Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/l7BKi6UwAFAk2A1kx9ok7LVE-oI.roa
File: l7BKi6UwAFAk2A1kx9ok7LVE-oI.roa (raw, json)
Hash identifier: VP0nY4BcIHKayZaSp1R53deNZ4uq87l1rhFTc7gBgQ8=
Subject key identifier: 97:B0:4A:8B:A5:30:00:50:24:D8:0D:64:C7:DA:24:EC:B5:44:FA:82
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0A80
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/l7BKi6UwAFAk2A1kx9ok7LVE-oI.roa
Signing time: Wed 29 Sep 2021 02:41:18 +0000
ROA not before: Wed 29 Sep 2021 02:41:18 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 7539
IP address blocks: 140.110.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2688 (0xa80)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 29 02:41:18 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=97B04A8BA530005024D80D64C7DA24ECB544FA82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:b2:06:13:ca:7e:7e:2e:3b:70:de:d6:9f:f6:
40:7b:1b:3b:70:06:9d:64:72:be:a0:73:43:14:af:
14:13:87:d6:a0:c5:7b:ac:ca:5d:32:9d:72:3b:44:
d9:e1:15:29:f9:c5:96:30:07:7a:29:7e:f0:9e:73:
ab:fc:ed:91:ed:70:04:59:69:33:ac:0c:36:ac:45:
1d:af:43:26:f2:ac:85:fc:10:8a:d5:c9:61:ae:6a:
7f:fa:ea:70:91:1b:f8:7e:1e:05:b1:d1:27:05:29:
df:68:c6:43:a1:8d:48:fd:0f:ab:de:09:d7:7f:9e:
a6:0d:50:21:69:d0:5e:02:62:36:6b:76:14:1a:13:
7a:49:68:0a:e1:8f:1f:14:8d:c3:25:6d:cd:62:0c:
7f:49:dd:d1:e9:9d:06:4d:2e:ca:96:b5:51:f0:a0:
bc:e4:20:72:62:68:c5:53:37:6e:8f:cf:0c:41:91:
d1:09:93:f9:fb:b0:85:72:73:9b:3f:be:08:04:22:
5e:7b:02:cd:91:f9:e5:d3:00:cc:3f:17:3b:9c:a9:
ee:77:af:85:6f:5d:61:f7:99:8a:0e:42:cd:f8:1e:
57:70:fd:a5:6b:cf:3b:91:5d:3f:d8:82:89:4d:32:
72:cc:3c:a6:e1:c3:e1:4d:3d:f1:4b:e3:8e:e5:0e:
67:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:B0:4A:8B:A5:30:00:50:24:D8:0D:64:C7:DA:24:EC:B5:44:FA:82
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/l7BKi6UwAFAk2A1kx9ok7LVE-oI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.110.0.0/16
Signature Algorithm: sha256WithRSAEncryption
4e:df:ad:61:bd:87:69:69:52:8d:ab:a3:49:33:3d:25:2a:bd:
09:46:ba:4a:ee:4e:a3:9f:5c:75:98:c4:49:cb:cb:f4:81:21:
ee:fa:e1:33:08:2e:01:d0:8f:0e:cf:ed:e8:16:ec:eb:e0:7d:
17:34:21:ed:47:b6:50:7f:76:19:2d:8d:33:0c:30:af:0b:99:
5d:cb:4f:6f:03:02:c0:55:3f:cc:57:3e:2c:54:e4:44:c0:72:
29:85:22:5b:68:2b:eb:85:20:9a:d9:6c:37:3a:18:af:88:12:
5f:a5:a9:a9:90:04:0d:2c:9c:6f:14:80:d1:7f:ed:da:ec:b1:
ff:8b:75:b7:8b:9f:ee:1b:e2:c5:d7:11:b2:9e:da:8a:ce:a7:
d5:d3:7d:b8:c4:eb:84:fb:6d:d6:14:ac:6f:35:1a:f6:c2:a8:
1f:90:c3:34:73:51:2d:37:03:bd:cd:3f:e9:17:25:37:20:ef:
02:06:d0:65:70:ca:b0:dc:3d:8e:49:cd:d1:bf:43:2f:ec:94:
a0:7a:07:4a:9c:f9:e8:40:41:a2:5a:1e:15:05:82:ab:32:8c:
c3:79:e8:a2:58:a2:7d:81:a1:0d:5d:17:27:d3:76:9f:54:e0:
45:6e:cc:84:99:95:e1:43:76:2f:65:3a:ed:c8:68:b7:c2:e9:
8b:e6:76:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org