Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/vg5W7gOzXgoYGZPbawPfhTfkGrM.roa
File: vg5W7gOzXgoYGZPbawPfhTfkGrM.roa (raw, json)
Hash identifier: B24SxWsQk0fUFwobkWdje5MLP6cQZnE7PUpCs0afSPA=
Subject key identifier: BE:0E:56:EE:03:B3:5E:0A:18:19:93:DB:6B:03:DF:85:37:E4:1A:B3
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0B8A
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/vg5W7gOzXgoYGZPbawPfhTfkGrM.roa
Signing time: Thu 15 Sep 2022 02:41:15 +0000
ROA not before: Thu 15 Sep 2022 02:41:15 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9916
IP address blocks: 140.113.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2954 (0xb8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 15 02:41:15 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=BE0E56EE03B35E0A181993DB6B03DF8537E41AB3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:3a:67:2f:a1:6d:22:fc:0b:4e:3b:8b:44:05:
b3:a9:67:5f:2d:6e:54:67:72:08:c6:4e:17:9b:97:
9b:89:a4:62:63:bb:0e:b9:3a:0a:11:e4:5b:40:98:
f3:c1:71:94:36:3e:ef:96:c8:a0:2f:f9:79:37:ba:
ab:3e:84:f2:3d:e5:a5:d5:20:a0:2f:0e:b8:35:72:
c6:ee:cb:4a:7b:7e:bd:51:b8:1a:64:8e:90:c7:3b:
65:9f:14:9c:a0:b6:d8:56:3f:92:a1:81:cf:36:e2:
20:a5:ab:b6:7f:17:03:ce:3f:56:5f:bd:d6:43:61:
1b:c5:a1:3e:91:22:92:7c:51:18:aa:ac:a2:a4:f4:
47:42:12:cb:bc:31:a6:17:e7:ef:52:59:5a:b6:fd:
16:b1:da:68:fa:70:fc:01:39:84:bd:af:99:dc:f1:
4b:38:12:d4:e3:a5:5b:f9:1a:f5:7b:52:7d:53:9e:
a9:06:61:e4:cf:ed:d5:10:f9:f3:02:a1:67:b9:d5:
22:2d:a3:d7:00:16:d6:c1:43:62:9a:c6:1b:68:34:
4b:60:41:d2:2f:5b:d8:1e:fc:75:72:cc:6e:cb:99:
34:1b:fd:95:44:ef:78:34:18:8b:98:c6:54:26:5c:
bb:e3:a7:3e:5e:b3:a4:4f:47:50:33:39:d4:d7:ad:
07:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:0E:56:EE:03:B3:5E:0A:18:19:93:DB:6B:03:DF:85:37:E4:1A:B3
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/vg5W7gOzXgoYGZPbawPfhTfkGrM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.113.0.0/16
Signature Algorithm: sha256WithRSAEncryption
2b:aa:92:d3:87:09:00:0c:59:ef:11:d4:11:58:f2:3d:4c:49:
11:53:56:7a:23:3a:db:8c:b8:fb:74:5a:e1:5e:7f:1c:52:c7:
1e:bf:06:5d:63:dd:56:5c:b4:78:69:46:35:df:c6:5e:13:69:
52:17:d1:13:b9:8f:3c:8f:3f:ed:e7:81:07:4a:68:c6:14:23:
ae:d6:59:e4:61:30:4d:3c:ab:a2:2c:90:a0:d5:38:59:fa:2c:
18:5a:84:90:71:52:0d:97:00:a5:73:91:2e:27:4e:92:e6:12:
87:be:f6:3d:18:c4:37:5a:a2:80:91:bf:72:8f:fe:2d:91:91:
17:70:89:32:4f:f2:32:60:d6:3a:e7:20:96:92:e8:21:50:e3:
9b:fc:2f:6e:12:02:65:c1:49:5a:bd:70:36:c4:3a:a7:b8:94:
1d:b7:ce:1c:f8:d3:d7:77:fa:0f:e1:a1:a7:1c:43:9f:9e:48:
fe:17:61:be:a5:ee:88:d9:85:82:54:a8:6c:a5:df:98:1d:57:
63:92:ff:5c:36:f2:57:99:88:86:41:da:a3:d1:e0:56:0a:00:
5b:e3:50:66:aa:b9:18:5d:da:ab:96:6e:a0:42:8f:0b:1c:7f:
7d:27:4a:56:ac:81:19:13:e0:36:af:37:0c:16:3c:b6:b0:df:
f8:60:95:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org