Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/XtfFm9IZOK-Xy6ir3iBSJhYmI3Q.roa
File: XtfFm9IZOK-Xy6ir3iBSJhYmI3Q.roa (raw, json)
Hash identifier: qlq3doak1sqaup0t7hzTbBFctDWm9xzCEVOimudAs/E=
Subject key identifier: 5E:D7:C5:9B:D2:19:38:AF:97:CB:A8:AB:DE:20:52:26:16:26:23:74
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0980
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/XtfFm9IZOK-Xy6ir3iBSJhYmI3Q.roa
Signing time: Sun 07 Feb 2021 12:38:46 +0000
ROA not before: Sun 07 Feb 2021 12:38:46 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17716
IP address blocks: 140.112.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2432 (0x980)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Feb 7 12:38:46 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5ED7C59BD21938AF97CBA8ABDE20522616262374
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:c0:c8:cb:0f:ae:f1:d4:dd:76:7e:64:da:e3:
9e:08:d1:29:4e:a1:a1:73:87:db:60:63:d5:cb:52:
eb:ae:2f:ed:6b:eb:ff:05:45:77:5f:94:94:90:00:
cb:38:99:26:19:99:0f:bd:ac:ef:ae:2d:e1:12:c6:
cf:ed:f9:ce:ad:ed:2a:70:7d:95:20:19:3c:c4:07:
4a:5d:e9:73:df:2b:f3:04:69:87:1f:2f:a2:20:da:
ab:8e:28:f9:ca:8c:41:f2:0f:d6:9d:e9:ac:12:63:
9d:9a:ab:73:2f:aa:f3:65:94:e3:79:46:1c:0f:d3:
09:4a:8b:e3:84:fe:fd:25:d8:ce:c5:ea:13:2d:c6:
da:40:56:d2:88:48:f8:10:d2:dd:06:9b:c7:4d:90:
5c:a5:09:d3:f9:08:fc:02:dd:73:51:b5:0b:91:db:
2b:62:c4:6c:e1:48:64:c3:e7:0a:fc:4f:b3:27:74:
8d:a6:e8:b4:9f:e9:86:00:c7:b1:8a:ec:aa:dc:f2:
b4:b9:12:2d:cd:6a:5a:99:07:97:0b:f7:7b:24:1c:
9c:20:09:90:2e:21:9c:2e:88:db:08:4a:f4:a6:3b:
8f:da:36:d0:3f:70:c3:e2:d5:9f:69:df:14:80:3d:
5f:f8:44:c2:b7:33:23:49:c0:79:62:7a:3a:a1:0e:
c2:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:D7:C5:9B:D2:19:38:AF:97:CB:A8:AB:DE:20:52:26:16:26:23:74
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/XtfFm9IZOK-Xy6ir3iBSJhYmI3Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.112.0.0/16
Signature Algorithm: sha256WithRSAEncryption
99:66:55:43:8c:70:ad:d8:28:bb:4c:b6:85:aa:0f:4c:d4:21:
30:eb:bc:10:83:67:b8:3b:a1:4c:7b:31:9d:a3:cd:0c:64:f9:
c6:37:7e:4b:bb:aa:b9:da:63:e8:d2:47:3a:f2:ec:b5:11:f0:
f3:97:5e:c4:28:48:30:ff:3e:1e:f0:85:4e:78:c0:ee:b5:6d:
01:91:f9:43:6c:6f:c2:db:91:05:8b:5a:14:ec:03:9c:a2:a0:
a6:25:2d:5f:a6:0a:91:82:d7:81:95:c1:52:41:02:b5:7b:75:
df:40:93:8d:a6:86:51:7e:8e:a3:60:88:5c:52:f8:4c:8d:27:
3d:ad:c4:01:9c:21:ea:ce:12:27:7d:78:27:4a:c5:a1:e5:6e:
52:b7:dc:91:df:a1:5b:6f:2c:f7:c8:da:b9:9d:94:41:f6:94:
7f:ee:ff:40:fe:b2:26:ac:e1:73:e1:65:2b:55:2b:93:61:b3:
9a:3e:60:c5:19:8a:81:54:dc:61:59:85:83:20:f3:f9:42:d9:
99:7a:3d:ae:5f:e3:31:c5:68:5b:5e:ec:d3:bc:bc:e0:e2:dc:
c3:45:3b:99:8a:fa:d0:2b:f1:30:ad:27:9d:1b:1e:57:49:54:
c9:93:ab:1b:85:f5:de:50:48:29:d3:b9:d5:33:db:89:bc:e4:
61:16:3b:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org