Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/z98kOgPZtaodMZlKW1kRuaiu804.roa
File: z98kOgPZtaodMZlKW1kRuaiu804.roa (raw, json)
Hash identifier: XXMzenyFexu/+eQU/paJHzCHOFBFTB23Y7XMLmiR+V0=
Subject key identifier: CF:DF:24:3A:03:D9:B5:AA:1D:31:99:4A:5B:59:11:B9:A8:AE:F3:4E
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 07B9
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/z98kOgPZtaodMZlKW1kRuaiu804.roa
Signing time: Tue 29 Sep 2020 10:06:48 +0000
ROA not before: Tue 29 Sep 2020 10:06:48 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 1659
IP address blocks: 140.112.0.0/12 maxlen: 12
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1977 (0x7b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 29 10:06:48 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=CFDF243A03D9B5AA1D31994A5B5911B9A8AEF34E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:c2:9d:2f:2c:0e:ef:b8:4d:64:d0:9d:d7:29:
3a:94:a8:83:89:08:77:90:87:a4:62:b3:69:15:7c:
c8:64:7d:52:b6:24:89:2d:e8:b2:8d:ed:89:af:61:
8b:2b:dd:98:47:b4:01:48:ba:1e:8d:59:40:a5:37:
a9:1d:dd:0c:ee:fb:02:dc:93:1b:38:3c:16:dd:cc:
9c:69:28:cf:75:bc:69:98:28:b1:c3:fc:6a:a4:41:
f6:83:c1:b1:b3:d1:e0:2d:96:79:de:02:29:9f:8d:
7f:79:5c:3a:19:18:3c:56:dc:e9:cc:c5:7b:44:3f:
fd:a4:82:91:b9:8e:64:cb:4d:b2:73:b4:d3:78:95:
82:1a:96:b8:25:98:92:5c:93:11:fa:75:de:a4:0f:
82:0c:b5:6d:80:d9:33:1f:d5:6a:9e:e4:92:7e:7e:
49:aa:9f:59:33:9f:90:3d:f7:ff:b5:fd:a5:f2:e0:
34:25:3e:1b:0e:61:70:13:5b:1a:c4:62:d1:ea:a1:
df:6f:39:e7:ae:53:e3:bc:6f:7f:69:aa:7f:81:69:
38:42:41:82:36:bd:f9:59:d0:05:7f:90:9c:c1:0d:
d5:ab:62:51:87:64:7b:01:97:64:92:e9:7e:b3:28:
52:52:08:31:d6:0f:81:4b:7f:94:2c:db:e0:4c:27:
02:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:DF:24:3A:03:D9:B5:AA:1D:31:99:4A:5B:59:11:B9:A8:AE:F3:4E
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/z98kOgPZtaodMZlKW1kRuaiu804.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.112.0.0/12
Signature Algorithm: sha256WithRSAEncryption
3f:5e:91:ca:42:58:89:92:02:68:2d:9c:57:ca:35:cb:f8:f9:
ef:f9:6b:9c:71:80:7b:d1:d1:82:99:b2:f1:ad:8c:b1:07:e2:
50:b6:8b:6c:1b:ef:0c:29:ea:9a:34:ee:9f:7d:d5:ff:fc:ed:
90:e5:2d:94:39:69:70:38:b7:66:a2:80:0d:28:58:c1:90:76:
79:f2:3a:01:fd:fb:f2:96:a1:62:41:61:bc:e3:fc:55:af:1b:
f4:20:27:2e:ed:80:f6:02:31:19:94:2e:09:a4:a5:12:8c:ea:
5a:8d:9e:bd:87:ea:fb:3e:bd:98:07:9f:a6:8b:65:c1:d4:87:
30:4c:29:05:2b:7f:5a:72:5a:47:06:9b:4b:aa:d8:5a:e2:52:
7e:cb:47:5b:06:d2:d0:e1:aa:1d:fd:1f:80:ac:34:89:5b:45:
9c:d7:9d:fc:45:ff:a9:be:ad:b9:a4:46:b5:dd:0c:1a:fa:80:
7c:64:37:06:53:82:9b:d1:5c:38:7c:5a:62:8e:ad:d3:0b:d0:
eb:17:f3:3a:35:d5:9c:3f:c5:d0:4d:16:66:b7:93:7e:0c:62:
cc:d7:b6:b9:3e:76:c6:6d:e3:a5:ab:e8:13:c1:d9:91:df:41:
54:e2:e7:9f:cc:89:a8:fd:40:cc:59:35:cb:0b:11:c9:67:12:
ef:72:1d:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org