Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/rvn-fplwqnflhxE1sIjaqrxqX4M.roa
File: rvn-fplwqnflhxE1sIjaqrxqX4M.roa (raw, json)
Hash identifier: 6Gw1xSTN1EYk9bLq4Z9KOR4omrncDxDaWiarVTihJD0=
Subject key identifier: AE:F9:FE:7E:99:70:AA:77:E5:87:11:35:B0:88:DA:AA:BC:6A:5F:83
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0982
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/rvn-fplwqnflhxE1sIjaqrxqX4M.roa
Signing time: Sun 07 Feb 2021 12:38:48 +0000
ROA not before: Sun 07 Feb 2021 12:38:48 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9916
IP address blocks: 140.113.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2434 (0x982)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Feb 7 12:38:48 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=AEF9FE7E9970AA77E5871135B088DAAABC6A5F83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:99:6c:ed:b7:d1:c2:39:69:0a:55:6c:8f:f9:
7d:ac:2d:d2:88:3c:80:96:55:09:c2:84:66:4b:04:
99:cb:a8:f5:92:05:53:28:4b:6e:e7:25:dd:1c:a8:
e8:50:b0:c8:34:32:6a:b9:45:9d:7d:05:a8:50:88:
9b:79:ca:d5:0e:06:04:15:8c:6c:61:fd:9d:ab:2d:
15:1e:4b:06:13:3b:39:63:4e:c9:e6:93:08:c9:ef:
af:a5:31:be:6a:20:46:76:c3:22:27:b3:26:03:5a:
16:53:54:bf:13:ff:a0:2a:7c:b9:ce:a8:0c:07:69:
a2:3c:e6:01:9c:87:c1:31:84:e8:b5:8e:1f:cb:55:
35:6f:25:be:9f:a8:22:88:07:45:19:75:20:6c:d7:
b6:f0:60:fd:4f:34:99:7a:72:e9:5b:4c:a3:3a:39:
78:6b:30:2a:13:5f:a1:60:1f:a0:fa:b9:ed:93:f8:
08:e5:48:73:f8:1f:18:a2:74:8f:32:b7:1c:c6:0a:
23:9d:3c:04:d3:0e:ac:5d:cf:29:02:52:dd:03:c9:
8f:f4:c9:c4:0a:88:7d:a7:cc:6c:87:94:e6:b4:f1:
9b:1c:4d:16:b9:6c:ad:b8:2c:cb:e2:e3:80:a9:26:
12:ff:f2:63:6c:a4:04:e0:27:af:30:b3:f8:6f:dc:
d3:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:F9:FE:7E:99:70:AA:77:E5:87:11:35:B0:88:DA:AA:BC:6A:5F:83
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/rvn-fplwqnflhxE1sIjaqrxqX4M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.113.0.0/16
Signature Algorithm: sha256WithRSAEncryption
36:3f:a7:e7:ef:25:ff:da:2d:6d:7b:ea:8d:3c:69:de:21:52:
38:7b:e6:c3:3b:f0:b6:f3:00:87:57:dd:f8:1d:6c:fd:0a:b4:
65:1d:13:b4:eb:e7:ed:5a:9a:9f:d1:c1:2a:cf:d7:11:6f:5c:
b9:d7:56:e3:63:60:d6:46:d5:35:8e:97:4f:f6:34:bb:f8:4a:
20:ca:6f:d2:35:39:02:fd:db:30:89:4c:f7:46:15:3d:e6:fa:
57:07:3c:0b:02:1d:88:4b:55:e3:4b:fd:21:ba:d4:a2:6f:20:
16:72:36:ab:db:03:86:f7:ed:7d:3f:dd:cd:27:aa:5d:19:1c:
89:cf:b0:88:33:bf:a9:76:a9:a1:6b:6c:fc:fd:5d:33:60:60:
32:c5:19:8c:d7:a0:2c:30:7a:d6:cb:a0:c8:ba:36:47:20:6e:
7c:14:6b:97:4d:ce:b4:6f:14:c3:f4:16:5b:68:0f:ac:f9:dc:
5d:0e:d0:93:48:4e:22:bc:a2:cf:3d:34:cf:cf:c3:61:a6:2f:
6a:3b:8b:99:72:ea:1e:4f:75:e5:d6:60:9c:13:f9:c2:76:17:
23:87:43:c5:b0:f2:65:77:53:4e:62:d4:43:53:43:ca:ae:85:
0d:9d:4c:89:ad:f4:23:b1:0a:b9:ab:01:d2:0f:cc:93:18:c2:
dd:66:6b:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org