Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/NhtrB4Sf44GIgiuxJaV_tAju_zI.roa
File: NhtrB4Sf44GIgiuxJaV_tAju_zI.roa (raw, json)
Hash identifier: la65dagBowh1h6Qs4xz3SUjJXSKohgc/n6UWCC8zQJg=
Subject key identifier: 36:1B:6B:07:84:9F:E3:81:88:82:2B:B1:25:A5:7F:B4:08:EE:FF:32
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0B8A
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/NhtrB4Sf44GIgiuxJaV_tAju_zI.roa
Signing time: Thu 15 Sep 2022 02:41:23 +0000
ROA not before: Thu 15 Sep 2022 02:41:23 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38847
IP address blocks: 140.120.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2954 (0xb8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 15 02:41:23 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=361B6B07849FE38188822BB125A57FB408EEFF32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:9e:8c:73:07:a9:91:c6:3e:51:8a:dc:58:ec:
de:13:4c:5a:11:d7:d6:5b:7a:3d:a9:e9:f3:88:4a:
ee:c1:68:b4:ec:77:2b:75:eb:01:e7:45:f7:d7:fb:
98:c4:01:34:25:b4:3b:b8:36:29:00:5e:e9:f1:e2:
1e:6f:98:3f:d1:23:e0:dd:ed:eb:99:c0:2d:b1:56:
11:41:b3:f2:5e:18:ad:21:60:cd:60:9e:00:62:37:
af:1d:b4:4b:2d:98:e4:ce:86:99:dc:72:df:f6:66:
4a:3f:fc:01:1f:3a:c2:fe:e0:b0:14:02:ed:8d:9a:
4d:e0:8d:de:92:d3:41:2e:2b:e3:31:8b:d1:a7:20:
d7:ce:04:6b:9d:d1:91:35:d7:3b:c7:8c:c4:c2:20:
02:96:3a:f1:5f:d8:cb:19:a8:b5:0c:8e:66:8e:bd:
61:37:6f:c8:de:6d:9f:6e:29:53:82:1a:0c:ca:9f:
82:b5:91:b3:9c:b5:2a:67:74:ae:f4:5a:c3:60:9e:
54:4c:e5:d3:51:3a:0a:f7:df:08:61:f4:a0:73:ea:
23:53:15:5a:b4:d6:8b:5e:d2:46:56:ca:57:f4:d3:
bb:07:73:bd:f0:6d:56:bd:dd:68:85:8c:bd:d3:d2:
68:b0:8c:80:b3:66:c3:57:07:81:ac:87:8c:bd:7c:
f0:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:1B:6B:07:84:9F:E3:81:88:82:2B:B1:25:A5:7F:B4:08:EE:FF:32
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/NhtrB4Sf44GIgiuxJaV_tAju_zI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.120.0.0/16
Signature Algorithm: sha256WithRSAEncryption
56:1b:9f:07:46:f1:f9:3b:02:d9:8b:c3:71:64:e3:da:c8:05:
aa:f3:b8:e0:39:94:e0:c1:a3:34:5e:3c:24:2e:8c:24:05:8c:
f7:d9:7d:2b:ce:11:7f:9a:88:40:87:34:e9:23:18:70:0e:3f:
7e:a7:99:41:a0:e3:0d:61:e1:90:e3:e4:2e:86:a4:f0:ff:ec:
c8:f5:e0:02:d8:e8:b6:fe:57:55:c3:78:54:70:24:4d:72:d7:
2f:a2:26:b0:87:bd:8e:8f:d0:6e:8a:1a:dd:ff:02:f4:c7:b3:
f8:e0:44:f8:7f:52:1e:74:f0:ee:92:73:92:b0:71:ec:18:b3:
46:09:78:64:e1:10:b2:56:c7:2d:1d:6f:58:6e:e2:1a:97:c0:
f4:1f:89:2a:68:b9:cc:63:e5:51:de:83:9f:39:90:1b:0b:60:
63:f4:12:d7:8f:f8:6c:fe:9c:2c:07:cf:f6:3a:7e:1a:95:e3:
cf:a6:d3:db:e3:85:74:73:6b:97:40:c9:53:f4:84:a8:05:96:
86:3d:55:82:42:f6:7e:30:9c:50:c0:2e:98:ca:22:98:9b:cc:
07:82:b1:1c:6d:06:27:7a:a2:eb:83:ef:88:3b:44:34:64:6b:
77:90:14:ae:15:bc:de:04:1e:a5:b8:92:8f:a3:16:cd:be:26:
83:41:d7:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org