Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/_opwj7-T2CU_eaVgVgWknvbNE50.roa
File: _opwj7-T2CU_eaVgVgWknvbNE50.roa (raw, json)
Hash identifier: tSy4sKU9utYXKVGMwaN+9AyhMvZDgBmph2A6sqG1Y1s=
Subject key identifier: FE:8A:70:8F:BF:93:D8:25:3F:79:A5:60:56:05:A4:9E:F6:CD:13:9D
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 09C9
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/_opwj7-T2CU_eaVgVgWknvbNE50.roa
Signing time: Sun 07 Feb 2021 13:04:14 +0000
ROA not before: Sun 07 Feb 2021 13:04:14 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17713
IP address blocks: 140.117.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2505 (0x9c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Feb 7 13:04:14 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=FE8A708FBF93D8253F79A5605605A49EF6CD139D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:35:14:dc:b5:9c:c2:ba:6b:35:44:76:03:9c:
38:0f:a0:10:06:9d:7c:4e:a8:c4:49:d1:50:e8:da:
26:77:99:5c:f7:da:5e:58:d9:72:5b:ca:a8:0a:44:
96:90:44:86:04:3f:42:96:8f:f8:24:83:ce:15:5b:
ad:28:d7:0b:33:ec:7f:a2:09:5f:cf:b9:ae:a7:e9:
b1:b5:63:4a:a5:da:a3:a6:12:56:74:57:6b:76:79:
25:c3:d2:cf:54:ae:2c:de:c7:29:69:e6:91:9a:e9:
ae:19:f1:5f:8a:c0:e6:aa:bd:51:e3:fe:10:4d:ee:
7d:26:18:c3:71:06:30:6d:e1:16:62:e0:e2:ea:a5:
a2:f9:52:d6:da:f0:3a:a2:c6:f5:9c:e0:f0:1b:b0:
87:4c:29:45:73:34:c4:fb:31:b3:32:9e:91:d8:75:
77:34:d9:89:5d:0d:43:35:eb:33:39:26:04:ab:51:
07:7f:ab:5c:2a:60:b3:42:98:71:69:d2:75:36:2d:
b2:e0:2d:27:58:94:24:6b:8c:ba:a9:65:a3:7d:fe:
0e:fb:db:af:a3:00:88:9f:7a:a3:eb:48:64:c6:aa:
4f:89:c8:6a:40:40:6e:4c:2e:66:ec:a7:82:2a:74:
d5:74:7e:db:e5:67:95:e9:12:30:01:3a:ea:c4:10:
5f:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:8A:70:8F:BF:93:D8:25:3F:79:A5:60:56:05:A4:9E:F6:CD:13:9D
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/_opwj7-T2CU_eaVgVgWknvbNE50.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.117.0.0/16
Signature Algorithm: sha256WithRSAEncryption
8d:1f:62:02:a9:7a:46:4b:f2:d3:52:47:5e:74:cf:03:0e:4e:
d8:b8:ba:c3:36:74:ce:87:9d:b8:a9:52:6e:15:96:45:85:26:
28:49:2f:e9:b4:14:c9:87:db:21:80:bf:26:98:d8:39:43:fc:
d3:ea:ab:61:14:d3:11:5a:b2:b7:35:64:f2:df:06:d9:7b:9d:
a9:cb:8c:bd:e8:25:84:fb:47:b8:85:0e:ec:9b:3d:35:20:56:
2e:2b:af:69:64:34:b8:62:cc:49:22:7a:54:7e:99:0e:b9:8a:
48:0c:b0:41:0f:90:80:6b:03:72:75:6c:9d:4a:fe:6b:5f:4e:
04:ac:3d:95:55:5d:52:c7:9d:d8:ed:52:e4:a7:78:b0:bb:10:
47:f9:44:bb:c6:0a:82:31:ee:7c:d0:6e:3e:8b:fe:28:be:40:
65:b6:96:58:8e:c9:19:f0:18:51:1f:1c:c6:a8:b8:d2:00:c3:
98:25:1b:21:81:39:6e:bf:27:b0:cc:fd:da:74:7a:da:b6:2f:
cb:77:f4:77:50:8a:40:be:58:f7:4a:b4:b0:35:49:54:a8:2c:
ca:04:d4:f8:ab:aa:08:9f:2e:73:e3:d9:8c:89:b5:24:bb:69:
69:4e:9d:19:55:cb:34:b0:1d:ae:5a:7f:0a:6c:48:87:a4:01:
d2:ed:23:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org