Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/tK47AApDJE3HoL9BGL4Q9qHYmto.roa
File: tK47AApDJE3HoL9BGL4Q9qHYmto.roa (raw, json)
Hash identifier: tSLmAhbnKU4pQkOQzAhVs+vA6pGpqMG2SD6vKvcP7oA=
Subject key identifier: B4:AE:3B:00:0A:43:24:4D:C7:A0:BF:41:18:BE:10:F6:A1:D8:9A:DA
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0A8D
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/tK47AApDJE3HoL9BGL4Q9qHYmto.roa
Signing time: Wed 29 Sep 2021 02:41:21 +0000
ROA not before: Wed 29 Sep 2021 02:41:21 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 1659
IP address blocks: 140.128.0.0/13 maxlen: 13
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2701 (0xa8d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 29 02:41:21 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=B4AE3B000A43244DC7A0BF4118BE10F6A1D89ADA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:0a:e3:3c:83:ff:85:7a:12:1b:e5:2e:89:e1:
54:05:e0:c3:83:08:85:5f:e2:bb:a9:d4:64:86:09:
a1:a2:d6:b0:f2:bc:b8:0b:27:88:9b:2e:3b:54:14:
55:00:0e:40:4c:8e:a1:a3:64:8e:d1:19:54:17:da:
4c:1c:91:aa:b2:94:a3:e7:27:e9:68:29:9b:0e:87:
77:ae:af:9d:ae:25:78:fb:08:32:b1:b5:b6:da:2b:
2a:65:f9:74:d9:71:88:ed:a3:92:2e:dd:32:e2:cd:
11:74:72:07:55:e1:e7:32:1a:29:15:02:7d:dd:0f:
69:10:b3:89:54:af:85:68:b9:ec:46:36:42:26:09:
d6:7d:a7:aa:b9:d4:f4:07:0d:a9:47:d0:dc:bd:1b:
ae:f5:f9:4e:e5:e9:36:53:61:f3:94:40:3c:5b:de:
e3:4f:21:4f:47:ed:ff:6e:d0:65:b5:6b:16:1f:b4:
7d:61:f0:38:c3:34:a6:7b:c4:89:f4:27:59:b7:fa:
8b:ce:12:09:58:a9:3c:27:90:89:88:59:a0:99:35:
24:95:a9:26:63:d3:08:4b:53:86:63:65:44:56:e6:
a7:2e:4b:63:d0:7b:0c:62:37:35:6a:0b:a5:f9:ff:
e3:d9:33:8d:f0:d5:18:0b:b7:09:4f:81:8a:1a:91:
fb:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:AE:3B:00:0A:43:24:4D:C7:A0:BF:41:18:BE:10:F6:A1:D8:9A:DA
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/tK47AApDJE3HoL9BGL4Q9qHYmto.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.128.0.0/13
Signature Algorithm: sha256WithRSAEncryption
39:e2:e4:c9:07:fd:cf:b7:e4:15:72:60:30:9d:6b:4b:51:74:
ff:e5:50:7b:b5:fc:f8:0d:de:f6:74:d2:30:be:8d:6e:0f:cb:
42:13:72:d1:94:0f:fc:25:e6:f7:0f:f9:79:60:6e:71:a6:02:
07:66:b9:26:f5:1b:89:58:44:aa:ad:98:5f:df:eb:20:cd:bd:
e3:d1:ba:ce:5b:35:70:64:a4:40:a2:3d:9f:89:69:05:11:16:
01:52:a3:77:57:bc:60:03:08:90:74:da:1f:d2:e8:aa:5f:5c:
65:5d:e7:a7:ad:a6:6c:fc:bb:43:08:69:69:f6:b4:45:06:9d:
92:5a:d7:1d:d4:ea:f7:38:34:ac:c5:b2:c8:f7:d2:5f:02:00:
54:f1:72:81:63:45:32:b9:05:1e:de:9e:08:d2:d9:06:4b:08:
0a:08:60:d2:61:d2:c4:90:99:56:44:d5:28:7e:8d:6d:05:e1:
a8:5a:18:dc:95:5c:f5:c4:e3:20:9b:99:3f:a8:1c:67:72:3b:
c2:d6:b5:95:0c:7f:65:07:42:dc:f9:e6:e4:df:e1:bb:da:70:
e9:49:e7:8a:9b:89:b3:c2:b9:00:d0:43:7c:46:6e:bb:5c:30:
c5:db:ad:41:bf:6d:5c:d9:62:96:76:d8:a7:a1:78:88:92:f1:
b5:a1:6c:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org