Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/m-ha_N01e3Ih_OfvEu6AmB11AYI.roa
File: m-ha_N01e3Ih_OfvEu6AmB11AYI.roa (raw, json)
Hash identifier: UgiYTqhWkI6qTjjS6I/UN3/9W5AYqRTDQYMg3i6xDa8=
Subject key identifier: 9B:E8:5A:FC:DD:35:7B:72:21:FC:E7:EF:12:EE:80:98:1D:75:01:82
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0A93
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/m-ha_N01e3Ih_OfvEu6AmB11AYI.roa
Signing time: Wed 29 Sep 2021 02:41:23 +0000
ROA not before: Wed 29 Sep 2021 02:41:23 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38845
IP address blocks: 140.136.164.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2707 (0xa93)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 29 02:41:23 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=9BE85AFCDD357B7221FCE7EF12EE80981D750182
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:0e:4d:ea:db:d0:13:a7:7a:ad:f4:37:6a:f2:
c9:45:eb:97:eb:e1:83:2f:44:22:dd:12:b9:26:a3:
b8:49:cc:f6:aa:dc:ee:61:1b:03:4a:7e:71:b3:2d:
c1:9b:6c:b5:fa:84:eb:cc:ff:c1:69:50:49:82:21:
ff:f4:17:8a:5b:12:59:40:9e:33:7f:92:6b:c4:df:
d0:3b:7b:32:f9:46:7e:2f:51:c5:11:76:c4:5f:7f:
93:98:c6:65:1b:0b:6a:32:01:b4:43:23:a2:84:37:
78:50:23:4f:9f:11:39:82:15:85:6c:f5:71:36:82:
5f:e3:6a:14:ce:84:11:03:59:e0:d1:89:a6:b5:64:
27:0b:cb:6e:7d:99:bd:8d:b9:f4:95:9b:b5:b6:01:
b1:7d:a7:f7:eb:b5:b1:00:bc:ed:42:d8:e7:dc:5a:
90:41:2b:33:85:c9:a3:1c:41:c4:97:e3:11:01:ee:
d2:d8:2c:44:b3:27:99:9e:15:b8:b9:31:a2:73:db:
c0:88:1c:ed:c5:36:1f:6c:15:d3:df:a6:f3:95:49:
31:12:f8:74:35:70:97:2c:8a:6c:02:25:4d:a1:17:
d7:fa:83:85:b5:27:6e:c9:6c:f9:f8:54:f4:86:2e:
ba:d1:62:1f:0c:f2:2a:c4:23:1e:79:e0:67:e0:67:
be:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:E8:5A:FC:DD:35:7B:72:21:FC:E7:EF:12:EE:80:98:1D:75:01:82
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/m-ha_N01e3Ih_OfvEu6AmB11AYI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.136.164.0/23
Signature Algorithm: sha256WithRSAEncryption
0b:fa:d8:69:35:dd:d1:6f:1a:c7:7a:1c:d6:e1:27:9f:18:16:
d5:e9:a4:00:55:99:cc:ea:37:56:a1:68:ed:b6:fe:7f:56:ca:
95:6d:6a:c9:74:1f:6d:bd:8b:45:45:8d:bd:4a:f1:0d:1e:f8:
b0:6b:53:61:5e:df:61:7f:ac:99:c9:d8:93:08:93:0d:ed:a6:
cd:46:c2:e1:30:bf:7c:af:75:90:7e:2d:35:03:5e:5f:0a:c1:
49:37:38:dc:9c:72:f4:5a:29:01:83:ee:be:5e:ad:e9:8c:0b:
56:42:8f:4d:89:f2:f9:15:34:cb:5d:ed:fd:e8:fd:2f:a0:cc:
1d:5e:f2:ea:20:1e:a9:12:2c:9c:4d:9b:10:12:47:2a:c3:05:
6a:a7:db:cf:87:f7:c0:f6:24:76:c8:f2:66:45:a3:ed:8b:15:
7d:51:0b:62:c8:70:86:3a:15:70:b1:f4:bd:a4:23:38:2b:70:
29:4c:c8:b8:da:b9:62:2a:b9:38:ce:32:7a:74:c0:2c:fe:63:
89:45:56:42:c8:2d:cf:e3:c5:68:c6:7d:01:28:f5:ec:8f:36:
02:81:d2:7d:63:76:62:3c:10:31:34:64:19:9d:0c:34:ce:71:
f5:81:82:a8:0f:b3:a6:95:e8:6f:d7:ce:61:2e:b5:f5:aa:52:
96:eb:a1:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org