Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/vnrKzQ_-6s7DRjvWaNU7faLCNBI.roa
File: vnrKzQ_-6s7DRjvWaNU7faLCNBI.roa (raw, json)
Hash identifier: Lzb3WaEma8O84R4WEUk8glUBuKAOdjc6hhmCzULgUR8=
Subject key identifier: BE:7A:CA:CD:0F:FE:EA:CE:C3:46:3B:D6:68:D5:3B:7D:A2:C2:34:12
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0B8A
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/vnrKzQ_-6s7DRjvWaNU7faLCNBI.roa
Signing time: Thu 15 Sep 2022 02:41:24 +0000
ROA not before: Thu 15 Sep 2022 02:41:24 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38845
IP address blocks: 140.136.160.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2954 (0xb8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 15 02:41:24 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=BE7ACACD0FFEEACEC3463BD668D53B7DA2C23412
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:7c:75:5a:b9:57:7d:3d:02:4c:ff:d2:a8:cc:
1d:ae:57:68:55:e8:65:2e:a6:42:97:75:8d:19:47:
13:c1:6d:71:2c:da:72:84:e3:b7:e9:a1:5b:04:9d:
31:f4:be:54:c4:58:90:95:b1:48:e2:4d:2d:d8:a7:
57:95:5e:2e:c1:ab:02:db:d5:3f:52:c8:a1:cb:65:
8e:de:16:2e:1a:88:b7:fb:15:b5:77:ee:25:88:a9:
74:ef:39:e6:9b:26:8c:81:0f:e4:26:f9:d1:50:18:
b4:e2:39:60:6b:47:fb:a1:91:81:4d:af:d4:6e:a7:
aa:86:86:74:c5:1a:e2:03:32:30:6d:30:34:46:e3:
ba:2f:0f:5a:2c:2c:a8:af:aa:ed:f3:90:b0:f8:7b:
9c:57:bf:91:c7:e9:24:ef:23:04:9e:a8:a7:08:4e:
92:f3:ea:b0:07:e6:e6:f6:72:82:3c:30:ec:61:95:
42:66:73:63:48:2f:1b:30:0c:85:54:28:79:f4:db:
2f:ab:08:3f:d3:e2:79:72:3f:e8:5e:ce:77:ce:e2:
8d:9b:e8:79:db:c0:75:91:63:bd:7b:70:78:3f:a3:
3f:67:86:1c:8e:92:65:ed:5b:36:e7:9e:a6:50:5a:
75:1d:c8:03:32:38:3f:79:fc:a5:75:72:7f:15:de:
6e:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:7A:CA:CD:0F:FE:EA:CE:C3:46:3B:D6:68:D5:3B:7D:A2:C2:34:12
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/vnrKzQ_-6s7DRjvWaNU7faLCNBI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.136.160.0/22
Signature Algorithm: sha256WithRSAEncryption
0c:a3:80:6f:06:3b:88:66:5a:86:65:36:52:94:fb:7d:4e:9c:
44:c1:98:ef:d1:b0:4e:6e:37:65:41:04:c9:8f:a2:a5:11:b8:
ea:75:57:fa:cd:49:fa:d4:40:a5:6e:bc:dd:3e:c7:8a:1b:0e:
d8:f0:e4:c5:95:45:15:73:2b:5c:ee:9e:b7:24:32:8f:80:ce:
9e:aa:8a:86:bd:f7:70:cf:8a:e4:d7:ae:1b:b2:23:14:99:91:
52:8b:bf:18:e5:ca:8f:d5:72:78:b1:73:5f:17:26:84:8e:62:
6b:e6:c4:ac:3b:34:c9:fb:61:3b:57:fd:46:43:35:60:5f:94:
15:f3:9c:20:2e:33:a6:b0:d2:62:ca:cc:b0:13:0a:e4:8e:aa:
9f:ea:09:c9:d2:c6:7b:ef:18:85:ab:87:77:98:52:19:ee:67:
70:6f:4d:a1:b9:34:b9:0a:bc:e5:48:1e:1e:d2:d6:a2:f7:86:
97:48:67:22:28:ac:61:a3:5a:60:75:f6:c9:fd:de:cf:a7:e8:
26:cc:6c:da:f1:5c:56:54:f9:70:af:cf:68:5d:6a:83:64:32:
bb:85:75:fd:7b:b0:35:f9:d9:5a:01:8a:ca:33:e0:41:27:52:
00:49:6d:cf:b4:39:d4:6a:d0:fc:ed:f1:a2:e6:94:ba:10:ad:
18:78:96:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org