Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/UHz_DerSXt45vanNKStxdbtZLyI.roa
File: UHz_DerSXt45vanNKStxdbtZLyI.roa (raw, json)
Hash identifier: o1NlG8tqfEhzxef1UkMFaRoGSIctVEDtfFBcbqBkdwk=
Subject key identifier: 50:7C:FF:0D:EA:D2:5E:DE:39:BD:A9:CD:29:2B:71:75:BB:59:2F:22
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 07CA
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/UHz_DerSXt45vanNKStxdbtZLyI.roa
Signing time: Tue 29 Sep 2020 10:06:53 +0000
ROA not before: Tue 29 Sep 2020 10:06:53 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38847
IP address blocks: 140.120.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1994 (0x7ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 29 10:06:53 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=507CFF0DEAD25EDE39BDA9CD292B7175BB592F22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:68:28:81:13:a2:9c:75:2b:fb:8c:ac:f2:6b:
13:3c:b0:ef:7c:33:f0:47:47:69:74:65:e3:ba:b5:
3f:b4:4a:5c:1b:38:d8:99:cb:6b:ce:3c:e7:d8:af:
d1:f9:c9:03:97:0e:f9:0a:87:b4:0e:8b:78:95:86:
38:77:a1:66:1d:3c:08:58:9f:ca:c9:a9:e6:1a:be:
27:f0:d8:cd:7e:36:f2:56:c7:64:84:d9:c0:2d:f7:
e7:30:de:92:96:7a:9a:a4:0b:99:99:a2:45:30:0b:
cf:86:5e:80:3c:fb:0a:b9:cb:77:b3:75:83:ef:7f:
8e:be:7c:46:1b:73:bd:0b:5d:bc:15:db:2e:c8:6d:
f4:0e:7f:5a:b1:83:b0:55:96:ec:0b:63:bd:6a:df:
b9:cb:10:ce:24:10:ac:d3:c2:63:f7:be:80:f3:e1:
a6:ed:28:58:f5:4f:1b:d2:aa:a4:ca:71:68:a7:02:
e1:f4:07:b4:94:0e:00:9e:4d:e5:be:8e:68:3b:b1:
11:b8:26:a2:53:f4:bf:ec:e0:c3:17:c5:af:0e:0b:
89:b6:e6:7b:b1:1c:7f:02:d8:b8:0f:f1:74:2f:f3:
b0:0e:f7:02:1c:4e:8d:fd:eb:e7:ec:de:2b:ad:5e:
fc:47:8c:d2:61:47:3b:70:43:41:d5:da:2a:dd:82:
29:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:7C:FF:0D:EA:D2:5E:DE:39:BD:A9:CD:29:2B:71:75:BB:59:2F:22
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/UHz_DerSXt45vanNKStxdbtZLyI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.120.0.0/16
Signature Algorithm: sha256WithRSAEncryption
2b:03:3b:46:ad:5b:12:0b:c0:af:8d:92:e0:09:9d:c7:95:00:
ae:9a:eb:58:9c:a5:17:6d:19:1e:c3:c0:6f:7e:65:3b:b7:9b:
49:8f:64:65:c0:2c:fe:81:bc:7c:53:b9:f2:8b:4a:0f:27:15:
23:c5:09:e5:f8:df:8a:cc:ea:90:a7:f7:d8:ed:3e:02:81:cd:
d5:f5:d5:de:f9:7c:66:c6:14:6b:25:7b:79:7d:8b:dc:94:fd:
6a:04:96:ed:4e:4d:94:2b:c9:c7:b9:08:35:70:8d:2d:68:8d:
2f:b6:9e:2c:ed:d6:49:29:ac:63:6b:d3:b1:66:d2:25:8e:60:
7f:41:38:ab:60:51:8e:96:6e:ee:2c:11:1e:e4:49:de:98:28:
77:a3:f5:dc:39:f5:43:9c:5c:9e:6f:be:7a:9e:b7:08:cc:5d:
65:de:c9:18:fa:de:d7:7b:dc:ac:64:c6:ee:b1:37:93:76:f9:
78:34:53:6b:8f:62:c9:72:91:c7:49:b0:19:a6:1a:33:67:32:
fb:0a:6c:9e:cd:77:6c:2f:34:43:fb:d5:d3:85:72:a8:a7:4b:
f4:28:83:c6:41:82:1d:d0:56:fa:f5:f0:37:0e:f2:8b:27:db:
85:42:f0:24:dc:4e:a0:93:a2:bc:1e:0f:1f:1c:31:ce:6c:ce:
c7:88:a5:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org