Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/0VUJUwKh-DhZPIEsVzQlaL_1HLc.roa
File: 0VUJUwKh-DhZPIEsVzQlaL_1HLc.roa (raw, json)
Hash identifier: 5CRVveub+wlKsdwi1JFSCP5cu3a0v8CnaIOiVC+4h+g=
Subject key identifier: D1:55:09:53:02:A1:F8:38:59:3C:81:2C:57:34:25:68:BF:F5:1C:B7
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 09B7
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/0VUJUwKh-DhZPIEsVzQlaL_1HLc.roa
Signing time: Wed 29 Sep 2021 02:41:56 +0000
ROA not before: Wed 29 Sep 2021 02:41:56 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18419
IP address blocks: 103.234.204.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2487 (0x9b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Sep 29 02:41:56 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D155095302A1F838593C812C57342568BFF51CB7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:33:cf:c1:9e:b4:1b:31:fb:c9:69:d1:cd:44:
90:7a:45:23:e6:31:df:ac:70:30:ea:f7:92:78:7b:
19:15:d4:7a:24:95:0f:24:5d:9f:3d:2c:8c:6e:61:
91:9a:b3:ad:3c:a6:e8:81:f5:56:25:51:3a:2c:57:
3c:24:3a:ce:2a:dd:30:3e:ee:5c:81:cc:fe:9f:ee:
58:9b:8b:d2:3e:79:6c:b1:a8:41:43:cc:fb:d3:bb:
56:b1:a0:ce:47:d8:6d:24:99:8f:2c:6a:1e:fd:a0:
4d:32:73:d2:42:d2:a4:18:16:af:11:77:5d:f8:63:
31:3c:12:ab:35:77:5a:56:47:80:db:a6:66:61:f6:
c1:47:7e:2b:6e:bf:99:8e:3e:98:7f:c0:a9:82:36:
08:7a:0d:57:10:14:d1:33:bd:7d:d2:e2:39:00:89:
b1:d2:59:80:96:1e:99:9c:76:80:00:23:26:5f:da:
e4:b7:51:79:61:c2:2b:b7:f5:69:23:3f:33:70:84:
9b:f6:78:76:10:5f:48:ee:c9:6e:34:8f:b1:20:c2:
e7:c7:e4:13:15:b8:78:31:56:0f:f8:9b:57:e8:47:
0d:88:35:9c:a0:55:f7:fc:d3:b1:db:a3:51:4e:4c:
89:76:1b:cb:bf:7b:fe:47:8e:5c:26:47:63:e5:27:
90:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:55:09:53:02:A1:F8:38:59:3C:81:2C:57:34:25:68:BF:F5:1C:B7
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/0VUJUwKh-DhZPIEsVzQlaL_1HLc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.234.204.0/22
Signature Algorithm: sha256WithRSAEncryption
56:6c:4d:90:0d:ee:98:41:f6:d9:d3:ca:3a:29:20:96:ef:59:
2f:fe:79:70:9d:20:6a:56:63:d4:f7:21:f9:13:90:f1:68:38:
a6:e7:8c:7a:5a:fe:ae:6e:43:4b:60:f6:85:5a:a8:e7:df:2c:
aa:87:2d:aa:0f:34:7e:4d:47:19:75:54:68:28:fd:01:31:f7:
6e:2b:2d:ad:c6:e9:4f:f4:eb:c6:ed:a9:7c:61:80:a6:68:1a:
49:7a:ce:ad:eb:37:b9:55:f7:48:55:9a:e0:61:bf:15:83:20:
22:26:e7:f5:6c:9a:b0:1e:2e:db:58:76:38:36:05:04:e0:27:
eb:42:6a:95:85:bb:46:b4:4c:b2:2a:d1:b9:4d:91:da:fd:50:
84:bc:f7:a0:4c:e7:e3:09:49:34:db:30:cb:f7:3c:60:2a:88:
3d:1e:ef:c1:4b:7c:d8:80:6d:d0:da:3d:26:fb:78:70:98:2e:
0b:ee:36:8e:59:eb:01:76:a8:f3:8f:9f:34:76:59:73:88:6b:
95:a1:d8:4d:36:88:ed:39:9e:39:a5:8a:66:0a:71:50:be:d2:
7e:8b:bf:da:d0:26:b9:2b:11:8f:0b:5c:a7:fd:ac:ed:28:7d:
7e:7d:db:03:c1:25:50:94:f9:4a:34:3f:c5:39:90:80:1f:c9:
d1:d8:01:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org