06:24:f9:1a:bf:ec:
39:83:76:5c:d8:b9:74:b4:e3:9e:bf:cb:bd:e6:29:
13:5e:78:f9:5b:e5:c6:13:a9:1e:c3:91:7e:e5:04:
e2:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:E3:85:D3:4A:2A:7E:91:2B:E2:A3:20:F2:7F:AA:D2:DC:56:F1:62
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/LOOF00oqfpEr4qMg8n-q0txW8WI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.83.179.0/24
Signature Algorithm: sha256WithRSAEncryption
00:d0:53:80:b3:aa:a7:c4:58:a4:01:75:cf:ed:c1:a0:8a:68:
3b:21:2f:28:9b:e0:2b:b0:41:88:a0:d3:c8:55:19:a8:69:08:
db:60:58:69:7b:32:d3:9b:e9:28:08:70:35:c8:01:ca:8b:41:
1e:6a:cd:d6:3a:39:53:bb:ab:a2:73:9d:49:bc:65:c2:3f:cd:
38:5b:7d:f1:5f:aa:08:3f:c8:b5:6a:08:16:ce:d1:9e:6b:5e:
84:5d:87:cc:6e:cf:75:6c:b1:5a:de:18:d6:c4:a7:b1:69:6e:
5b:b1:28:1b:13:b8:05:56:6c:66:1c:cb:5c:19:6f:7f:13:b0:
e5:e4:9d:b6:9e:a3:e4:c2:0a:8c:a2:e9:8c:94:4d:c1:93:a8:
f4:24:3e:d9:9d:4e:b8:ed:9e:c7:01:43:a1:b6:be:37:05:95:
2b:5b:7e:f9:ae:b6:7e:3b:f7:d4:3d:a0:d2:50:fc:77:a5:f6:
6c:e7:57:e3:a6:86:63:6b:47:c7:ed:93:93:4a:83:48:e0:bd:
e0:62:fd:01:0c:36:bc:69:ce:52:6a:15:e4:7e:07:a2:0f:c0:
02:eb:33:ef:78:a4:86:75:aa:90:cb:62:21:1e:d0:d8:60:a0:
fa:32:40:b4:a8:a9:b1:17:ea:f1:08:03:d9:03:76:27:1f:47:
ed:84:02:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org