Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/xhexlm2pP1Gp4muV8LUa5IEnaHw.roa
File: xhexlm2pP1Gp4muV8LUa5IEnaHw.roa (raw, json)
Hash identifier: LRSkyKuVdwNGdTwGZK6/wApIh8X6IJx1HOndWM9OHvE=
Subject key identifier: C6:17:B1:96:6D:A9:3F:51:A9:E2:6B:95:F0:B5:1A:E4:81:27:68:7C
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 08ED
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/xhexlm2pP1Gp4muV8LUa5IEnaHw.roa
Signing time: Wed 16 Dec 2020 08:55:27 +0000
ROA not before: Wed 16 Dec 2020 08:55:27 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9916
IP address blocks: 140.129.51.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2285 (0x8ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Dec 16 08:55:27 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C617B1966DA93F51A9E26B95F0B51AE48127687C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:93:d8:2c:a6:ef:6a:c8:c0:8e:5c:2c:8c:ac:
32:13:3c:02:09:37:82:74:49:ca:4e:2d:41:ef:17:
d6:5c:fe:67:b6:47:2b:13:89:79:9d:1b:46:28:58:
7e:8b:00:5c:f3:78:30:e8:45:4f:c5:74:46:e6:59:
f6:3c:e9:d1:18:6e:9e:38:32:8e:19:7f:2f:5f:b1:
e9:86:f0:40:d5:5c:1b:f2:7b:df:8f:41:5d:1d:40:
86:43:26:4b:4d:70:20:8d:b7:be:af:f9:6e:34:17:
d8:60:83:51:0f:b5:f2:12:3b:da:39:8d:f6:84:fc:
f6:01:d7:62:4d:f5:a8:b9:b1:a0:5a:1d:56:8a:0e:
56:1d:f3:98:3a:5a:36:e8:99:3a:27:ce:41:dd:a1:
66:df:78:0a:52:c9:bc:76:20:8d:4c:82:30:cb:59:
b1:0c:e1:70:10:6d:e5:e0:f9:8b:2f:8b:0e:fc:63:
28:49:25:79:56:4c:f9:85:be:ee:4b:81:31:63:e5:
4e:c6:99:cb:8b:b2:4e:dd:89:45:05:01:34:fa:be:
8a:49:c9:dd:35:37:b7:b7:c1:fd:90:c6:0c:21:e9:
dd:70:f9:2a:48:68:82:b3:f5:e7:7e:22:bd:bd:04:
d6:7e:bf:fb:83:e5:dd:c0:57:ce:98:b9:89:78:be:
4e:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:17:B1:96:6D:A9:3F:51:A9:E2:6B:95:F0:B5:1A:E4:81:27:68:7C
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/xhexlm2pP1Gp4muV8LUa5IEnaHw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.129.51.0/24
Signature Algorithm: sha256WithRSAEncryption
99:c6:d8:0c:f4:c6:48:0c:27:5c:48:bc:f6:83:ea:6f:f6:ab:
bf:9c:fd:36:2d:b6:b8:c7:8c:1e:5a:95:5c:db:fb:64:86:d4:
8a:00:eb:b8:2a:a3:ed:f3:47:b3:82:59:e0:db:6c:3c:6c:4c:
c1:59:92:60:ad:15:48:9c:de:88:b1:0f:ac:0a:f0:d6:45:7f:
ae:61:fa:11:35:7f:ae:94:53:dc:af:05:38:80:46:66:6a:a4:
7a:ba:41:70:c5:68:2a:12:8e:e9:52:8b:c6:87:0f:89:e1:1f:
ed:b1:db:41:f0:d0:51:dd:e3:df:ce:f1:49:86:ae:fb:08:a3:
e3:44:62:d3:7d:56:4c:4e:97:d3:b9:d9:95:cb:6e:2c:68:00:
63:c9:91:5e:c3:4a:a3:4a:9b:58:f1:a6:2b:49:ec:b2:ff:b2:
ee:cb:d3:9e:21:89:e5:ca:32:4a:7d:6c:8a:b4:6a:a3:fb:fc:
42:47:fa:69:01:75:4e:3e:e1:5f:21:2f:0b:dd:fe:03:7b:a1:
bc:f3:e3:fe:09:48:60:4d:12:2e:3b:f5:13:11:04:89:0f:d6:
0e:29:9a:77:eb:ee:5e:d8:c0:a9:77:28:23:00:67:54:2b:6a:
5d:0d:94:d5:56:84:72:d5:15:5b:47:10:7b:f8:d1:f6:0e:75:
13:a5:24:bd
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCO0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3
QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yMDEyMTYw
ODU1MjdaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEM2MTdCMTk2NkRBOTNG
NTFBOUUyNkI5NUYwQjUxQUU0ODEyNzY4N0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC6k9gspu9qyMCOXCyMrDITPAIJN4J0ScpOLUHvF9Zc/me2RysT
iXmdG0YoWH6LAFzzeDDoRU/FdEbmWfY86dEYbp44Mo4Zfy9fsemG8EDVXBvye9+P
QV0dQIZDJktNcCCNt76v+W40F9hgg1EPtfISO9o5jfaE/PYB12JN9ai5saBaHVaK
DlYd85g6WjbomTonzkHdoWbfeApSybx2II1MgjDLWbEM4XAQbeXg+Ysviw78YyhJ
JXlWTPmFvu5LgTFj5U7GmcuLsk7diUUFATT6vopJyd01N7e3wf2Qxgwh6d1w+SpI
aIKz9ed+Ir29BNZ+v/uD5d3AV86YuYl4vk6BAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUxhexlm2pP1Gp4muV8LUa5IEnaHwwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+
tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv
UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC94aGV4bG0ycFAxR3A0bXVWOExV
YTVJRW5hSHcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAjIEz
MA0GCSqGSIb3DQEBCwUAA4IBAQCZxtgM9MZIDCdcSLz2g+pv9qu/nP02Lba4x4we
WpVc2/tkhtSKAOu4KqPt80ezglng22w8bEzBWZJgrRVInN6IsQ+sCvDWRX+uYfoR
NX+ulFPcrwU4gEZmaqR6ukFwxWgqEo7pUovGhw+J4R/tsdtB8NBR3ePfzvFJhq77
CKPjRGLTfVZMTpfTudmVy24saABjyZFew0qjSptY8aYrSeyy/7Luy9OeIYnlyjJK
fWyKtGqj+/xCR/ppAXVOPuFfIS8L3f4De6G88+P+CUhgTRIuO/UTEQSJD9YOKZp3
6+5e2MCpdygjAGdUK2pdDZTVVoRy1RVbRxB7+NH2DnUTpSS9
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org