Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/tDt6-20b66Bl19pgtPDruN4NzUw.roa
File: tDt6-20b66Bl19pgtPDruN4NzUw.roa (raw, json)
Hash identifier: ilzbGQbvUX8/eZZNVzYjW71Xk+yuvO6+L+6Dfr/64ao=
Subject key identifier: B4:3B:7A:FB:6D:1B:EB:A0:65:D7:DA:60:B4:F0:EB:B8:DE:0D:CD:4C
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 07C5
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/tDt6-20b66Bl19pgtPDruN4NzUw.roa
Signing time: Tue 29 Sep 2020 10:06:51 +0000
ROA not before: Tue 29 Sep 2020 10:06:51 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9916
IP address blocks: 140.113.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1989 (0x7c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 29 10:06:51 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B43B7AFB6D1BEBA065D7DA60B4F0EBB8DE0DCD4C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:45:4e:0d:9a:02:30:26:f4:88:1c:ae:2c:33:
87:f1:5b:d6:b3:ed:d7:84:35:b1:33:f8:09:3b:91:
5a:f4:fb:49:13:b9:76:b6:22:66:6f:3f:c6:f6:64:
48:74:d2:3b:cb:74:9d:bb:61:07:11:7f:dd:8e:34:
44:17:1d:e1:3b:56:e5:7e:60:5e:c4:9d:ee:90:38:
08:84:33:0c:48:12:2a:27:5e:0e:50:46:2a:07:fe:
66:76:9e:10:b9:b2:43:38:44:38:60:90:a0:db:71:
11:c8:d4:54:3d:b1:bc:2d:d1:5c:3e:97:43:12:96:
2f:13:7f:64:af:2e:48:7a:21:59:61:f0:39:a3:9d:
d2:0f:a0:28:7d:74:c6:e0:c9:d1:e8:fa:58:3f:a2:
0e:38:15:65:ac:0f:1a:55:5c:dc:62:18:b6:35:8c:
27:1a:b8:a9:90:95:f6:ac:e7:ac:16:3a:fd:83:36:
58:5e:ee:9b:31:d8:c3:7d:a3:c6:ae:4b:1d:35:cc:
4a:85:b3:e5:85:ca:a7:e3:e9:59:92:4a:18:a6:08:
1e:29:d8:6b:ec:ee:21:fb:3d:16:f8:0c:fd:23:78:
5c:12:ff:29:a0:30:e0:09:3e:8b:89:16:d6:a2:7f:
b0:2d:b0:06:f7:3d:2f:01:cf:b4:65:3b:9b:5f:82:
c2:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:3B:7A:FB:6D:1B:EB:A0:65:D7:DA:60:B4:F0:EB:B8:DE:0D:CD:4C
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/tDt6-20b66Bl19pgtPDruN4NzUw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.113.0.0/16
Signature Algorithm: sha256WithRSAEncryption
13:a4:7a:3e:c7:89:6a:fa:0c:87:44:c5:96:84:09:a4:a4:b4:
82:38:0d:fd:6a:99:6d:e5:ec:66:9d:37:57:59:00:05:5d:75:
7c:5b:5b:ac:6b:5e:9e:15:a5:4a:45:7d:2c:53:8a:1e:67:53:
ad:8a:e5:f7:7a:7a:9a:48:c8:eb:2c:ba:38:73:cc:10:b2:0d:
6d:a3:f8:99:0a:67:d7:2d:56:77:19:0f:49:a1:ea:77:4c:1e:
ab:80:bb:1e:9e:1a:72:a2:77:a8:d1:7d:a2:60:58:6b:11:54:
6a:41:f2:e9:45:81:dd:c9:b4:d6:86:2b:6f:89:9b:8c:6d:2e:
a2:b7:7e:aa:cb:ba:ca:17:e1:b2:23:40:2d:b8:c6:44:94:93:
ed:29:88:03:02:e3:53:6f:bb:76:44:7a:8c:cd:f2:26:27:70:
96:16:f5:3b:45:0d:52:6d:e2:51:eb:e8:38:85:5a:58:ec:b4:
a1:c0:fd:1e:79:04:bf:1e:4b:b1:68:a0:2e:c1:1a:dd:1d:a5:
41:fc:09:65:72:cf:45:24:df:d9:e1:ba:96:48:89:6a:c7:ee:
4a:b3:0d:77:60:84:8c:d4:cd:dd:92:75:71:14:e3:8f:5f:53:
05:ba:c7:7c:44:ab:1d:96:1b:a4:01:a5:05:a3:da:8e:b1:a3:
3b:7d:6b:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org