Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/WouYaXMb_7sZ90lOst0axma77j4.roa
File: WouYaXMb_7sZ90lOst0axma77j4.roa (raw, json)
Hash identifier: Re4Fx4/DlsjGKAMFxUQ05wGoU9j/Pxqx6EAqBH+o+fY=
Subject key identifier: 5A:8B:98:69:73:1B:FF:BB:19:F7:49:4E:B2:DD:1A:C6:66:BB:EE:3E
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0A8F
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/WouYaXMb_7sZ90lOst0axma77j4.roa
Signing time: Wed 29 Sep 2021 02:41:22 +0000
ROA not before: Wed 29 Sep 2021 02:41:22 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 1659
IP address blocks: 140.128.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2703 (0xa8f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 29 02:41:22 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=5A8B9869731BFFBB19F7494EB2DD1AC666BBEE3E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:99:94:d5:ec:b3:3b:7f:56:60:ab:02:a6:00:
75:20:21:12:1a:09:f3:89:51:12:93:1d:e0:1b:72:
ae:43:a5:44:7a:db:3c:74:7f:95:05:66:2a:5f:e5:
84:3a:e3:28:44:94:04:83:a5:e4:91:6d:e6:9d:ad:
ab:76:46:5e:4e:43:51:f5:4c:a3:46:7a:66:da:5e:
39:38:c0:a6:95:1f:9e:10:a9:28:67:6c:79:1c:0a:
d7:b5:7a:74:1c:85:3e:a5:1e:9f:65:60:aa:54:6a:
48:0e:6c:e4:14:23:f5:02:b7:af:82:2e:8a:40:16:
23:99:be:91:f1:84:0c:2d:7b:d2:fb:f9:17:18:77:
84:90:be:4a:03:fd:30:cc:3a:18:90:12:cb:54:dc:
90:00:0d:d0:ed:14:c8:c3:2a:39:b6:be:96:6d:d9:
9b:43:10:c4:a2:18:a7:a3:2c:3e:1b:19:39:ce:a7:
da:67:9c:f3:fa:b8:8e:94:1d:aa:87:12:d7:a5:70:
46:d1:ca:d7:49:fd:ea:25:46:61:88:a0:7f:50:32:
d4:3b:11:fc:74:47:0e:97:49:c8:0b:62:ef:60:38:
14:05:61:eb:99:22:ef:97:e1:80:2a:3f:5f:a7:ac:
3c:35:d7:f9:64:b9:09:9a:8b:09:6e:87:1b:26:7c:
33:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:8B:98:69:73:1B:FF:BB:19:F7:49:4E:B2:DD:1A:C6:66:BB:EE:3E
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/WouYaXMb_7sZ90lOst0axma77j4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.128.0.0/16
Signature Algorithm: sha256WithRSAEncryption
88:53:ed:e6:82:3a:da:8d:22:86:55:c5:44:1e:6a:dc:16:82:
20:1f:00:2e:51:97:a0:65:73:c4:96:98:b2:3a:dd:31:ac:e3:
47:2c:f4:54:f9:33:51:63:91:96:da:0c:e7:e3:ce:d2:7c:65:
98:1f:9d:3d:76:32:51:17:f6:58:77:56:71:3e:4d:f2:9f:50:
50:47:da:4b:50:98:b5:6f:ff:c0:d9:12:8b:64:1c:d0:c0:15:
e1:e2:d6:a4:e9:3f:d7:e1:53:90:89:af:ca:cb:8d:03:2b:73:
4b:08:c0:27:2c:8a:90:8e:36:26:11:7b:09:e6:13:c4:b0:89:
66:17:4b:e1:b8:77:f1:ea:f6:19:2c:17:e3:f1:c6:60:a0:0c:
09:79:71:74:99:27:65:a8:6c:97:48:72:b9:76:21:84:d0:b2:
86:cf:fd:cc:aa:4d:3a:4b:27:86:20:65:e3:82:bd:3f:4a:86:
55:f9:51:02:ba:96:e7:b4:0d:4d:02:39:c4:a4:1d:da:87:c5:
3b:56:bb:e7:20:49:98:36:93:d8:4b:18:5d:cf:7b:6a:69:98:
ba:19:03:91:be:11:e3:8d:96:df:42:60:a7:7a:64:86:0f:15:
a7:60:9c:72:4f:69:ce:8a:e5:f6:95:f2:69:ed:d3:32:d2:f3:
fa:bf:65:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:56:34 2025 by rpki-client