Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/rLhrf61sFrJSUaWwU1Z0vJTR5sQ.roa
File: rLhrf61sFrJSUaWwU1Z0vJTR5sQ.roa (raw, json)
Hash identifier: nXDnCvjND0Qd5uPeN/u54KRB42pHzx+ZIAuCfQSoMHU=
Subject key identifier: AC:B8:6B:7F:AD:6C:16:B2:52:51:A5:B0:53:56:74:BC:94:D1:E6:C4
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 07C7
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/rLhrf61sFrJSUaWwU1Z0vJTR5sQ.roa
Signing time: Tue 29 Sep 2020 10:06:52 +0000
ROA not before: Tue 29 Sep 2020 10:06:52 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 1659
IP address blocks: 140.128.0.0/13 maxlen: 13
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1991 (0x7c7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 29 10:06:52 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=ACB86B7FAD6C16B25251A5B0535674BC94D1E6C4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:a5:6c:1d:df:13:13:de:5d:8e:f8:62:c1:e2:
1e:59:dc:6f:85:94:0f:87:1d:f3:70:2d:f3:49:8c:
c4:55:72:20:67:8c:dd:c3:fb:b5:31:a0:c1:bf:e7:
88:3d:d9:5e:b2:be:bb:0f:ef:d9:1d:75:bc:3d:72:
31:6d:59:02:77:3e:21:6d:2e:18:97:5e:4e:90:8b:
43:05:52:f1:4c:7c:c2:fe:d0:00:86:b8:26:64:d1:
1a:54:e8:33:f8:76:42:57:40:70:44:52:a9:01:79:
29:da:5d:f8:be:b6:c7:a1:4c:e1:87:ca:8e:a6:5e:
1b:0a:b2:79:97:48:d6:f9:06:3f:b4:e1:ad:74:2d:
32:ba:db:89:5f:a7:3a:13:25:99:aa:1d:73:ac:b8:
7c:aa:47:74:a9:d9:c0:c8:1a:0e:80:04:7d:1c:27:
12:bb:89:a7:b0:dd:50:07:8a:c8:df:56:da:65:df:
db:e3:68:55:ed:f6:72:98:63:5b:a8:a9:9a:a9:96:
21:65:a3:2a:99:3d:a8:a7:7b:b2:9e:e6:71:ab:01:
20:29:25:8b:e0:c7:4a:c9:ae:09:b1:b7:32:90:35:
89:a0:08:51:9f:1b:4a:15:65:ac:e1:40:56:ba:0f:
93:10:8b:03:3e:72:ea:a1:94:ca:44:6c:51:b7:48:
06:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:B8:6B:7F:AD:6C:16:B2:52:51:A5:B0:53:56:74:BC:94:D1:E6:C4
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/rLhrf61sFrJSUaWwU1Z0vJTR5sQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.128.0.0/13
Signature Algorithm: sha256WithRSAEncryption
1f:f9:42:54:6f:44:ee:45:62:4b:91:74:8b:46:9c:1d:38:65:
95:43:d6:c6:a0:f7:1f:e3:34:20:27:61:d1:d5:b5:5b:09:22:
fb:81:a8:3c:ea:96:71:c1:34:fc:db:b2:81:fb:2e:76:05:6a:
67:b7:ab:e9:6b:71:9f:13:e7:18:ff:17:4c:d6:ee:c7:d4:02:
33:d7:1a:99:2e:8d:0f:91:58:d7:cd:59:50:ce:9b:04:53:f5:
41:3c:55:c6:60:92:ef:31:45:89:25:70:5f:3b:a2:bd:d4:5c:
94:d7:c6:0d:43:21:b3:d2:65:02:16:e9:10:d6:b3:c8:34:ab:
59:b3:00:cf:e0:8b:76:6c:10:2f:4e:1e:66:b7:c2:c8:2d:6f:
7c:71:14:c8:d5:95:25:5c:7e:f6:d3:10:56:2b:85:f2:79:c1:
7b:ac:bb:02:60:58:a6:5f:aa:ff:be:67:67:8e:72:da:de:0d:
17:40:f4:de:36:47:cc:cf:8b:88:89:f0:0b:3e:d6:64:9c:e6:
14:9b:a4:5c:31:c1:3b:20:2e:55:83:36:d9:41:60:5f:e4:4c:
80:3f:2c:06:05:10:9f:41:42:88:1c:60:b0:61:b7:21:02:60:
00:07:bc:28:17:4b:f0:92:4b:bc:9d:52:e2:93:29:72:d6:5f:
f8:46:3e:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org