Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/xgIUmJPk5C57zFhZqUGxX1e_Ayk.roa
File: xgIUmJPk5C57zFhZqUGxX1e_Ayk.roa (raw, json)
Hash identifier: phY4pHNbSGl3R4V70qfjyThC67tcUr5j7Pccz7fejpo=
Subject key identifier: C6:02:14:98:93:E4:E4:2E:7B:CC:58:59:A9:41:B1:5F:57:BF:03:29
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 097E
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/xgIUmJPk5C57zFhZqUGxX1e_Ayk.roa
Signing time: Sun 07 Feb 2021 12:38:45 +0000
ROA not before: Sun 07 Feb 2021 12:38:45 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 7539
IP address blocks: 140.110.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2430 (0x97e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Feb 7 12:38:45 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C602149893E4E42E7BCC5859A941B15F57BF0329
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:57:4f:00:6b:06:22:84:c2:7e:c4:45:5a:a5:
e4:40:83:21:eb:85:ef:9d:8b:b5:19:52:1b:96:d6:
38:c0:13:df:49:9a:89:1c:af:aa:7f:e8:d4:ce:7d:
91:47:12:69:2b:78:89:24:a6:aa:b8:8c:ee:ad:96:
41:2c:f9:16:cd:07:cf:47:50:64:59:d0:e5:a6:54:
eb:10:51:34:46:d6:b9:73:79:01:08:3e:16:8a:90:
59:a3:31:04:7a:54:45:65:d0:45:09:8f:10:b3:b0:
d1:48:3f:68:49:e9:c5:e3:2e:af:8e:8e:a6:9e:c2:
0f:cf:4c:cd:4c:8e:e9:37:2c:cd:48:78:9c:0c:3e:
fd:08:d1:a9:c8:da:0a:e1:d9:87:bf:5a:49:0c:7d:
66:eb:24:6c:5e:94:1c:84:15:49:b1:de:93:a8:49:
e4:55:b7:17:79:ee:22:d6:25:e5:2d:4e:75:49:46:
bc:87:1c:6d:96:67:3a:7b:12:51:f3:6c:ce:c4:64:
ee:fa:48:4c:b3:f4:e9:20:3c:fb:a0:dd:b0:23:ff:
26:a6:27:7d:bc:10:1e:0a:73:55:4c:5d:b4:0a:52:
f0:33:3d:48:07:3f:ec:ca:3f:ad:fd:3f:a7:42:9e:
cd:2d:13:67:04:c2:52:d9:86:e7:13:f5:ab:bb:ac:
b1:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:02:14:98:93:E4:E4:2E:7B:CC:58:59:A9:41:B1:5F:57:BF:03:29
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/xgIUmJPk5C57zFhZqUGxX1e_Ayk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.110.0.0/16
Signature Algorithm: sha256WithRSAEncryption
10:92:8a:a2:4c:db:21:1e:f2:8e:d5:02:f3:b5:66:48:ca:f1:
36:81:5f:dd:ee:73:98:37:d2:7b:59:dc:24:05:50:98:ee:0d:
3a:3f:1e:ab:91:b4:2b:86:a6:8d:21:f0:94:ba:7c:cf:ad:c3:
f7:cc:3f:20:75:5a:a0:bb:8c:07:36:6b:b7:c7:2c:d6:75:6c:
36:b9:f0:89:6c:29:22:6a:68:39:8d:ab:79:fe:1b:b2:e4:07:
23:3c:d8:d2:05:59:e7:dd:ef:d5:91:ed:24:6e:01:0c:04:e3:
46:05:c1:dd:ed:f6:da:4e:c5:f8:8b:2d:f2:bf:94:c0:a9:f1:
d2:62:24:3e:4f:f3:19:77:2a:db:c6:02:bc:13:13:1b:ef:8e:
42:1d:22:b1:9c:23:63:65:de:ed:3a:ca:36:49:7c:65:ed:7b:
76:a9:a4:75:22:d2:47:f5:01:3a:8e:d1:a6:f3:ed:96:b0:72:
0a:df:38:9e:d0:24:7c:29:53:4f:45:2a:5c:e8:80:82:42:bc:
54:5d:09:41:f8:44:c6:a6:46:45:ce:f9:d5:3f:65:01:4a:80:
a7:4b:75:5c:f9:b9:90:e9:27:9b:0b:f0:39:8f:47:7a:51:86:
51:77:7b:06:77:e3:53:97:bd:6d:af:8d:ac:55:93:10:32:4f:
95:1f:22:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org