Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/cZtJRFTxxwb_3y5iNSOM_C4ivGo.roa
File: cZtJRFTxxwb_3y5iNSOM_C4ivGo.roa (raw, json)
Hash identifier: Cjz6VVMQYvz3MNBG0iywlP2XaWbKsRuljMef35WVMjM=
Subject key identifier: 71:9B:49:44:54:F1:C7:06:FF:DF:2E:62:35:23:8C:FC:2E:22:BC:6A
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 07C1
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/cZtJRFTxxwb_3y5iNSOM_C4ivGo.roa
Signing time: Tue 29 Sep 2020 10:06:51 +0000
ROA not before: Tue 29 Sep 2020 10:06:51 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 1659
IP address blocks: 140.136.0.0/15 maxlen: 15
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1985 (0x7c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 29 10:06:51 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=719B494454F1C706FFDF2E6235238CFC2E22BC6A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:60:e3:ed:af:fc:17:e3:ae:cb:d7:f3:02:98:
7e:14:f0:bf:90:70:84:c3:20:14:82:80:3f:c8:5c:
77:0d:8b:a9:23:ad:67:e4:b1:34:67:8d:6e:0e:90:
e3:ae:7a:98:85:02:9c:b0:46:2d:4b:db:45:d9:d6:
8b:f2:7e:97:6e:7c:63:e9:27:df:d0:05:81:31:d9:
f8:91:f1:75:10:cf:ed:ea:61:5c:2f:34:25:72:62:
4c:2e:cb:44:22:9f:e8:16:6a:62:0b:96:9d:60:a9:
ad:cc:b7:89:c1:72:03:ce:24:90:a0:42:58:69:b1:
54:06:c6:f6:5b:b9:32:8e:83:f2:2d:ae:e4:3a:a1:
07:f9:60:c8:cc:84:c3:1a:e8:1f:9f:bb:cb:c1:be:
db:f1:fa:35:67:66:ca:bc:04:f3:7a:9f:07:2f:fe:
03:0a:66:92:e3:c3:1b:ef:31:a2:1c:f9:e9:1f:34:
d5:ca:a3:db:61:8a:11:2d:70:4f:cc:d5:38:67:86:
76:ec:6b:f4:81:58:4c:d2:71:37:d2:e6:8b:88:7d:
0e:b3:ac:19:14:86:1e:55:33:65:b8:08:0a:86:2a:
55:34:bd:76:b6:bf:29:d3:de:eb:8a:cb:31:3e:e1:
9f:61:7d:2a:90:06:09:22:34:dc:9c:72:9a:a0:15:
be:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:9B:49:44:54:F1:C7:06:FF:DF:2E:62:35:23:8C:FC:2E:22:BC:6A
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/cZtJRFTxxwb_3y5iNSOM_C4ivGo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.136.0.0/15
Signature Algorithm: sha256WithRSAEncryption
81:e4:fb:24:08:a7:24:31:34:78:5c:ff:10:b2:d5:89:d1:f0:
55:2d:ad:48:04:dd:df:2a:a8:c6:e6:64:f7:40:40:1d:ef:13:
80:65:92:f2:ad:26:43:b8:4b:2b:41:00:aa:47:fa:df:83:3a:
37:b8:4c:a3:e7:72:97:77:21:91:03:08:bc:79:03:83:20:d6:
51:9f:56:18:38:4b:fa:f3:9f:0a:54:07:70:7e:4e:64:99:7f:
63:16:15:4b:45:e1:f3:cd:73:ed:46:da:91:4a:02:64:86:7a:
3e:ea:c0:b3:4c:a5:40:34:93:7a:3b:9d:d1:8d:f7:c8:c4:56:
d5:ed:f0:2b:db:0d:b9:6a:ec:48:3f:26:45:3a:a1:1f:f4:57:
da:eb:5d:05:30:f9:23:ac:e8:12:60:db:08:c9:9d:be:8d:d6:
ac:ff:c8:3c:62:48:7e:b1:7c:38:10:89:9f:62:fe:1f:d9:9b:
42:88:6f:45:60:a1:fa:0d:75:ba:e1:b1:58:2f:f7:8a:fd:8b:
75:93:8a:1b:d1:b9:40:f4:2f:d6:f2:6b:b4:3e:f4:bf:bd:d7:
62:c2:0a:66:6b:c2:74:df:4b:43:69:8e:3d:8d:27:5d:69:de:
71:f3:25:bc:5b:f0:97:50:7c:6e:f6:36:7d:13:2f:78:0d:d6:
1b:ab:c1:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org