Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/TFBSjlkBgDZ0JqaR-BsBIli09mY.roa
File: TFBSjlkBgDZ0JqaR-BsBIli09mY.roa (raw, json)
Hash identifier: sAgZ8syxtV5Zso+9/NgwfpzUe8iobFwayX1coDWP0t8=
Subject key identifier: 4C:50:52:8E:59:01:80:36:74:26:A6:91:F8:1B:01:22:58:B4:F6:66
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0984
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/TFBSjlkBgDZ0JqaR-BsBIli09mY.roa
Signing time: Sun 07 Feb 2021 12:38:49 +0000
ROA not before: Sun 07 Feb 2021 12:38:49 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18047
IP address blocks: 140.114.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2436 (0x984)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Feb 7 12:38:49 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=4C50528E590180367426A691F81B012258B4F666
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:eb:52:8f:95:70:2c:8f:99:98:97:a5:5d:d5:
df:6b:fe:d5:40:50:17:72:02:2a:e7:6a:c2:29:f8:
89:78:07:f1:09:ac:fe:99:8b:a1:04:84:28:f9:e3:
ef:f4:28:85:31:c0:95:83:00:e1:71:c6:20:7e:cb:
8e:31:89:e3:45:c3:4b:01:e7:8c:63:fc:5d:53:e3:
86:26:b8:00:4b:fd:ef:2f:ee:8c:6b:3e:32:cf:a1:
95:1c:d2:5e:d8:d7:c2:1f:41:0f:e1:bf:31:d2:cc:
a3:0a:0e:ed:c4:56:49:b1:7b:4b:42:a3:d8:a8:12:
7d:4d:68:19:64:58:d1:fb:fd:bb:f7:4c:03:c0:6a:
6d:13:4d:7d:9b:66:cd:1d:75:7b:9c:78:2f:7e:c5:
72:a8:a0:b9:ff:d0:04:b9:1f:64:10:ce:15:55:e9:
97:59:e8:c2:4a:90:37:57:11:61:6c:b5:6b:79:af:
b7:80:a6:8d:8a:90:e1:3b:55:04:25:7c:e2:be:a9:
ce:17:e4:09:e1:35:4c:3d:69:6e:22:9c:33:95:a5:
69:e5:2a:d6:c8:eb:00:8a:8f:b4:a5:b9:b3:d3:18:
aa:3d:f4:7a:31:f8:d7:26:50:31:62:21:74:e1:72:
20:af:1d:c3:e4:4c:d9:fc:a6:41:ee:cf:bd:4c:d7:
57:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:50:52:8E:59:01:80:36:74:26:A6:91:F8:1B:01:22:58:B4:F6:66
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/TFBSjlkBgDZ0JqaR-BsBIli09mY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.114.0.0/16
Signature Algorithm: sha256WithRSAEncryption
53:47:01:56:e8:af:b2:46:80:29:bb:40:6e:b3:99:d3:57:7c:
83:ca:db:62:f5:1c:0d:d8:e2:26:7d:cb:94:bc:28:41:73:f3:
87:47:f1:86:f0:99:08:fa:e7:55:19:2e:d4:a8:97:0f:ca:ad:
e2:3d:25:cc:2d:81:be:f5:f5:c3:10:e0:c3:24:e3:0c:0e:04:
e6:fb:e3:56:fd:68:6d:be:44:4c:4a:ab:5a:ed:fc:18:b3:ee:
23:18:03:93:d8:92:e3:25:34:c8:c7:f6:78:b1:c2:a3:f0:20:
8c:1d:66:3e:11:06:be:fa:4d:43:b5:8b:d9:c5:13:43:7d:cf:
57:4f:d7:cc:87:49:67:5b:82:4c:f0:c2:6f:c9:a1:73:fb:96:
5a:09:9c:64:79:80:01:0c:3c:a2:98:7b:22:2a:c2:ce:fa:c3:
6f:e5:06:3c:47:ee:9d:a4:57:5c:bc:17:29:ba:20:9d:60:f4:
ea:ce:d0:89:d2:28:3a:d9:89:39:b5:a9:50:a9:0f:45:6e:da:
4f:5e:01:56:61:f4:41:72:33:a1:76:ab:c8:8c:52:2c:9e:4d:
c3:45:0c:6b:7b:8a:91:e3:af:7b:a5:6e:4c:4f:11:8b:57:15:
df:05:20:f0:44:0c:5d:88:bd:25:04:e5:8b:8d:01:0e:e7:16:
b2:e6:56:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org