Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/Na13ucQ-cJM7j0xVKUnc7Xf63jY.roa
File: Na13ucQ-cJM7j0xVKUnc7Xf63jY.roa (raw, json)
Hash identifier: Wqm43y1d3Kc6DD/YnbPFP43fIAp2OfwfZ2AkMPk+S+Y=
Subject key identifier: 35:AD:77:B9:C4:3E:70:93:3B:8F:4C:55:29:49:DC:ED:77:FA:DE:36
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0B8A
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/Na13ucQ-cJM7j0xVKUnc7Xf63jY.roa
Signing time: Thu 15 Sep 2022 02:41:06 +0000
ROA not before: Thu 15 Sep 2022 02:41:06 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 1659
IP address blocks: 140.128.0.0/13 maxlen: 13
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2954 (0xb8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 15 02:41:06 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=35AD77B9C43E70933B8F4C552949DCED77FADE36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:2f:af:1d:ce:88:88:4a:4f:ef:4c:f4:d8:e8:
46:b4:28:b0:bc:60:48:9c:a2:d7:8c:4d:8f:4d:10:
9f:b3:43:75:f4:a2:2c:8c:2a:cb:3e:1d:4f:57:3b:
0f:60:40:28:cd:59:3e:12:ed:b1:6b:60:36:94:5a:
5e:c2:67:37:25:f9:2e:6f:91:2a:d3:e6:0f:f3:78:
52:7b:c0:7c:8d:2f:cd:15:24:1e:6c:81:95:c0:90:
c3:6e:87:85:20:17:99:9e:48:e3:f8:db:a0:e4:0d:
7c:1a:4d:84:73:9c:6a:9f:44:26:4b:8a:cd:68:aa:
0a:ec:97:c4:02:98:c3:3b:f2:74:45:86:a4:0f:a2:
17:7a:e4:29:a6:e0:4d:bd:0f:2c:76:bd:9a:43:be:
7f:2b:13:a4:1f:e1:e1:71:03:13:99:30:c2:eb:4e:
0e:df:62:4a:1a:ea:f7:d2:8f:94:07:83:6c:a4:6a:
88:f2:75:ea:82:47:ce:4d:d0:99:e4:47:c7:29:91:
7a:6e:88:cd:26:49:cb:0f:05:e6:9b:f6:23:8e:31:
b5:72:b0:af:6b:d6:68:88:dd:16:96:20:6b:fb:24:
87:cf:81:e4:db:8e:98:f8:9f:a6:f3:af:db:1b:b6:
fd:2f:92:dc:e3:e6:56:21:f7:71:cd:57:3f:b8:51:
b9:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:AD:77:B9:C4:3E:70:93:3B:8F:4C:55:29:49:DC:ED:77:FA:DE:36
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/Na13ucQ-cJM7j0xVKUnc7Xf63jY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.128.0.0/13
Signature Algorithm: sha256WithRSAEncryption
78:f0:af:2b:f9:4d:ce:b8:4f:91:28:17:be:fc:ff:f0:72:b9:
97:f5:67:53:52:06:3a:35:f7:fa:6c:43:61:b3:74:32:c2:64:
38:7e:17:94:8d:14:01:eb:2c:56:4a:e2:4a:65:fe:d1:ad:eb:
27:0e:c6:7d:03:8d:20:22:8e:23:ce:b2:45:3e:b5:5e:9c:ff:
4f:14:b6:c9:53:18:c4:81:6c:1e:a6:75:2a:db:f3:6b:ed:5c:
b7:39:1b:28:9b:fd:14:75:29:a0:20:cb:33:40:ab:f0:e1:0a:
e2:a8:b4:c0:73:4c:a1:55:17:b8:84:d9:db:77:e1:9a:63:ca:
da:25:b3:dc:5f:72:b1:0b:d5:1c:1c:96:90:fa:4f:d3:12:07:
77:58:52:01:5d:c7:c6:f0:c0:78:0f:7d:4a:88:4c:d7:cf:15:
b9:c2:f4:5d:e6:e0:16:ef:3a:b6:d0:c3:09:9b:35:fc:95:40:
c8:01:62:0c:87:de:95:ca:9e:50:b0:a4:7e:31:9b:bf:39:47:
b4:9a:38:39:3c:b8:6b:c3:f6:56:8e:14:d9:28:be:2b:b1:11:
e5:04:14:6c:80:4e:7c:2c:20:c3:df:da:8d:58:74:fa:33:57:
67:3f:3f:4f:ea:da:00:9e:26:b1:ad:41:e2:29:7f:a0:61:9c:
eb:a1:f0:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org