Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/ZtsOAc65pWV-yw7ApZCXn3eswkc.roa
File: ZtsOAc65pWV-yw7ApZCXn3eswkc.roa (raw, json)
Hash identifier: APtUcuOGQ/nfs27vG3KQQqFcu55RdBxUCxj9TMWviVs=
Subject key identifier: 66:DB:0E:01:CE:B9:A5:65:7E:CB:0E:C0:A5:90:97:9F:77:AC:C2:47
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0A9A
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/ZtsOAc65pWV-yw7ApZCXn3eswkc.roa
Signing time: Wed 29 Sep 2021 02:41:25 +0000
ROA not before: Wed 29 Sep 2021 02:41:25 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18047
IP address blocks: 140.114.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2714 (0xa9a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 29 02:41:25 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=66DB0E01CEB9A5657ECB0EC0A590979F77ACC247
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ec:f2:07:0f:6b:e9:f4:ba:8a:3d:f6:ac:79:
7c:ae:46:58:e0:a7:92:47:7e:b2:4a:bf:40:89:fd:
bb:a4:cc:73:20:50:06:ab:0f:96:bf:13:25:d5:8a:
6f:7e:3f:12:a4:bd:04:88:c9:ad:3e:25:7b:b7:d3:
49:c4:a6:7e:f2:50:fb:a5:e9:55:99:7f:60:99:0c:
00:82:8f:0a:5e:59:a5:d7:70:8a:51:e5:0e:66:8f:
cf:2c:a5:1b:78:1b:d0:f1:78:ce:5e:7c:ec:91:be:
c8:bb:0c:95:de:35:22:02:a9:9d:14:7e:00:8b:12:
f2:8f:2e:aa:ef:9c:b9:55:ab:23:0a:53:a1:df:aa:
cb:aa:a9:a0:98:1c:18:09:e4:34:94:48:43:59:2c:
ea:16:b7:f0:3c:f5:b7:90:71:7b:7c:ef:c8:0d:6f:
4a:60:73:29:5b:e2:c1:c0:44:6a:82:aa:71:63:c7:
95:f2:e1:f5:d9:8f:13:e5:c2:f1:7c:e7:36:79:75:
e9:28:ec:87:19:dd:bc:55:b8:ca:ba:c2:16:c1:a0:
cd:47:aa:e2:ef:6b:d5:e0:a9:f1:e2:df:fd:b6:26:
6c:00:e2:92:c6:26:9f:5e:1a:b4:4b:c0:78:50:58:
59:06:70:a1:a7:ed:9e:a4:e8:79:74:65:ab:29:a8:
68:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:DB:0E:01:CE:B9:A5:65:7E:CB:0E:C0:A5:90:97:9F:77:AC:C2:47
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/ZtsOAc65pWV-yw7ApZCXn3eswkc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.114.0.0/16
Signature Algorithm: sha256WithRSAEncryption
95:77:00:0f:23:2d:a4:cc:8d:68:ae:9f:ac:bb:24:dc:96:6b:
70:bd:86:91:87:6d:e5:51:54:0d:63:0c:6b:84:7d:ca:89:ba:
1b:a2:cd:83:b2:5d:35:e8:4d:db:63:92:c0:5f:9e:fe:b0:8d:
46:aa:c0:c5:06:ff:c0:42:a3:91:8d:d0:67:0d:ab:ba:7e:72:
7c:42:d1:ed:11:71:57:d9:1c:b9:78:6b:8e:51:b4:3b:be:6d:
ad:a6:24:99:cc:0c:fd:a3:7f:86:af:ec:7c:5f:67:8d:3d:d6:
1c:cb:d8:42:fa:94:b5:4d:a8:4d:da:c2:0c:79:0d:22:f8:6c:
69:70:31:cf:e6:11:3c:69:b2:6c:6a:0f:a7:ba:56:92:21:f4:
be:de:de:1f:f8:07:fc:b1:cc:c7:de:de:97:b7:17:62:7a:36:
f8:75:0d:0d:a1:73:13:73:48:03:2b:9b:2d:c6:8d:72:cf:31:
86:79:17:ff:e2:b4:d2:2f:fb:b4:80:89:b6:65:e6:4d:63:0a:
b2:2e:4b:93:ea:6a:71:07:25:15:1f:e3:a8:c2:cc:20:8e:09:
09:f2:83:73:b4:3c:3e:66:30:0a:71:c6:2b:1f:36:aa:84:6f:
89:e7:d0:aa:0f:f0:8e:c4:0b:eb:e2:bd:80:b1:05:b6:75:56:
32:06:67:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org