Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/dXdmQ7Dk8cAsZBUvhSfsN-9S25w.roa
File: dXdmQ7Dk8cAsZBUvhSfsN-9S25w.roa (raw, json)
Hash identifier: pbLe1Gp5iEb6ySHvUFgKXv+LjrjFh876d0dmojm+SKw=
Subject key identifier: 75:77:66:43:B0:E4:F1:C0:2C:64:15:2F:85:27:EC:37:EF:52:DB:9C
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 07C0
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/dXdmQ7Dk8cAsZBUvhSfsN-9S25w.roa
Signing time: Tue 29 Sep 2020 10:06:50 +0000
ROA not before: Tue 29 Sep 2020 10:06:50 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18420
IP address blocks: 140.115.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1984 (0x7c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 29 10:06:50 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=75776643B0E4F1C02C64152F8527EC37EF52DB9C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:6d:f0:ab:63:4d:02:9c:61:38:6b:b7:fb:37:
4c:fb:c1:c4:c2:7d:39:4a:07:4a:b7:df:ab:17:2b:
49:0a:47:68:8c:f8:91:37:78:b5:0f:10:86:9a:b5:
87:3b:d0:18:ef:c5:45:54:86:22:0c:3e:61:6f:ee:
38:85:a7:46:89:c3:d7:93:d8:2a:35:60:e9:d8:7b:
c7:62:15:8e:62:84:73:28:39:fe:c4:d1:2e:c0:1d:
79:08:99:73:6e:af:46:6c:67:d8:7b:5a:bd:28:9b:
33:9f:3d:0d:e8:67:6a:ee:ea:b6:2d:a4:94:dc:d3:
6a:38:1f:16:82:71:c5:55:77:f3:3e:42:5f:44:65:
d1:17:1e:ba:fd:f5:05:f2:5f:f8:79:3f:32:96:ac:
4f:64:fa:36:e4:63:ab:f7:c1:0e:d3:0b:06:0a:20:
2e:50:5f:f4:48:03:9a:bd:90:2a:b9:87:a7:9c:31:
90:2c:b3:0e:a3:ed:11:9a:29:ca:95:08:ed:76:20:
e1:2b:d8:de:06:aa:46:ae:86:87:f8:ea:7e:e3:b5:
4d:de:b4:fe:03:0c:d1:43:99:ac:12:d0:26:73:0b:
ea:33:40:ab:c6:4f:8e:12:73:09:b3:8e:cc:4f:5e:
7a:95:e4:b7:ac:ea:4b:0a:c9:87:83:0e:c5:3a:97:
f7:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:77:66:43:B0:E4:F1:C0:2C:64:15:2F:85:27:EC:37:EF:52:DB:9C
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/dXdmQ7Dk8cAsZBUvhSfsN-9S25w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.115.0.0/16
Signature Algorithm: sha256WithRSAEncryption
77:ba:fd:3c:44:57:46:23:7e:20:38:5b:ce:c7:5b:93:32:09:
18:13:f1:15:b6:ba:0d:53:0c:d9:bc:a8:65:89:08:6b:4d:9e:
d4:28:2f:2a:7c:5d:01:1d:c8:f6:f9:79:9c:25:d8:94:71:4d:
8c:43:4e:a0:df:ed:a8:81:78:34:0a:33:30:45:db:29:e5:f3:
83:d2:48:b6:3b:96:9d:f6:f5:8e:16:94:2d:2f:16:8e:46:34:
ff:23:46:c4:29:44:bf:ab:f2:8c:aa:46:6c:c8:8b:ae:e4:46:
15:dc:b0:69:f8:b7:1d:12:c4:b7:5e:8c:cd:9b:6a:7d:2e:af:
c3:16:4c:c3:6b:46:15:dc:44:44:cc:a2:36:fe:28:f4:f8:91:
b3:dd:6c:7d:2a:de:24:89:ce:5e:f9:46:34:e8:e0:49:18:f0:
cb:c7:8a:f0:07:a5:1e:38:82:44:b1:ce:e6:9c:a0:54:11:31:
cc:f0:06:17:4a:87:d7:40:c4:8e:14:e6:f1:21:c1:f6:c2:6c:
48:98:b8:a6:2e:9f:77:38:29:39:41:a5:cc:f1:23:99:f0:fb:
0d:da:28:ea:a7:6b:3c:ba:5c:d8:4e:7c:92:0b:dc:75:ba:a2:
04:8a:d4:cc:24:ec:3e:69:08:0b:a5:4c:ba:12:cc:c1:36:6d:
45:d3:fc:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org