Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/oLm9VMD2B_VHgD8_uPDMQJMZro8.roa
File: oLm9VMD2B_VHgD8_uPDMQJMZro8.roa (raw, json)
Hash identifier: rdRzbuiVAaIxgTEG4KaWeu8rWzauyBkaLAgcGTu3/Wk=
Subject key identifier: A0:B9:BD:54:C0:F6:07:F5:47:80:3F:3F:B8:F0:CC:40:93:19:AE:8F
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 07C2
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/oLm9VMD2B_VHgD8_uPDMQJMZro8.roa
Signing time: Tue 29 Sep 2020 10:06:51 +0000
ROA not before: Tue 29 Sep 2020 10:06:51 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38845
IP address blocks: 140.136.202.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1986 (0x7c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 29 10:06:51 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A0B9BD54C0F607F547803F3FB8F0CC409319AE8F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:f4:85:4d:12:e3:5c:77:6e:8b:e3:1e:9f:7f:
13:98:f9:2d:fd:01:4f:ae:e2:bd:15:1c:42:a3:0b:
c9:3a:5d:52:a4:e0:7b:e3:b7:b4:76:3e:46:b2:3c:
56:27:c4:61:b4:f0:3d:ae:8e:06:01:39:79:71:09:
bf:cc:10:03:d8:5d:f7:65:65:a4:9d:5e:14:b2:09:
c2:76:98:38:b7:45:c5:e6:1b:0f:5e:58:a0:39:02:
02:c4:a6:f4:d2:35:61:06:97:62:cb:34:f0:9d:67:
9c:79:91:24:95:26:46:47:ec:a2:72:ee:4f:ae:c3:
14:d4:85:d8:32:6d:cd:56:08:5d:82:06:0d:b5:2b:
ea:28:27:e3:be:84:0e:1f:de:09:d6:4b:c1:fb:f1:
19:82:93:62:44:a8:f9:1a:08:dd:45:38:5c:0e:27:
6e:7b:00:e2:c1:76:2c:bf:0d:da:6b:a2:75:8f:5a:
4a:61:66:bd:ae:8a:05:e1:2b:7a:75:4a:1d:19:28:
05:51:75:ca:47:ee:4d:9e:0d:2e:13:bb:2c:fd:7d:
5f:24:c2:4b:e8:1e:b6:20:10:bc:a0:74:0b:9e:3d:
c4:05:b4:26:fa:14:b7:87:87:a0:63:c5:29:2b:38:
b3:f5:8d:a8:4f:67:7f:5d:b2:3a:1b:6e:22:c0:78:
9a:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:B9:BD:54:C0:F6:07:F5:47:80:3F:3F:B8:F0:CC:40:93:19:AE:8F
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/oLm9VMD2B_VHgD8_uPDMQJMZro8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.136.202.0/24
Signature Algorithm: sha256WithRSAEncryption
97:a1:29:21:2a:25:08:35:f0:f6:fe:db:a5:49:3e:d1:72:0d:
11:aa:ca:26:d8:c8:6b:f4:d4:0f:ca:ee:62:e4:19:94:84:1d:
d5:e4:b0:80:34:74:d1:6a:72:69:1c:92:d5:1f:6a:75:7a:1a:
e5:58:b7:60:f3:c1:11:68:b0:44:99:b7:16:4e:ee:d5:8f:a3:
d7:bf:6c:b1:80:29:9b:b8:14:e4:fe:60:c2:4a:db:76:5d:a7:
01:01:e5:dc:99:2f:9f:b1:07:bd:32:ad:2e:53:f0:70:87:99:
c1:31:63:0a:7c:bc:25:45:03:d2:3c:61:dc:6a:38:8b:7f:cc:
77:39:17:a7:ff:c6:47:52:12:a0:b9:d1:0b:6f:89:f6:25:46:
68:fb:fd:1c:68:7a:b8:a9:1e:97:3d:b4:5c:eb:8b:d7:71:46:
a7:4d:00:6e:df:f9:7b:7c:70:81:1f:aa:bc:f5:cc:b4:d0:4d:
33:4f:ba:58:ae:9e:ec:a5:14:76:7e:88:4c:c2:be:a0:e9:92:
85:76:80:ce:1f:78:fb:13:b2:e9:5e:df:ee:fc:e7:23:09:fc:
f9:98:82:26:60:bb:be:df:28:b6:fa:aa:f0:8f:e5:d4:02:bd:
08:43:6e:e0:00:44:4b:86:0a:96:cd:71:35:c5:6d:b2:3c:0e:
2a:e9:1a:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org