Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/pjkNcXb6BRrDaHdRqulm43QxM90.roa
File: pjkNcXb6BRrDaHdRqulm43QxM90.roa (raw, json)
Hash identifier: nFO40nrsqL3DQ5iWlH48wJuHBzFP0sJQ/4RgzMK452Q=
Subject key identifier: A6:39:0D:71:76:FA:05:1A:C3:68:77:51:AA:E9:66:E3:74:31:33:DD
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0A8E
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/pjkNcXb6BRrDaHdRqulm43QxM90.roa
Signing time: Wed 29 Sep 2021 02:41:22 +0000
ROA not before: Wed 29 Sep 2021 02:41:22 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 1659
IP address blocks: 140.112.0.0/12 maxlen: 12
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2702 (0xa8e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 29 02:41:22 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=A6390D7176FA051AC3687751AAE966E3743133DD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:fd:d9:0a:1c:9c:64:1e:ca:f4:07:77:96:7c:
c7:33:b4:4c:bc:74:02:3c:1d:31:86:bb:29:ba:87:
76:d1:d9:3f:30:4f:2e:c0:98:7c:be:75:e8:b1:50:
76:60:a7:30:6e:6e:53:ba:b6:80:72:6c:4a:8a:a5:
d0:47:fe:db:62:eb:67:0f:7d:18:f5:e3:15:c8:9f:
63:41:86:a7:73:bd:7a:dc:4d:85:28:a7:9d:22:de:
01:7b:ba:db:9e:73:13:5d:b5:e1:d4:54:2f:0a:63:
03:e5:77:af:f5:a1:d9:81:fa:f6:ce:7a:62:10:46:
3b:18:1d:3e:de:5a:4f:e5:0f:79:ed:eb:3f:c2:67:
da:32:88:6e:38:4f:58:e1:a8:e0:92:47:f0:b8:0d:
9c:09:fe:d3:b7:66:8d:3e:fc:91:20:69:47:50:85:
24:1f:89:21:33:be:6b:da:95:42:2d:dd:45:b1:78:
ef:2a:8b:fd:16:43:4e:b9:6e:41:d2:f7:6a:b6:26:
0c:d0:58:f7:fe:93:9b:e4:68:af:92:77:45:0b:4b:
c4:db:2f:6b:a3:7a:ca:46:57:9b:21:47:1f:57:5a:
fd:1f:d8:52:3f:fc:49:a8:a7:44:4a:a3:86:7b:c6:
ba:d6:c7:5a:76:fd:97:9a:62:e5:1e:62:4f:5e:bd:
19:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:39:0D:71:76:FA:05:1A:C3:68:77:51:AA:E9:66:E3:74:31:33:DD
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/pjkNcXb6BRrDaHdRqulm43QxM90.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.112.0.0/12
Signature Algorithm: sha256WithRSAEncryption
24:4b:30:d7:1d:15:fd:3e:77:66:e8:7a:c0:58:9a:f2:cd:9e:
b8:20:3a:b2:83:c9:32:59:0a:87:ca:b5:60:b3:8e:71:20:1f:
8d:82:2d:6b:bb:1c:ae:e1:92:3e:d4:9f:7b:33:b9:6d:c7:98:
0b:dc:77:10:af:38:39:54:62:6b:14:ec:fc:46:b7:51:b3:02:
ed:1b:d1:e7:b8:12:92:1e:03:03:2a:35:0c:47:86:10:d7:9f:
23:2e:3c:81:b1:be:42:70:22:3d:fd:e0:3e:39:0c:5f:c3:33:
f4:e9:c5:bd:15:96:12:26:c7:77:de:89:4c:39:81:17:8e:3e:
2c:bb:88:d1:00:08:32:a1:1a:66:cd:5a:e4:20:5a:01:70:69:
7c:8f:ff:13:94:67:ca:fa:cd:ba:a6:6d:d0:5d:83:d8:c2:3d:
52:7d:55:7d:38:eb:88:02:ce:63:24:44:24:56:ee:00:e3:bb:
7e:ee:d3:45:5c:2c:9d:af:27:b2:e5:ff:39:3f:2c:3f:5a:f7:
f8:a6:46:0c:b1:33:09:a0:16:b1:fc:c8:f9:92:d2:21:9b:97:
11:ff:5f:13:01:7f:0b:44:b7:c7:a1:d8:95:56:c6:65:2a:f4:
4d:df:3c:de:d1:c6:d3:27:c9:2e:f6:58:fc:e8:78:b1:9f:1d:
69:1f:81:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org