Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/ylSLVbGvXBrw0Xghp-UIN39BYVY.roa
File: ylSLVbGvXBrw0Xghp-UIN39BYVY.roa (raw, json)
Hash identifier: OCQ/Jdnggu2vH7fbqpFDbmD763vB7unyfZIskMu4lKw=
Subject key identifier: CA:54:8B:55:B1:AF:5C:1A:F0:D1:78:21:A7:E5:08:37:7F:41:61:56
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0CA4
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/ylSLVbGvXBrw0Xghp-UIN39BYVY.roa
Signing time: Fri 01 Sep 2023 09:59:26 +0000
ROA not before: Fri 01 Sep 2023 09:59:26 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18420
IP address blocks: 140.115.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3236 (0xca4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 1 09:59:26 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=CA548B55B1AF5C1AF0D17821A7E508377F416156
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:7d:76:c5:1f:57:7d:e8:27:48:9a:16:1d:35:
ec:eb:c0:45:1d:b8:c1:62:9e:48:02:6a:ae:68:b6:
a9:54:b2:bf:f3:86:44:8e:3c:68:b7:bf:74:72:96:
f9:c6:0c:5e:f1:94:10:b1:49:02:c2:39:52:83:50:
97:ba:3b:1b:4e:39:4e:bd:1b:81:00:53:f2:31:e2:
c3:65:2f:e4:dc:d3:26:e8:18:ef:53:ce:ad:ad:8e:
4a:eb:ed:bc:a4:8a:eb:21:db:ad:29:fd:71:45:26:
51:c2:24:0a:d8:fb:db:ab:4a:bb:c3:66:18:da:9a:
99:e6:41:b8:19:6a:86:cd:69:87:b2:9c:0e:a4:97:
c5:b1:d3:cf:0b:cb:50:91:34:5f:8a:54:ee:df:b3:
ab:ee:f9:3f:34:26:68:0e:e3:62:b8:84:e9:0b:f9:
3e:b2:2d:ba:7e:15:00:4f:9e:6d:1b:0e:e5:05:e9:
60:94:7d:68:b5:4e:8b:43:e1:65:40:65:45:fd:66:
50:bd:d4:1a:21:31:00:75:a2:8e:83:d2:2c:b0:07:
96:3c:c1:ea:5a:d4:43:03:7a:60:4f:f4:dc:b2:81:
31:16:60:5e:0a:02:2d:e6:46:da:c2:32:f8:fe:4e:
18:a1:2f:a8:3b:46:0f:3c:04:9d:ae:0b:64:57:ea:
ee:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:54:8B:55:B1:AF:5C:1A:F0:D1:78:21:A7:E5:08:37:7F:41:61:56
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/ylSLVbGvXBrw0Xghp-UIN39BYVY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.115.0.0/16
Signature Algorithm: sha256WithRSAEncryption
3a:87:d8:8d:5c:c6:a2:0f:0f:4c:cf:a7:dc:0b:5d:9f:10:b3:
b6:01:f2:20:27:64:04:b0:0d:39:e8:31:c5:72:69:af:58:c9:
d7:c1:b6:93:06:0c:a0:b0:4a:44:95:8c:75:90:5c:3d:9e:f7:
c7:61:4c:8d:d1:13:9d:b4:7b:2f:5a:a8:a8:27:1a:14:b0:79:
49:4a:3e:6b:3d:91:1d:2c:0e:1f:39:5c:24:43:11:ff:38:61:
4d:9e:04:1e:89:0f:40:48:04:3d:cc:a7:17:27:f7:b3:bc:30:
d7:1f:c3:52:c9:8b:5d:97:76:89:4f:3b:7b:fb:e1:43:78:79:
ec:f0:84:f9:63:c5:04:40:cc:3c:66:4d:f4:69:c8:db:e5:79:
73:85:70:56:59:eb:63:27:f4:ac:c4:a7:f2:07:c3:c6:6c:f9:
79:49:e6:98:5a:42:51:c0:87:92:c7:9d:fb:a6:0f:e0:80:23:
1e:4a:bf:c3:76:37:17:26:cb:d5:b7:14:e8:7c:e6:09:fb:e0:
3d:66:be:69:92:7a:f5:cc:65:51:90:a4:c7:d6:b0:42:eb:9b:
18:b4:4c:ef:dd:bc:43:e0:3f:ed:de:20:e8:4d:08:6d:9c:bb:
44:17:5c:b7:ed:28:8b:17:e5:c9:4a:9b:95:d9:84:9c:c3:c9:
82:e6:cb:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:46:21 2025 by rpki-client