Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/y2j6_Lkd_GTbsRBv2qNY5y5pUpU.roa
File: y2j6_Lkd_GTbsRBv2qNY5y5pUpU.roa (raw, json)
Hash identifier: PdLg16Sqe3yaz49B0OD1kNKaN7eXHVnrLbxZXSNvTLU=
Subject key identifier: CB:68:FA:FC:B9:1D:FC:64:DB:B1:10:6F:DA:A3:58:E7:2E:69:52:95
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 09C0
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/y2j6_Lkd_GTbsRBv2qNY5y5pUpU.roa
Signing time: Sun 07 Feb 2021 12:42:45 +0000
ROA not before: Sun 07 Feb 2021 12:42:45 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 1659
IP address blocks: 140.128.0.0/13 maxlen: 13
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2496 (0x9c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Feb 7 12:42:45 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=CB68FAFCB91DFC64DBB1106FDAA358E72E695295
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:ab:8a:2d:2e:50:b1:32:17:02:d5:1b:cf:5e:
15:9f:c7:f8:37:bd:1a:18:80:3e:70:6d:e8:ac:50:
e4:9f:d5:2e:55:e3:e1:0d:80:52:d5:79:2e:6d:3e:
81:42:a9:df:c4:66:69:05:ea:52:00:a1:f4:b9:e0:
ad:1a:e0:59:b5:e1:55:73:eb:e0:49:b8:27:c6:72:
d1:44:e1:9f:ac:16:bc:9a:fb:11:35:cc:3a:13:7d:
24:af:f3:76:77:ef:54:71:4a:d8:61:1d:33:c3:76:
cc:87:c0:26:17:7c:aa:8f:6c:50:0d:00:d8:66:64:
8f:ea:b1:9d:17:17:41:53:8e:4a:2e:2c:e1:2f:24:
8f:e5:3d:cd:ef:f1:b5:3e:3a:39:c9:91:98:cd:6e:
79:f0:65:bf:35:80:52:95:e5:55:bd:33:2e:d7:46:
89:95:af:6d:ad:3c:2f:a8:8d:ae:c6:db:d3:a9:48:
f1:b3:bb:f4:b3:ae:d1:e9:d2:8c:44:7b:c9:07:6d:
d3:17:29:04:6f:17:ac:8d:75:59:28:84:06:09:c8:
05:14:bb:2f:ce:9e:56:54:4d:b4:48:76:4a:09:7a:
52:08:17:6b:ea:ee:59:c4:e3:c5:95:0d:e1:9b:34:
73:72:a3:14:9e:8c:2d:4d:d3:27:7a:a9:2f:25:bb:
55:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:68:FA:FC:B9:1D:FC:64:DB:B1:10:6F:DA:A3:58:E7:2E:69:52:95
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/y2j6_Lkd_GTbsRBv2qNY5y5pUpU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.128.0.0/13
Signature Algorithm: sha256WithRSAEncryption
1b:3e:30:c4:9a:b9:13:be:87:a1:90:0d:71:9b:01:2a:db:b4:
33:35:22:95:b3:b3:57:6b:2d:37:36:2d:db:9d:5f:de:71:3b:
ab:2a:97:85:04:ff:b9:6c:41:cf:27:e6:7e:3b:a5:99:fc:fc:
cc:c3:d5:26:4c:4d:c0:fe:49:98:38:54:f0:8b:85:86:31:5b:
19:2c:f9:e2:e7:eb:69:46:8b:c2:1e:1b:c6:db:17:d6:a4:04:
92:c0:24:3d:79:2e:d3:a1:a7:7a:76:fc:5b:57:b5:86:91:b2:
09:ed:f3:54:36:42:89:f5:fb:8a:29:dc:4d:7f:d4:7d:b7:e4:
a2:49:c3:cb:ac:de:73:06:f8:cc:23:a2:99:32:b1:29:a6:a1:
d4:e7:f7:c4:04:b9:0b:6f:89:da:8b:df:08:47:a6:63:5e:93:
79:d7:6c:a0:06:ee:3e:c7:ca:f9:1e:6c:ff:b8:ad:85:8d:f5:
de:d7:29:b4:f7:90:00:86:35:2a:d2:f1:6e:ef:92:b2:9b:8e:
08:f6:c7:0f:bb:c8:ed:9e:eb:15:0e:c4:b6:db:cf:e8:5a:3a:
28:a9:22:b5:b6:db:32:6e:49:82:46:c3:68:db:e2:61:1f:e9:
92:9b:ee:ac:b8:81:a9:55:0c:63:8e:cb:f8:ae:02:50:e8:34:
d8:e9:ec:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org