Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/nJqVhRpDUyoSTRA59eGpu4_iWJU.roa
File: nJqVhRpDUyoSTRA59eGpu4_iWJU.roa (raw, json)
Hash identifier: sytWqbKWjnWEn+YHKMfmxaPSBvWQTohDxlTe1nvgCmM=
Subject key identifier: 9C:9A:95:85:1A:43:53:2A:12:4D:10:39:F5:E1:A9:BB:8F:E2:58:95
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0A7F
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/nJqVhRpDUyoSTRA59eGpu4_iWJU.roa
Signing time: Wed 29 Sep 2021 02:41:18 +0000
ROA not before: Wed 29 Sep 2021 02:41:18 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38845
IP address blocks: 140.136.0.0/16 maxlen: 18
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2687 (0xa7f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 29 02:41:18 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=9C9A95851A43532A124D1039F5E1A9BB8FE25895
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:66:d5:b1:03:c5:be:5f:ba:60:db:52:97:60:
d9:bd:88:a3:2b:03:9b:4c:92:2b:a9:a4:22:14:29:
b4:f5:55:ea:67:63:bc:05:49:16:51:9e:99:23:48:
c7:4d:f5:a5:d9:52:70:9d:21:04:72:57:7a:17:91:
fd:f4:64:6b:40:f0:62:e8:a0:7f:08:a8:cf:c3:c2:
b4:2f:f6:30:39:b4:b0:98:80:b6:63:ca:a2:1b:32:
a5:88:2d:24:3c:5d:10:fa:e2:4d:a6:ba:97:a6:46:
98:99:f0:0e:cb:01:ec:19:26:a4:c8:b4:c7:56:cf:
8d:5d:a1:67:2e:9f:59:a8:73:eb:b3:07:a4:9a:64:
f0:e4:39:7e:07:57:d1:a8:26:80:d5:7e:ab:55:b0:
a1:56:b2:0e:5a:f0:07:66:9b:22:cc:6e:7f:5d:37:
75:22:f6:7a:7b:4d:39:e6:92:ae:1e:75:ec:6c:be:
6e:de:ec:0c:6d:8b:1e:4c:e8:1e:52:ad:9c:26:96:
70:89:16:01:1f:7f:6d:bb:1e:2f:03:13:ec:8b:00:
9f:59:50:e5:e4:90:0c:6f:da:6a:41:b3:2c:aa:96:
64:86:db:a4:c6:63:43:54:3c:28:13:9e:6d:78:4f:
17:0c:fc:01:56:75:6e:8d:1a:a9:b4:ce:67:8d:5b:
bd:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:9A:95:85:1A:43:53:2A:12:4D:10:39:F5:E1:A9:BB:8F:E2:58:95
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/nJqVhRpDUyoSTRA59eGpu4_iWJU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.136.0.0/16
Signature Algorithm: sha256WithRSAEncryption
7c:91:cb:1f:ae:d7:9b:f7:04:b2:17:5c:ae:0e:3e:41:cb:f1:
a3:04:b1:d7:74:0a:bd:82:e4:2f:02:5e:98:43:75:f6:8d:93:
71:f4:b9:76:5d:72:fe:df:c9:3f:97:ff:c2:af:d4:4a:41:2d:
c2:a5:df:39:22:67:37:46:c3:46:bd:89:fe:a6:a1:69:62:d7:
a4:33:bf:ea:55:22:ca:f5:7d:8f:54:0d:ec:42:0b:6e:c5:aa:
a3:53:ce:6c:05:a8:42:ba:af:5b:55:ce:7a:f8:83:e0:98:9e:
08:8d:6a:d9:51:f9:e8:95:4e:8a:c4:c8:de:91:ea:ff:f5:c1:
f2:05:65:33:0c:40:80:5c:f9:a3:0d:81:61:9f:a9:ef:e8:b0:
13:65:98:ba:6f:b0:63:ea:b5:96:a7:68:9c:5a:5f:91:3f:bd:
96:b9:7e:82:3c:84:4e:19:41:97:69:6e:a3:0a:a3:d8:85:c8:
f9:b6:8b:e1:18:58:00:9b:b8:0b:2e:91:45:0e:7c:60:d8:c1:
5f:31:b1:a2:83:53:5a:95:4a:ce:c5:12:16:73:4c:26:9b:68:
a8:a7:db:1d:5c:60:c6:cd:54:11:53:03:12:ab:8a:ac:13:93:
01:3e:41:01:a6:42:68:18:61:d9:e3:f5:00:c4:0b:b3:71:c0:
ff:e8:ca:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org