Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/h_aaUMJGiyrkJSGkmXVMnKN2CQ4.roa
File: h_aaUMJGiyrkJSGkmXVMnKN2CQ4.roa (raw, json)
Hash identifier: npwVjMGpT+lfo4jroWxbMsqvPOMAa1RoK42k71gojKo=
Subject key identifier: 87:F6:9A:50:C2:46:8B:2A:E4:25:21:A4:99:75:4C:9C:A3:76:09:0E
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0B8A
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/h_aaUMJGiyrkJSGkmXVMnKN2CQ4.roa
Signing time: Thu 15 Sep 2022 02:41:14 +0000
ROA not before: Thu 15 Sep 2022 02:41:14 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17716
IP address blocks: 140.112.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2954 (0xb8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 15 02:41:14 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=87F69A50C2468B2AE42521A499754C9CA376090E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:17:ce:2b:d3:3a:83:b9:f2:1a:bf:ca:f3:11:
5f:39:73:02:80:07:ca:2b:83:66:66:31:34:56:a5:
5e:d9:2a:e2:5c:20:04:fa:ad:34:a4:00:fa:6b:0c:
98:ed:9e:9a:0d:eb:b1:7a:8c:ab:5c:11:10:da:89:
78:bc:55:96:71:15:5a:7d:8d:23:a1:d6:46:8a:96:
80:4e:0a:16:72:0b:e8:69:c3:21:c6:6d:ea:1e:97:
05:f2:52:50:55:24:66:0c:aa:6b:db:34:db:5b:05:
22:b5:af:dd:03:7a:4a:9e:ae:76:3e:de:5a:07:5f:
94:60:db:0f:9c:7c:fa:c5:be:01:b2:ea:27:cf:cc:
76:d6:88:c9:22:b8:41:01:f4:ad:0c:9c:4d:7c:8f:
06:9f:31:8b:06:34:8a:d4:3b:53:84:8e:6c:e5:4e:
40:ce:96:48:01:d7:73:6e:4e:82:80:30:33:e8:11:
8c:d2:a9:64:a0:38:aa:cb:44:9f:a9:38:14:eb:46:
a7:50:51:4a:19:03:34:ee:9d:26:79:63:fd:31:79:
dc:40:91:a8:7e:44:0e:a7:fe:3a:6e:b1:9c:40:1c:
88:10:d3:c6:61:aa:b8:42:4c:3b:aa:af:6c:db:e5:
dc:88:26:7c:a6:93:2b:b3:b8:f0:2d:9b:ff:80:14:
4b:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:F6:9A:50:C2:46:8B:2A:E4:25:21:A4:99:75:4C:9C:A3:76:09:0E
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/h_aaUMJGiyrkJSGkmXVMnKN2CQ4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.112.0.0/16
Signature Algorithm: sha256WithRSAEncryption
93:6a:61:c8:55:23:62:ae:12:a4:a7:87:06:85:9c:8c:d8:de:
4f:ab:62:b2:f7:b4:74:4a:50:10:e0:8a:0d:ec:eb:c0:34:06:
55:e6:e9:48:be:ef:e0:65:e1:82:2d:d9:4a:42:12:f9:22:80:
4d:25:fb:17:fd:9f:3d:5f:8b:bb:4f:6f:eb:e8:b7:51:36:71:
93:f6:28:d2:3c:c6:51:2c:49:c8:e2:4a:8e:d1:7f:33:25:6d:
d4:61:55:ee:8c:51:32:bf:f9:34:74:8d:7e:6a:e0:50:24:3d:
f3:e2:a2:a8:7d:0f:16:f0:6e:57:7a:59:e0:8d:f7:18:6f:c9:
65:a5:c5:f2:03:9f:c6:ca:61:c1:8e:40:d6:c9:80:d5:45:84:
03:d3:08:93:7f:93:52:e8:c5:1e:51:3d:00:18:d3:2b:63:63:
fe:9a:6f:2f:01:65:d2:d9:09:47:9e:38:68:4d:bb:bd:9a:05:
ff:b0:43:93:36:2f:12:61:4a:18:5e:ff:32:2d:ee:74:fc:9b:
c8:bf:24:51:14:13:a4:1d:aa:eb:28:c5:b7:99:fa:5d:5a:5c:
0b:33:6b:15:85:44:6a:59:4b:5e:e0:e7:fa:51:19:c3:e5:0e:
6c:a6:01:af:eb:f7:a6:66:7a:10:d5:59:1f:35:83:0f:14:9c:
33:3a:bb:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org