Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/NBt_GGs-rivlVYwBfL71k7YD4Ck.roa
File: NBt_GGs-rivlVYwBfL71k7YD4Ck.roa (raw, json)
Hash identifier: OxX8eOXE7hgzAmOsCKFZdHkWLHZ6pRNxO3sL6bA9HV0=
Subject key identifier: 34:1B:7F:18:6B:3E:AE:2B:E5:55:8C:01:7C:BE:F5:93:B6:03:E0:29
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0992
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/NBt_GGs-rivlVYwBfL71k7YD4Ck.roa
Signing time: Sun 07 Feb 2021 12:39:01 +0000
ROA not before: Sun 07 Feb 2021 12:39:01 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38845
IP address blocks: 140.136.160.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2450 (0x992)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Feb 7 12:39:01 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=341B7F186B3EAE2BE5558C017CBEF593B603E029
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:ca:51:ac:10:cc:74:9a:e8:e0:6a:a8:15:18:
13:d1:8b:e6:b9:a4:99:54:75:d6:bf:76:23:68:48:
c0:f3:5b:e2:16:0e:e9:8d:b5:8c:88:60:d1:35:13:
b8:60:42:33:43:c0:29:29:d4:a9:8a:1b:01:58:73:
38:0c:36:85:ab:76:01:ee:29:3d:59:1c:d1:5a:34:
e4:a0:5c:b9:d1:86:49:f3:0b:c7:22:1f:da:15:61:
dc:66:f9:3a:9c:40:31:6b:31:a1:bb:75:bd:bc:90:
11:41:e9:c7:57:24:a2:8e:ed:9e:a9:69:18:c0:57:
10:4a:e3:13:5d:c0:81:b2:3f:18:30:70:e2:32:78:
29:f7:85:cd:dc:0f:86:b4:28:82:cd:e1:d8:f4:20:
b8:47:af:51:13:8b:ac:ba:6b:c3:4a:da:d7:cd:14:
1a:c2:34:a9:5c:20:a0:a9:79:30:56:ac:22:8b:dd:
cf:ca:fd:8e:ad:00:49:a9:9d:78:23:30:ec:67:59:
4d:3e:0b:8c:8d:c3:83:34:27:de:df:34:50:c6:1e:
4d:65:7b:cd:8f:b1:95:3b:49:02:50:8b:1f:4c:ad:
0c:44:14:cd:fe:47:3d:17:72:ca:ef:73:31:10:ae:
1a:97:03:6f:1d:14:66:22:f6:f0:0f:d3:99:a3:1a:
f7:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:1B:7F:18:6B:3E:AE:2B:E5:55:8C:01:7C:BE:F5:93:B6:03:E0:29
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/NBt_GGs-rivlVYwBfL71k7YD4Ck.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.136.160.0/22
Signature Algorithm: sha256WithRSAEncryption
66:54:b2:1e:fe:d6:e1:b3:71:15:35:38:e4:fe:b5:cf:f3:9c:
d0:f8:a0:5b:61:b0:5e:aa:f5:4a:12:c4:67:9e:81:c5:07:8e:
59:40:36:df:98:7c:f5:c3:20:2b:fe:82:b7:bf:b4:7e:1b:be:
a5:9d:43:26:3a:ac:7e:58:fc:dc:50:cf:e1:1e:d5:c8:45:f2:
df:43:b7:63:8d:81:e6:28:a7:9a:06:62:05:96:a6:c3:02:f7:
32:1b:d1:12:19:8e:8b:81:2d:63:67:64:6b:72:89:a9:f5:40:
bd:bf:68:7a:16:cf:d1:f7:1e:4c:b8:57:98:8e:ad:f5:9c:7d:
34:d3:41:db:ad:54:86:a8:8f:e2:81:0d:7a:ef:a9:13:05:96:
10:31:a8:f0:b2:45:ad:73:e6:31:a2:0e:1a:46:bc:25:0f:49:
9b:05:b5:dc:cc:ec:17:ab:9e:02:ca:ab:eb:8f:17:b1:14:a9:
71:81:cb:6c:01:04:a8:ad:dd:d2:31:c0:52:8d:5f:b8:12:5c:
2c:ed:1e:94:4e:60:c7:e2:44:e7:2e:66:9c:08:13:fe:41:8e:
91:23:27:c8:60:8a:01:aa:ca:3e:da:63:b1:6b:44:bc:61:4d:
13:e4:bb:f7:02:7b:3c:a2:27:d6:98:d9:dc:16:55:9b:1b:ba:
2a:e2:24:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org