Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/0RhhGiI4XqcE5Fg0EYR9TxHj9Qw.roa
File: 0RhhGiI4XqcE5Fg0EYR9TxHj9Qw.roa (raw, json)
Hash identifier: 8hu8pMlWCNkpHBuIe2dH26BY7hBMXKEVvGivwhUjn70=
Subject key identifier: D1:18:61:1A:22:38:5E:A7:04:E4:58:34:11:84:7D:4F:11:E3:F5:0C
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 0AB1
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/0RhhGiI4XqcE5Fg0EYR9TxHj9Qw.roa
Signing time: Thu 15 Sep 2022 02:41:45 +0000
ROA not before: Thu 15 Sep 2022 02:41:45 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18419
IP address blocks: 124.109.112.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2737 (0xab1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Sep 15 02:41:45 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D118611A22385EA704E4583411847D4F11E3F50C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:03:4e:82:3d:d6:55:e6:8e:ee:a0:5f:e9:0f:
81:f5:95:d4:33:a9:70:e5:e1:f0:fc:c7:03:b6:b1:
06:6f:b2:20:a4:13:88:58:c0:22:26:1c:fa:c9:73:
b9:0d:45:12:93:71:82:61:80:48:98:93:3f:de:a1:
57:1c:02:96:e9:9f:90:c8:ea:00:44:42:e4:92:04:
f8:d3:9b:bb:65:5e:40:21:62:b0:27:c9:0d:89:30:
f8:bb:a2:a2:15:85:98:d1:8a:69:0e:ca:6c:cb:73:
36:55:94:4c:b7:1d:ea:db:ec:d5:6f:52:4b:79:2c:
de:aa:b6:47:a2:9b:bc:18:76:36:c2:6e:ab:5d:36:
1f:fe:52:1d:33:43:2d:d9:73:aa:59:78:d2:ad:82:
9d:b3:85:f9:2c:a5:92:73:1e:8f:a2:52:68:11:b1:
1f:f5:b4:81:0a:d3:34:fc:e4:22:36:6e:ba:56:42:
62:54:69:39:72:8a:f2:2b:7e:19:44:40:0f:cc:27:
0c:05:4b:d3:0d:dd:75:0f:51:d7:05:9a:e1:84:f4:
71:d8:2f:c7:2f:d2:74:06:75:5e:1c:76:72:e3:ba:
77:43:36:36:7a:b8:be:b9:1b:c6:a7:e4:a2:8b:d8:
a7:f5:05:59:ba:35:33:01:73:f5:40:c4:fe:79:85:
1d:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:18:61:1A:22:38:5E:A7:04:E4:58:34:11:84:7D:4F:11:E3:F5:0C
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/0RhhGiI4XqcE5Fg0EYR9TxHj9Qw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.109.112.0/20
Signature Algorithm: sha256WithRSAEncryption
a2:27:0b:f5:d4:39:15:0f:67:72:56:9b:cd:73:78:c0:e7:66:
00:14:d4:79:f8:d3:bb:e6:96:4c:5a:d4:2a:5b:41:2f:19:df:
58:d7:17:7e:33:f6:19:f2:26:7d:ad:78:fe:44:08:6b:7a:6c:
50:c7:91:c2:e9:ac:f9:bb:80:19:4a:9c:3e:fe:5a:17:0c:2e:
71:e1:b5:96:a8:03:46:17:4d:f6:1a:b0:e1:9d:5c:fc:ee:70:
6d:4e:42:bd:ec:85:1f:bd:0a:ce:c4:cf:ee:8a:20:5e:2b:10:
07:b0:30:d9:18:ff:d8:89:8a:d5:54:81:b1:f0:de:19:4f:98:
9d:c5:f9:ec:c3:ed:ce:4a:f1:21:17:a8:b5:82:11:d8:de:70:
9a:a1:03:83:97:53:26:12:c3:47:17:60:8a:08:1a:15:20:4c:
1b:14:c7:ab:5d:f4:aa:a6:65:02:d4:30:2b:41:6f:44:db:9f:
3b:0a:71:18:de:58:69:27:3e:4f:20:76:97:d4:7f:da:47:17:
07:d1:35:73:00:84:b8:8b:47:57:d4:51:d1:3d:a4:57:9e:c4:
5a:2e:b3:bd:23:04:1c:86:36:8b:06:14:cf:dc:47:9f:9e:ec:
a8:7b:c7:57:04:cd:7f:de:45:b4:06:f0:11:bc:b0:5d:d4:a9:
9e:09:71:01
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCrEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0JF
NkM2NTEzNTBFOEZBMUZDN0QwQTNFQUJDRjk4RjgxQjMxMTlEMzAeFw0yMjA5MTUw
MjQxNDVaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEQxMTg2MTFBMjIzODVF
QTcwNEU0NTgzNDExODQ3RDRGMTFFM0Y1MEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCjA06CPdZV5o7uoF/pD4H1ldQzqXDl4fD8xwO2sQZvsiCkE4hY
wCImHPrJc7kNRRKTcYJhgEiYkz/eoVccApbpn5DI6gBEQuSSBPjTm7tlXkAhYrAn
yQ2JMPi7oqIVhZjRimkOymzLczZVlEy3Herb7NVvUkt5LN6qtkeim7wYdjbCbqtd
Nh/+Uh0zQy3Zc6pZeNKtgp2zhfkspZJzHo+iUmgRsR/1tIEK0zT85CI2brpWQmJU
aTlyivIrfhlEQA/MJwwFS9MN3XUPUdcFmuGE9HHYL8cv0nQGdV4cdnLjundDNjZ6
uL65G8an5KKL2Kf1BVm6NTMBc/VAxP55hR2LAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQU0RhhGiI4XqcE5Fg0EYR9TxHj9QwwHwYDVR0jBBgwFoAUO+bGUTUOj6H8fQo+
q8+Y+BsxGdMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0lHTUEv
Ty1iR1VUVU9qNkg4ZlFvLXE4LVktQnN4R2RNLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9PLWJHVVRVT2o2SDhmUW8tcTgtWS1Cc3hHZE0uY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSUdNQS8wUmhoR2lJNFhxY0U1RmcwRVlS
OVR4SGo5UXcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEfG1w
MA0GCSqGSIb3DQEBCwUAA4IBAQCiJwv11DkVD2dyVpvNc3jA52YAFNR5+NO75pZM
WtQqW0EvGd9Y1xd+M/YZ8iZ9rXj+RAhremxQx5HC6az5u4AZSpw+/loXDC5x4bWW
qANGF032GrDhnVz87nBtTkK97IUfvQrOxM/uiiBeKxAHsDDZGP/YiYrVVIGx8N4Z
T5idxfnsw+3OSvEhF6i1ghHY3nCaoQODl1MmEsNHF2CKCBoVIEwbFMerXfSqpmUC
1DArQW9E2587CnEY3lhpJz5PIHaX1H/aRxcH0TVzAIS4i0dX1FHRPaRXnsRaLrO9
IwQchjaLBhTP3Eefnuyoe8dXBM1/3kW0BvARvLBd1KmeCXEB
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org