Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/atjF40rGTjStpdtpaGvC7058JYs.roa
File: atjF40rGTjStpdtpaGvC7058JYs.roa (raw, json)
Hash identifier: 47uCpt6zp9j4ptcMCnC62gYD8kz0gGh66yep+MeXjco=
Subject key identifier: 6A:D8:C5:E3:4A:C6:4E:34:AD:A5:DB:69:68:6B:C2:EF:4E:7C:25:8B
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 08F3
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/atjF40rGTjStpdtpaGvC7058JYs.roa
Signing time: Wed 16 Dec 2020 08:57:26 +0000
ROA not before: Wed 16 Dec 2020 08:57:26 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9916
IP address blocks: 140.129.64.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2291 (0x8f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Dec 16 08:57:26 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=6AD8C5E34AC64E34ADA5DB69686BC2EF4E7C258B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:b1:7f:39:8c:1f:2a:e7:bf:a3:db:22:be:a6:
02:4f:c9:9d:d8:77:5d:63:e4:03:7c:0b:7c:8e:bc:
d8:0f:71:28:fb:4a:15:e7:dc:c7:f8:9d:03:7b:a2:
44:75:1e:4c:31:b8:33:38:67:1a:ca:8f:0a:19:0a:
4e:08:e0:87:d6:ba:7a:8c:6f:b5:3a:38:fb:3b:c0:
f8:2c:4e:9e:ca:01:07:de:f2:1f:3a:f2:89:59:02:
a4:e0:be:d4:91:4d:ea:94:b6:61:df:be:d9:ba:35:
1b:75:4e:16:5d:ea:8c:36:c9:d9:d3:53:f4:01:d6:
d7:8a:05:cd:ec:d8:12:ed:7d:11:ec:c0:16:81:a2:
02:d9:0d:ed:81:21:a1:80:ef:cf:d0:15:98:17:41:
2f:15:49:9a:80:8d:fc:99:13:86:b5:86:58:4e:50:
ae:38:96:ec:cc:ac:5b:d4:ca:d4:5a:bc:5d:25:f2:
ce:83:1b:91:46:9f:cd:f0:79:bf:00:61:19:f7:22:
aa:99:49:2b:4f:ac:84:20:15:8a:0e:2f:bb:8f:97:
26:8a:c5:8c:a1:a7:cd:e5:f3:d9:5b:85:ba:ef:63:
2d:f2:2a:85:29:3f:8c:34:4e:f9:0b:3e:73:80:ca:
53:75:4f:9b:23:02:47:10:3e:28:ba:17:d3:f7:60:
87:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:D8:C5:E3:4A:C6:4E:34:AD:A5:DB:69:68:6B:C2:EF:4E:7C:25:8B
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/atjF40rGTjStpdtpaGvC7058JYs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.129.64.0/20
Signature Algorithm: sha256WithRSAEncryption
2a:1f:1b:99:75:f5:fa:8d:52:68:ec:b5:68:56:f4:14:7a:99:
c2:f3:5e:07:e0:51:68:03:7b:8c:94:f7:a2:59:1c:78:41:ba:
6d:2b:b1:41:73:ae:8a:a1:d4:35:0d:fd:b7:72:34:bd:d0:b1:
ef:61:87:01:97:76:99:54:34:10:8b:d3:32:89:38:d5:6e:cc:
f0:43:1b:6c:50:45:a2:c7:35:eb:b4:f1:d5:c2:99:48:ee:e9:
03:f2:f0:19:60:28:97:a0:41:77:48:6a:c1:3c:9c:df:b6:cf:
38:ed:43:6d:ae:11:1b:6d:56:9a:ec:b4:c5:70:81:0b:25:40:
d7:40:6c:4f:a9:8e:5c:42:c5:4a:c5:d0:ab:2d:b1:c7:92:ec:
7a:43:57:10:2f:25:b5:16:c8:40:80:6e:d0:69:8e:f6:7e:8c:
f6:d3:06:fe:cb:e8:08:d1:41:ff:b4:aa:2c:2f:7f:24:bf:de:
de:a1:a3:7b:73:ca:33:47:43:d7:8c:7c:a6:b2:69:16:69:9c:
23:cc:8c:6b:f1:80:33:82:2f:49:11:c7:8c:19:f1:bf:b7:9f:
ca:bd:92:5a:ca:4f:cc:f8:98:fa:7b:28:e4:e5:08:5e:82:ca:
8a:c0:d1:83:fe:be:3c:23:e0:c4:7e:cb:c3:d4:ec:b6:4a:3f:
59:32:49:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org