Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/t9Wz7wwpnuyfpz3ukjf19rlICr4.roa
File: t9Wz7wwpnuyfpz3ukjf19rlICr4.roa (raw, json)
Hash identifier: 4Clol4n5xPVPBO5FZoIWeilpdYTc2Ot30h9ie0wASao=
Subject key identifier: B7:D5:B3:EF:0C:29:9E:EC:9F:A7:3D:EE:92:37:F5:F6:B9:48:0A:BE
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0B8A
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/t9Wz7wwpnuyfpz3ukjf19rlICr4.roa
Signing time: Thu 15 Sep 2022 02:41:07 +0000
ROA not before: Thu 15 Sep 2022 02:41:07 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38845
IP address blocks: 140.136.164.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2954 (0xb8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 15 02:41:07 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B7D5B3EF0C299EEC9FA73DEE9237F5F6B9480ABE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:7c:16:70:a4:ee:b5:cd:aa:75:d2:30:94:0f:
22:d4:c5:9c:88:39:88:df:0c:f9:66:e5:ea:73:2d:
13:d4:10:d2:c5:1f:61:11:a9:19:a1:68:e9:78:17:
54:54:7e:36:86:49:36:e9:62:4d:77:eb:5c:73:14:
82:87:70:50:e4:6d:00:d3:38:fc:57:73:4a:f9:8b:
9c:c2:32:93:5f:85:42:ff:0c:cb:34:0c:c6:74:14:
2e:24:20:f2:d7:28:cd:08:de:21:25:e5:bc:f7:77:
6e:b2:5e:04:54:89:d3:20:84:30:84:de:8d:09:30:
00:9c:57:4e:c9:58:4c:9b:f2:65:90:3c:28:ea:dd:
5a:e0:7a:e1:6d:7a:78:15:3c:3c:2a:3b:69:05:f8:
48:ed:53:b5:10:9e:ae:f7:a6:74:7c:b1:bd:ea:c0:
02:25:1c:bd:22:32:5c:da:25:e1:ac:fa:d3:34:1b:
95:3b:2b:de:fb:5b:3c:8c:1a:ef:80:f8:4b:df:97:
df:a7:e3:17:83:01:2e:fe:25:de:3e:d1:f9:f3:43:
b9:db:13:28:0d:e2:96:63:3f:b6:9f:e1:c2:af:3d:
78:08:8a:12:91:f5:0e:dc:52:95:a9:6c:ee:45:50:
0c:22:51:43:3f:fb:64:af:39:38:65:bb:50:07:38:
7a:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:D5:B3:EF:0C:29:9E:EC:9F:A7:3D:EE:92:37:F5:F6:B9:48:0A:BE
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/t9Wz7wwpnuyfpz3ukjf19rlICr4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.136.164.0/23
Signature Algorithm: sha256WithRSAEncryption
0f:ff:83:50:de:b5:e4:89:e0:bb:fc:fb:c9:3d:10:b7:95:14:
34:d2:ea:51:95:2f:19:22:a4:b5:a0:51:5e:3d:be:4b:cd:67:
ef:e9:4e:fb:58:55:de:73:6a:4f:7a:b3:de:67:45:a0:00:5f:
eb:14:f5:8d:99:2e:57:d2:78:e8:2e:83:48:b9:b3:1e:e9:40:
b6:2b:2b:97:d5:01:31:fb:c8:6f:c2:9a:29:17:b6:9b:d9:af:
b6:85:23:54:39:67:de:89:da:69:e8:80:1e:da:86:90:d7:21:
ae:a8:ce:29:12:3f:4e:df:07:f2:13:33:18:3b:93:c5:31:0d:
22:78:50:c4:f1:b1:1b:1a:5d:61:88:c0:49:5c:9a:22:23:4d:
8e:ba:17:0d:dd:58:2f:bf:9a:8f:e9:d3:48:06:c9:5b:af:7d:
27:af:3b:db:99:32:ba:79:31:3f:61:49:41:c4:ac:a0:a4:8e:
81:f0:60:fa:90:e5:86:7d:70:1b:ea:29:ec:a1:53:80:b6:7f:
11:44:cd:e5:e0:7e:83:04:a9:0e:c6:76:60:d7:0c:39:b7:22:
27:86:2c:ec:0c:22:11:e3:31:a9:59:ce:a9:de:db:d9:a0:be:
51:86:cf:5a:2a:6a:e1:d5:2f:5b:93:2e:74:9f:59:61:de:1a:
a0:9b:4f:c7
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICC4owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3
QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yMjA5MTUw
MjQxMDdaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEI3RDVCM0VGMEMyOTlF
RUM5RkE3M0RFRTkyMzdGNUY2Qjk0ODBBQkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDofBZwpO61zap10jCUDyLUxZyIOYjfDPlm5epzLRPUENLFH2ER
qRmhaOl4F1RUfjaGSTbpYk1361xzFIKHcFDkbQDTOPxXc0r5i5zCMpNfhUL/DMs0
DMZ0FC4kIPLXKM0I3iEl5bz3d26yXgRUidMghDCE3o0JMACcV07JWEyb8mWQPCjq
3VrgeuFtengVPDwqO2kF+EjtU7UQnq73pnR8sb3qwAIlHL0iMlzaJeGs+tM0G5U7
K977WzyMGu+A+Evfl9+n4xeDAS7+Jd4+0fnzQ7nbEygN4pZjP7af4cKvPXgIihKR
9Q7cUpWpbO5FUAwiUUM/+2SvOThlu1AHOHpZAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUt9Wz7wwpnuyfpz3ukjf19rlICr4wHwYDVR0jBBgwFoAURXsQNypobj/3Nla+
tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv
UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC90OVd6N3d3cG51eWZwejN1a2pm
MTlybElDcjQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBjIik
MA0GCSqGSIb3DQEBCwUAA4IBAQAP/4NQ3rXkieC7/PvJPRC3lRQ00upRlS8ZIqS1
oFFePb5LzWfv6U77WFXec2pPerPeZ0WgAF/rFPWNmS5X0njoLoNIubMe6UC2KyuX
1QEx+8hvwpopF7ab2a+2hSNUOWfeidpp6IAe2oaQ1yGuqM4pEj9O3wfyEzMYO5PF
MQ0ieFDE8bEbGl1hiMBJXJoiI02OuhcN3Vgvv5qP6dNIBslbr30nrzvbmTK6eTE/
YUlBxKygpI6B8GD6kOWGfXAb6insoVOAtn8RRM3l4H6DBKkOxnZg1ww5tyInhizs
DCIR4zGpWc6p3tvZoL5Rhs9aKmrh1S9bky50n1lh3hqgm0/H
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org