Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/bz05QPoTlUsWkasolBEGzjWV87E.roa
File: bz05QPoTlUsWkasolBEGzjWV87E.roa (raw, json)
Hash identifier: 6kBVK16Xwu7i5PL/002m/3DJdhJcQtmZSP+3oVMMZXY=
Subject key identifier: 6F:3D:39:40:FA:13:95:4B:16:91:AB:28:94:11:06:CE:35:95:F3:B1
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0998
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/bz05QPoTlUsWkasolBEGzjWV87E.roa
Signing time: Sun 07 Feb 2021 12:39:06 +0000
ROA not before: Sun 07 Feb 2021 12:39:06 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 1659
IP address blocks: 140.138.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2456 (0x998)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Feb 7 12:39:06 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=6F3D3940FA13954B1691AB28941106CE3595F3B1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:38:4a:4c:c0:18:91:e6:3a:2a:23:65:69:b9:
d0:e2:4d:c5:00:ea:74:de:68:c4:43:6a:26:42:c5:
07:0d:78:29:97:6a:8c:32:7b:42:db:2e:0a:00:ca:
b8:f0:59:58:5f:e5:17:6e:4d:72:e9:13:d9:e2:02:
77:d6:e0:4d:a5:84:5f:42:ba:1b:1c:25:33:12:c4:
9a:9d:a7:08:3f:c1:03:ff:14:28:9b:fd:3d:70:55:
b0:69:7c:2b:0e:06:88:52:05:9f:ff:f8:ea:42:99:
1e:95:5b:38:c0:40:0f:e9:e8:b7:f3:83:4c:af:a6:
37:09:e1:08:d1:d6:f8:99:50:9a:9f:85:80:80:0d:
b6:30:a1:f9:8d:dc:a7:ce:6f:ce:16:16:d9:40:ba:
32:ba:58:6c:a7:8a:f2:e9:3e:a1:c0:94:b6:22:14:
a1:4f:74:d5:6e:01:f7:d2:a1:29:a3:c7:e6:97:3f:
6d:9a:b4:d1:f4:b3:0c:7e:43:bf:01:4a:33:9b:49:
d1:0b:ba:ec:28:3b:dd:ac:85:c8:2d:8d:cd:ab:ca:
e0:53:26:dd:9d:d4:c2:80:9f:bd:ba:c3:9e:3f:7b:
d1:48:d9:24:9a:a1:ae:58:ec:13:8b:d2:29:bf:9b:
f1:2b:7a:1f:65:d5:e5:d5:d2:f3:2b:ca:02:84:5f:
27:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:3D:39:40:FA:13:95:4B:16:91:AB:28:94:11:06:CE:35:95:F3:B1
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/bz05QPoTlUsWkasolBEGzjWV87E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.138.0.0/16
Signature Algorithm: sha256WithRSAEncryption
7c:c6:cd:71:5e:c3:a3:85:38:49:34:10:42:21:d3:4e:e6:44:
92:52:bb:16:20:d4:51:fd:aa:68:b4:72:30:14:21:40:a2:af:
d1:27:88:b9:91:3f:ef:93:6a:aa:7e:83:95:82:06:6d:5a:53:
5b:a9:0b:48:85:3e:78:95:b7:25:ea:ff:a3:33:1b:43:a6:f3:
31:6c:01:4f:f8:f5:5d:1f:f5:6e:a4:a0:9f:9a:b4:53:cd:47:
b2:41:70:1a:6f:b4:be:f1:3e:76:39:65:b2:bd:e8:af:64:16:
a9:db:fe:d6:7d:fa:5a:13:2c:7d:8a:29:80:ab:f7:5a:7b:d5:
62:77:6f:f4:f4:0d:03:ce:09:d7:d6:ec:27:d1:a5:de:ad:85:
6b:54:a9:ad:e2:07:a4:aa:e2:8c:51:f2:4a:1b:cc:b3:7d:25:
f5:eb:3a:37:0a:cf:91:da:9a:a4:c8:5a:14:b4:f6:4f:65:7a:
ef:e1:8d:05:08:3c:54:5e:8d:17:bf:68:23:4b:f7:01:c8:0f:
05:d4:6a:cc:f8:ba:26:7a:38:4e:fd:4d:59:74:ce:5f:c2:ff:
1a:80:06:03:84:e8:04:ab:92:51:8c:e3:5b:dc:f9:d4:3c:71:
e9:05:5d:e5:98:ef:b7:10:aa:fb:db:d0:0d:38:0f:b0:da:59:
84:59:12:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org