Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/zPjK2ciW03fngxyo9SvbwoIhfCQ.roa
File: zPjK2ciW03fngxyo9SvbwoIhfCQ.roa (raw, json)
Hash identifier: cxkh1oOFrkEKCCi2XF/s15Tgc3k3FoaERGRj6JkdMKY=
Subject key identifier: CC:F8:CA:D9:C8:96:D3:77:E7:83:1C:A8:F5:2B:DB:C2:82:21:7C:24
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0B8A
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/zPjK2ciW03fngxyo9SvbwoIhfCQ.roa
Signing time: Thu 15 Sep 2022 02:41:21 +0000
ROA not before: Thu 15 Sep 2022 02:41:21 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9916
IP address blocks: 140.129.64.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2954 (0xb8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 15 02:41:21 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=CCF8CAD9C896D377E7831CA8F52BDBC282217C24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:d1:57:8d:5b:2b:7e:4d:5c:63:cb:92:b2:9f:
da:55:f8:99:7b:34:72:9c:5a:ea:85:cc:b9:b8:37:
ca:c7:13:d3:5c:c0:83:7a:7e:8e:80:4a:0c:13:2a:
2c:3f:1b:50:f2:3f:a3:ad:4f:8a:c9:94:b1:89:38:
0c:bc:8e:58:49:23:49:bc:95:0e:a0:c5:41:e6:f7:
ee:e6:f3:df:b4:5e:dd:a3:49:3e:d4:0b:a1:10:56:
cb:53:eb:84:02:b2:4e:4b:e3:a0:d9:b3:e6:20:e1:
47:e7:b4:99:4b:ee:84:da:cf:a2:90:87:8c:cb:f4:
3d:00:af:61:b8:8c:56:dd:b8:7a:74:ed:ab:6e:c6:
a4:a9:f2:59:14:ed:f6:31:a5:52:05:03:0f:a7:97:
22:a5:7c:b9:18:02:c4:7c:b2:ee:0b:be:2b:29:ad:
b9:e3:f2:b9:d7:5a:94:e8:24:7f:c2:ba:7b:1c:c9:
4c:25:0b:ed:b4:df:02:bf:e8:dc:c1:d9:33:b1:42:
d7:c7:3a:0f:af:33:8b:19:f5:4d:be:4d:e5:80:64:
b6:c9:bf:8a:2f:f2:da:7f:62:b3:a4:ba:f9:42:43:
51:99:09:3b:e6:a5:7b:8c:04:24:e0:28:e8:bd:75:
f5:83:6d:15:de:01:ed:3a:2e:64:6a:d7:5d:a0:b9:
20:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:F8:CA:D9:C8:96:D3:77:E7:83:1C:A8:F5:2B:DB:C2:82:21:7C:24
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/zPjK2ciW03fngxyo9SvbwoIhfCQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.129.64.0/20
Signature Algorithm: sha256WithRSAEncryption
26:42:c0:11:3b:a4:4e:8b:10:9f:7d:a3:22:2c:79:12:0c:b5:
b5:3d:de:8d:5c:10:36:25:94:47:c1:45:d0:3a:22:ee:3d:64:
6d:e7:8c:8a:a1:9a:ee:c4:6c:32:98:b6:85:a6:14:e4:b9:61:
67:8c:b2:6a:14:67:76:f2:c6:41:e0:32:75:90:f2:13:6f:57:
52:b0:ed:24:ae:38:83:46:f8:c9:91:0f:1e:10:f8:f6:06:08:
92:ac:74:1c:a5:e5:b2:23:58:0b:80:21:52:47:b7:5e:37:a3:
bd:c5:51:2c:88:cc:aa:96:c2:f2:b2:3f:a8:51:4d:6e:b0:7c:
49:e4:f9:5a:96:f2:c2:7b:23:13:89:d3:36:9e:4f:52:8b:ff:
1d:5f:6f:8f:1c:45:75:8d:61:a6:8e:27:d1:66:d3:42:70:40:
f5:f2:02:4d:a8:92:59:58:56:3b:c7:4d:76:55:99:45:ba:b6:
90:7f:ac:48:47:77:76:c4:85:0f:90:91:7a:d5:f2:70:b1:23:
cf:82:f0:fc:c2:46:77:b8:6f:56:0a:9f:d5:e5:2d:20:a6:65:
24:d9:d8:1f:10:85:d4:1f:c9:c3:27:7c:54:74:25:8c:a8:98:
29:bb:2e:1a:42:f0:d8:77:e3:03:99:ad:b7:fb:32:fd:06:66:
df:38:57:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org