Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/jo7I0i-q-9HymYYoQMB9rysD9cc.roa
File: jo7I0i-q-9HymYYoQMB9rysD9cc.roa (raw, json)
Hash identifier: c0vVNMhv31pnKMp53bFRITMZHfsR2Egr8Miz1NtxrVc=
Subject key identifier: 8E:8E:C8:D2:2F:AA:FB:D1:F2:99:86:28:40:C0:7D:AF:2B:03:F5:C7
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0988
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/jo7I0i-q-9HymYYoQMB9rysD9cc.roa
Signing time: Sun 07 Feb 2021 12:38:52 +0000
ROA not before: Sun 07 Feb 2021 12:38:52 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38847
IP address blocks: 140.120.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2440 (0x988)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Feb 7 12:38:52 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8E8EC8D22FAAFBD1F299862840C07DAF2B03F5C7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:93:1e:f1:b3:36:81:45:ac:f6:a3:19:2b:39:
a7:0b:45:2b:cf:52:86:df:58:ad:8c:5f:a0:0f:ab:
1d:7a:bb:67:b7:05:45:c7:aa:97:88:e2:8a:89:7b:
54:4b:98:e8:c3:7e:b6:7b:5b:6b:54:da:8e:bb:4c:
e2:1d:c7:8a:51:48:84:67:b9:74:1d:1c:9b:57:f7:
eb:57:73:82:8c:1d:16:62:a3:4c:8f:ac:57:4a:9c:
4d:56:52:0d:57:03:0b:34:1f:a4:74:b3:72:90:22:
cb:f5:87:de:3a:b1:98:c2:23:a3:32:a3:56:31:ee:
1f:20:d4:04:56:07:ed:6f:07:46:b1:9e:68:ed:a1:
6b:a1:4f:81:7d:84:85:55:f6:af:99:d1:af:1f:d3:
05:77:a9:33:4c:eb:ae:dd:e9:81:18:ba:99:f7:b9:
af:4e:10:1d:6f:05:4c:71:67:37:a5:0c:7d:7b:d3:
2b:bc:a4:72:73:5c:6f:97:f6:bc:6c:b0:0c:e8:90:
a2:1c:9b:00:f4:f7:89:4e:2e:a4:aa:36:0d:42:e4:
28:12:a2:c5:a0:ca:01:93:63:1e:ce:96:05:8a:7e:
38:1e:fe:a7:0c:a0:d7:2e:ce:28:a4:f8:bf:99:a3:
e5:01:f6:4a:d2:8c:a3:65:86:e5:20:51:67:51:2f:
bd:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:8E:C8:D2:2F:AA:FB:D1:F2:99:86:28:40:C0:7D:AF:2B:03:F5:C7
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/jo7I0i-q-9HymYYoQMB9rysD9cc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.120.0.0/16
Signature Algorithm: sha256WithRSAEncryption
7c:b7:a1:14:da:44:73:4b:85:17:45:1f:43:1b:22:24:72:f3:
d9:42:51:32:76:63:22:b7:3e:b4:0d:88:6e:98:6b:34:1b:07:
e0:7f:b8:8d:f5:3a:75:4e:2c:82:1c:cd:33:c1:f1:de:5d:66:
b1:85:f3:88:58:00:a1:de:4c:c4:76:03:fa:ab:8a:fb:13:2f:
fc:84:7c:d5:61:0c:53:9d:11:f3:56:1a:fa:53:1c:1b:aa:09:
40:77:c3:cf:eb:f3:f4:12:5c:e1:0f:7b:24:58:a6:2b:a6:94:
b9:71:06:d8:9f:30:9a:a7:36:b6:8b:3f:3f:b0:ec:eb:b4:60:
b4:e1:3e:25:65:25:16:f8:4f:88:f1:e7:fe:2c:1d:2b:d1:7a:
0e:84:d5:f5:22:06:43:fa:ba:d8:56:a4:04:58:eb:a7:b6:cf:
fb:47:be:d8:21:fb:48:cd:2d:83:b5:6e:9b:85:6f:23:30:41:
70:12:16:b8:77:aa:b7:83:13:65:c5:6f:a3:c9:2e:3a:a4:36:
a1:8f:81:fb:eb:82:43:c5:38:d2:22:ec:a2:f5:6c:47:c6:c5:
ae:43:2b:8e:d1:86:6e:59:c6:30:7d:c0:2c:f4:4b:d6:08:4d:
20:d2:85:37:ce:9f:36:67:c1:c9:7d:85:46:9f:f7:b5:ff:61:
d8:6b:e5:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org