Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/a9r7rrhR2qLMgpGm5VuLdF3E-K8.roa
File: a9r7rrhR2qLMgpGm5VuLdF3E-K8.roa (raw, json)
Hash identifier: KAox85fidY8PB3jom+lqryxsAiZqUxK88JAiWDQrJR0=
Subject key identifier: 6B:DA:FB:AE:B8:51:DA:A2:CC:82:91:A6:E5:5B:8B:74:5D:C4:F8:AF
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0B8A
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/a9r7rrhR2qLMgpGm5VuLdF3E-K8.roa
Signing time: Thu 15 Sep 2022 02:41:15 +0000
ROA not before: Thu 15 Sep 2022 02:41:15 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17713
IP address blocks: 140.117.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2954 (0xb8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 15 02:41:15 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=6BDAFBAEB851DAA2CC8291A6E55B8B745DC4F8AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:96:55:18:cd:f9:f5:c9:c0:fe:b8:58:6d:4f:
92:82:8e:4c:5c:8f:ac:4c:19:42:d0:87:54:bf:de:
24:9c:a8:1c:92:7a:b2:8d:61:de:ed:17:13:2c:b5:
75:58:66:94:40:5c:62:aa:e0:2f:8a:3d:8d:5a:04:
c1:3b:61:b2:d3:85:45:35:48:e7:88:c4:fc:a0:06:
b9:3e:c7:d5:7d:49:bc:a4:87:d8:28:67:a7:9e:9b:
dd:40:64:41:96:f9:f9:38:0c:e4:a3:cb:18:d9:1c:
69:28:ee:e8:57:42:67:97:1f:f7:ca:29:ba:7f:0d:
38:a6:74:02:4b:d8:eb:3b:9d:b3:44:5f:d1:87:ed:
b3:26:55:be:8c:c6:32:e5:b9:b4:3d:42:89:50:cb:
39:c2:24:e2:73:e9:0e:dc:75:cb:b9:c1:bd:a5:da:
4d:0b:00:bc:7f:ac:45:38:be:c6:d5:15:7b:aa:e1:
eb:9f:11:ee:f9:e6:99:39:2f:46:bf:7f:90:59:8a:
db:37:02:da:4a:9c:81:c2:e2:ce:ba:35:29:f1:1c:
38:dc:ac:20:af:15:23:2d:9a:a4:a3:17:5d:d1:f6:
79:c2:36:5c:c5:f5:90:0a:af:26:6d:7c:de:e2:17:
68:67:96:9d:9d:44:b9:b1:2f:e5:b0:36:04:e7:7a:
01:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:DA:FB:AE:B8:51:DA:A2:CC:82:91:A6:E5:5B:8B:74:5D:C4:F8:AF
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/a9r7rrhR2qLMgpGm5VuLdF3E-K8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.117.0.0/16
Signature Algorithm: sha256WithRSAEncryption
87:9a:b3:31:5b:39:a5:ed:35:14:73:d3:5f:8c:e1:d1:af:64:
fc:7a:2f:79:1e:42:64:b8:6f:76:8f:d3:a7:56:1b:7d:cd:65:
fa:15:dd:69:36:d0:2c:9a:f3:41:c0:ea:df:56:bc:95:7f:63:
37:a2:1f:0c:dc:a9:eb:6d:35:ad:fa:5d:4f:a7:c7:eb:d0:8b:
85:e0:26:d4:96:9f:72:15:21:2e:4d:a0:b7:8e:28:9f:fc:99:
98:b0:99:ef:22:33:fa:ed:57:16:49:31:e1:68:e9:0e:e1:b7:
a1:bd:ab:a4:b5:17:39:da:ff:7d:7e:73:4d:8f:10:e5:c7:45:
2a:54:b5:e6:95:a6:49:f0:57:89:ce:39:d2:0a:ba:28:58:a4:
45:0a:24:14:4f:b3:0d:ed:35:7f:87:90:99:a8:ff:41:26:e4:
a6:c7:5b:72:9c:df:1d:ed:5a:2b:5a:83:f2:93:ae:5f:fb:e1:
7e:6c:dd:07:60:3b:8a:33:36:93:52:96:25:e8:a3:fd:a6:2d:
1d:9d:e7:43:d7:cd:99:0b:68:ae:5c:65:b2:ba:b7:ed:97:20:
91:bb:70:a7:6a:2f:cc:04:fe:3f:ce:07:1f:61:0e:3a:e6:36:
99:b8:c0:63:e7:f4:f8:8f:51:e3:96:f9:ef:2a:17:8c:f9:0f:
08:54:83:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org