Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/ORd7acwSJLhpaQrY1omCVjRWk9g.roa
File: ORd7acwSJLhpaQrY1omCVjRWk9g.roa (raw, json)
Hash identifier: JgR+OVD4RJoRk2uzHInSBS+0ok5/r5UD8PPuBeBlI74=
Subject key identifier: 39:17:7B:69:CC:12:24:B8:69:69:0A:D8:D6:89:82:56:34:56:93:D8
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 07B7
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/ORd7acwSJLhpaQrY1omCVjRWk9g.roa
Signing time: Tue 29 Sep 2020 10:06:47 +0000
ROA not before: Tue 29 Sep 2020 10:06:47 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 1659
IP address blocks: 140.128.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1975 (0x7b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 29 10:06:47 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=39177B69CC1224B869690AD8D6898256345693D8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:1f:77:cb:ae:74:d6:39:28:39:61:7f:68:3c:
df:7a:2d:a8:5b:18:49:ba:72:08:5f:9e:27:cf:ee:
bc:32:ad:64:82:d1:46:c7:c1:44:41:2d:7f:58:a2:
8a:38:94:1c:28:4e:4d:bd:7c:c4:39:44:2a:b8:07:
e7:88:40:6f:bd:fd:3e:4b:a7:6d:9f:b2:18:e3:0b:
98:ca:01:0f:28:b8:47:24:99:37:d0:7c:60:a1:bc:
29:c3:13:6a:28:1c:ea:23:7a:d2:b5:be:aa:5a:af:
a4:39:d7:7b:1d:dc:a0:f9:af:e2:2f:0e:05:37:15:
88:c0:55:c3:0a:7d:7c:37:c5:73:ee:9a:54:5d:c0:
f8:55:6f:6f:e3:9b:c0:df:3a:b2:22:8e:4a:ab:54:
a0:d5:3f:97:cf:28:2d:db:0f:d3:8f:3e:f9:02:f3:
83:d4:91:8f:5a:fe:2b:7d:e7:85:f5:32:90:d0:3a:
6b:56:30:5c:69:c8:61:a8:7e:74:c4:b6:2f:73:d1:
da:aa:bb:5c:7e:a1:09:58:6b:59:bd:68:d9:c2:9c:
5a:cf:81:79:b1:54:7f:18:21:ad:0c:a2:02:b9:04:
f0:c7:57:0e:65:b8:f0:fe:d2:d7:db:2d:c2:3d:dd:
45:1d:ee:4e:c7:07:04:f3:4c:f0:4c:b7:33:fa:ee:
86:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:17:7B:69:CC:12:24:B8:69:69:0A:D8:D6:89:82:56:34:56:93:D8
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/ORd7acwSJLhpaQrY1omCVjRWk9g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.128.0.0/16
Signature Algorithm: sha256WithRSAEncryption
92:42:af:3f:bb:08:c5:f6:89:88:77:48:13:96:58:33:67:d0:
a4:33:76:37:b8:ae:2d:5f:b8:a9:1b:a3:94:f4:82:e2:aa:75:
68:99:41:4d:8c:3c:e2:a9:82:83:8c:fb:60:11:1a:29:51:c1:
60:79:f7:7e:95:34:69:3d:58:a4:38:60:4e:65:9c:20:b5:2d:
c0:b5:fa:1e:67:94:d1:d2:79:02:aa:03:d1:38:6c:24:aa:7a:
90:4d:e4:bb:68:ed:9c:2f:82:e5:f6:09:88:23:a8:a6:67:6a:
fa:b3:d2:ba:6a:b3:fa:ff:9a:c2:ee:fe:3e:28:30:19:0d:f2:
fb:82:a2:8d:63:8d:dc:ad:24:74:ae:1c:3d:0f:69:b8:a2:ec:
8f:5d:76:62:56:20:20:1a:54:ec:7d:66:4f:2f:19:50:a4:3f:
fe:f2:1d:96:50:75:a9:85:18:3a:b0:55:3c:20:76:7f:27:26:
d5:20:d3:40:12:77:f8:f3:ef:d1:9c:68:83:43:22:a8:fb:dd:
f5:f5:62:9e:43:1b:5c:75:7e:a9:32:cd:fd:f0:ae:37:6c:88:
b7:63:19:9e:a9:34:f8:68:2a:95:66:04:fb:71:33:f3:b3:19:
75:79:b4:cb:02:fb:a9:1b:50:cd:21:45:d9:d8:5a:11:a2:1d:
38:73:54:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org