Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/nUVKhRC1xGIs4-uqy-Ku0FnKbds.roa
File: nUVKhRC1xGIs4-uqy-Ku0FnKbds.roa (raw, json)
Hash identifier: 1X6+L7WVZUWhZfwH4BJ5My+cqCfBxEhmqVK27tgn4CI=
Subject key identifier: 9D:45:4A:85:10:B5:C4:62:2C:E3:EB:AA:CB:E2:AE:D0:59:CA:6D:DB
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0996
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/nUVKhRC1xGIs4-uqy-Ku0FnKbds.roa
Signing time: Sun 07 Feb 2021 12:39:05 +0000
ROA not before: Sun 07 Feb 2021 12:39:05 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38845
IP address blocks: 140.136.202.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2454 (0x996)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Feb 7 12:39:05 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9D454A8510B5C4622CE3EBAACBE2AED059CA6DDB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:4c:42:70:2c:c6:64:c5:40:b3:88:20:be:e9:
60:a9:e7:a1:86:e9:d2:53:b2:92:02:1e:e9:e0:fc:
8a:9c:85:fb:50:69:6e:8b:d7:4b:2f:7a:4c:61:c5:
4e:60:bc:39:c8:3e:cb:dd:92:8c:da:ec:f5:b0:f1:
f3:17:b7:5a:44:ef:03:ad:ca:e2:e2:e8:66:8a:2b:
51:8f:ad:84:f9:91:bc:2b:e2:87:e7:5a:a0:5b:26:
8c:78:f0:c6:71:8e:0d:83:e9:d2:4f:e6:1a:f2:ab:
8b:8f:e4:22:47:e0:9f:ad:8b:d3:c4:b3:72:ce:28:
85:8f:c4:05:b3:45:b1:04:8e:c8:0f:d7:3e:1c:39:
5a:82:c0:23:9a:0c:98:04:29:9d:6c:6a:df:dc:f7:
38:22:92:da:74:2b:21:34:1b:ef:92:1e:06:75:29:
85:be:33:65:43:c0:34:c3:61:83:f2:14:0a:4f:de:
b7:3c:99:ee:8c:98:78:cf:18:f5:f8:5f:61:eb:dd:
eb:aa:7d:0b:16:de:ca:65:3a:29:85:53:8b:9d:73:
b1:86:bd:37:c1:ea:c9:83:0c:f6:1c:02:4e:73:89:
6a:ee:30:b0:d2:f9:88:6e:98:82:88:2c:03:d1:21:
b5:a7:2e:44:b1:cf:24:0a:c3:b2:ba:4f:4c:a8:71:
8f:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:45:4A:85:10:B5:C4:62:2C:E3:EB:AA:CB:E2:AE:D0:59:CA:6D:DB
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/nUVKhRC1xGIs4-uqy-Ku0FnKbds.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.136.202.0/24
Signature Algorithm: sha256WithRSAEncryption
13:38:c4:00:e8:9c:8a:b5:b5:f6:28:45:92:35:a0:d2:ae:2a:
3a:cd:e5:38:53:0f:4b:25:7b:35:c7:d2:81:59:c7:2a:ed:df:
b0:1e:83:2c:77:64:42:ed:01:bb:3a:22:0d:56:cb:88:05:03:
b5:b2:53:a9:02:1c:8b:8a:91:2a:64:43:0c:f6:df:6d:27:59:
f3:68:36:26:34:0c:c6:8a:a2:35:af:8a:0a:5d:26:11:ae:ae:
91:44:58:71:9f:eb:07:a4:de:2e:07:6e:50:88:fd:7a:98:d0:
4e:0a:9f:44:62:3b:d6:ca:2a:99:84:d0:49:b7:92:92:cd:e5:
74:64:58:eb:2a:8a:5c:e4:84:d8:a2:e8:16:9d:a4:bd:76:63:
8d:fd:2c:28:bd:c9:e8:b1:0c:29:05:4b:ab:8e:4c:a9:16:7d:
18:45:2a:82:e0:3f:a6:28:71:bf:96:b5:12:e9:7e:95:de:13:
3e:76:d2:64:7a:19:72:2f:3f:d8:e2:82:97:6d:2d:c7:72:77:
7a:6a:48:37:4b:4d:b2:e5:ef:79:d0:da:7f:ad:97:74:bf:b6:
fc:03:80:6b:2a:5a:73:53:17:b7:e9:80:b8:ce:17:70:7a:43:
71:04:e2:31:b6:eb:87:77:54:25:ea:a0:08:ce:cd:cf:dd:8e:
d8:e0:27:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org