Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/NOIlW-rChXoVizw_lMTxx9pRMrI.roa
File: NOIlW-rChXoVizw_lMTxx9pRMrI.roa (raw, json)
Hash identifier: DpK2SXgeBuxO0v3H3R2xLjbIE0V4uaLgSAy7xEhw6Jw=
Subject key identifier: 34:E2:25:5B:EA:C2:85:7A:15:8B:3C:3F:94:C4:F1:C7:DA:51:32:B2
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 098A
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/NOIlW-rChXoVizw_lMTxx9pRMrI.roa
Signing time: Sun 07 Feb 2021 12:38:54 +0000
ROA not before: Sun 07 Feb 2021 12:38:54 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38844
IP address blocks: 140.122.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2442 (0x98a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Feb 7 12:38:54 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=34E2255BEAC2857A158B3C3F94C4F1C7DA5132B2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:d2:d4:e8:42:1a:26:8a:07:04:28:bd:a9:0c:
af:e6:7b:aa:6d:b6:51:3b:2d:82:69:45:6c:bd:42:
d9:13:95:6c:6a:8a:1d:ae:0b:87:57:94:91:71:d9:
e7:78:e2:fd:fc:58:a5:b4:47:0e:9d:9c:0f:0c:1c:
1c:0f:cc:6f:15:dc:1f:d9:ce:cc:ef:2d:9b:b5:68:
b3:59:75:ff:8f:ce:be:e3:1c:2d:d7:ea:8e:d7:f7:
0d:fa:ec:d6:6b:e2:39:5c:64:7f:5e:3a:c7:3c:0c:
69:7a:a4:2a:e6:b0:b6:cb:b2:6d:b6:e5:91:71:9a:
ca:f6:0d:10:28:26:01:65:57:81:e6:5f:2a:50:b4:
9b:b1:53:ba:d9:22:a1:e4:fc:5a:2b:d1:1e:9d:d4:
7e:6f:75:33:d8:a7:4c:f2:9f:56:3e:87:8e:23:16:
81:0a:99:96:a9:08:76:c5:eb:b9:70:3c:27:d5:cb:
b8:6b:41:64:3f:96:04:95:bb:05:29:24:0f:72:2e:
58:fa:06:0a:aa:f6:2c:40:9d:5d:fc:92:49:66:e0:
c1:df:c0:3e:c8:93:a9:87:5f:4d:d1:96:5c:f6:98:
c3:c0:22:00:a4:8c:17:0d:68:66:07:56:ef:d8:73:
d7:ba:96:65:0f:99:6c:5a:a4:49:9f:b6:84:c4:2b:
8d:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:E2:25:5B:EA:C2:85:7A:15:8B:3C:3F:94:C4:F1:C7:DA:51:32:B2
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/NOIlW-rChXoVizw_lMTxx9pRMrI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.122.0.0/16
Signature Algorithm: sha256WithRSAEncryption
81:b4:52:ca:92:56:d5:22:65:b8:e2:67:78:2a:8e:f1:8b:0c:
78:dd:be:be:93:ef:00:41:ab:e0:69:b6:4f:a7:dc:30:72:d9:
65:b7:f9:41:29:73:23:99:9c:bf:49:bc:5e:43:bd:2f:35:51:
1d:1b:7f:a8:af:10:dc:ef:bc:02:1c:41:48:24:3a:8d:f9:31:
c3:9e:75:f2:7a:12:a0:ee:84:d1:d3:8d:65:c8:ef:a9:2d:4e:
c8:97:4f:68:2b:78:df:f2:42:50:24:39:cf:4d:ba:54:c9:d1:
08:3d:a1:01:2b:22:47:e7:63:8f:dd:a9:3d:e2:89:a5:11:ca:
74:21:2a:51:98:6c:bf:c3:f6:43:41:15:74:4c:0e:4e:82:9f:
97:75:b7:45:c8:d6:1c:86:46:b8:d7:fe:ea:f3:73:92:ec:02:
0c:f4:d6:c6:a9:46:de:e7:6c:a2:99:8e:e6:92:5b:a7:4a:21:
f2:d4:88:81:f1:69:b6:b0:e9:aa:1d:e0:77:b3:11:5d:89:f2:
ea:9c:a7:96:9b:bb:d5:7b:7f:b3:ea:79:91:3f:f5:6c:73:76:
c8:d3:2e:a5:42:1a:23:ab:bf:50:a1:ed:c0:1d:f4:68:14:95:
df:99:df:2a:ac:57:17:16:ff:c3:ff:6b:4e:f6:50:97:5b:f8:
de:1d:db:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org