Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/tnwRAZua7QYbHt5RM-uoWr_nNeI.roa
File: tnwRAZua7QYbHt5RM-uoWr_nNeI.roa (raw, json)
Hash identifier: Bq7JfDt1/u5Ll03p7vIamgWlnkI9JGinp8HPTGMs3PY=
Subject key identifier: B6:7C:11:01:9B:9A:ED:06:1B:1E:DE:51:33:EB:A8:5A:BF:E7:35:E2
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0B8A
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/tnwRAZua7QYbHt5RM-uoWr_nNeI.roa
Signing time: Thu 15 Sep 2022 02:41:25 +0000
ROA not before: Thu 15 Sep 2022 02:41:25 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38844
IP address blocks: 140.122.0.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2954 (0xb8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 15 02:41:25 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B67C11019B9AED061B1EDE5133EBA85ABFE735E2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:85:53:cb:d3:88:d5:cb:23:14:33:d4:86:fd:
22:84:39:a8:81:ed:b5:e6:28:d1:60:bc:1f:71:16:
03:61:c2:1c:4f:98:ca:17:8b:a8:6c:ef:78:33:62:
95:d4:15:8a:4d:09:81:22:f7:e2:da:f9:35:9b:a4:
d2:e1:72:e3:08:33:c4:d5:4f:c7:38:c7:5b:39:0d:
4f:d6:42:35:a1:72:33:4d:1f:d2:95:77:f8:21:78:
e6:83:10:77:3b:4d:7c:15:f0:af:ee:02:dc:20:6b:
31:bd:ae:c2:96:a0:59:0a:a3:aa:f0:51:92:eb:d6:
91:9c:7b:0f:4f:ed:f8:d7:e5:7c:d7:e7:85:db:ff:
5c:eb:9f:69:2a:23:2a:ac:c3:c0:49:43:12:f4:7e:
69:32:e8:3f:bc:bc:33:ae:2b:f8:61:40:68:70:53:
3a:59:bb:f5:c5:e6:22:f9:93:cf:8f:43:45:d4:a0:
02:bb:1b:56:cc:9d:2d:7c:57:49:16:e0:f4:59:44:
5c:10:f3:a5:c9:93:56:80:46:79:b4:75:1f:a5:36:
e9:dd:16:ed:ce:51:fa:51:0e:e4:a8:36:01:db:5d:
e6:94:c2:f5:8b:cf:d3:3d:b1:45:f4:c5:e8:a0:52:
b8:d0:66:4d:f7:1a:04:9c:59:3c:dc:c4:6b:5c:52:
b4:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:7C:11:01:9B:9A:ED:06:1B:1E:DE:51:33:EB:A8:5A:BF:E7:35:E2
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/tnwRAZua7QYbHt5RM-uoWr_nNeI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.122.0.0/17
Signature Algorithm: sha256WithRSAEncryption
87:23:0b:84:7f:d5:9a:8e:c4:72:af:5a:98:e0:f5:ec:61:0e:
aa:10:17:56:8b:3f:76:91:d6:bd:4b:16:9d:c1:08:ed:7a:86:
d2:69:e4:08:72:54:62:b2:46:46:05:af:78:5a:63:1a:50:bc:
fd:f5:be:78:4c:38:2e:cd:1d:36:7b:f6:9e:d6:1c:7b:9a:d3:
56:de:73:e8:7d:3d:78:90:30:79:b3:7b:89:7a:74:c5:16:2e:
0b:14:ef:ba:ff:2f:1d:1f:88:a2:b8:f1:ab:58:4c:35:20:79:
15:d0:92:e6:a8:6f:4c:6f:c1:b2:d8:ff:4a:18:f7:c1:86:20:
e3:b2:49:2c:a1:9b:1f:40:55:a8:64:0c:bd:48:ad:8a:3c:2d:
d1:ba:30:93:e2:83:2e:ed:d0:f8:6e:f2:06:31:68:37:32:f4:
8e:05:cf:c9:60:84:e8:b5:e3:54:80:cc:b3:24:55:7b:43:44:
d5:cd:84:7f:98:54:75:a0:e2:27:05:39:16:94:e9:97:cd:ac:
f5:4b:6d:0d:a6:4d:5c:94:b9:eb:d6:88:fd:d9:4e:6d:56:7c:
0a:85:51:27:ec:38:23:e2:b8:d5:ac:65:5c:21:6e:7a:6f:36:
f9:42:56:b6:e5:1b:c3:64:19:93:6b:5c:82:8c:2a:ae:80:a3:
8f:fa:68:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org