Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/119GdXoOF7ynYzFFKuHiLWIEt2g.roa
File: 119GdXoOF7ynYzFFKuHiLWIEt2g.roa (raw, json)
Hash identifier: DMx1whx4NVhdDg3tw7W9O7gTJ2hWtuz7n3CdBODd8fg=
Subject key identifier: D7:5F:46:75:7A:0E:17:BC:A7:63:31:45:2A:E1:E2:2D:62:04:B7:68
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 09B5
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/119GdXoOF7ynYzFFKuHiLWIEt2g.roa
Signing time: Wed 29 Sep 2021 02:41:55 +0000
ROA not before: Wed 29 Sep 2021 02:41:55 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18419
IP address blocks: 150.129.228.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2485 (0x9b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Sep 29 02:41:55 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D75F46757A0E17BCA76331452AE1E22D6204B768
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:f5:86:a8:7e:cf:f6:29:b3:d8:11:3c:d4:08:
52:81:95:14:bf:1c:2f:39:f8:6f:63:03:34:d1:37:
32:01:79:1f:58:00:c1:02:b8:66:83:c2:a9:5d:bb:
07:3e:81:53:07:ff:c8:c0:80:ae:1a:d5:c5:3f:57:
88:fb:8f:fa:fb:89:56:40:af:89:e6:1b:42:e1:28:
60:80:b1:bd:8a:76:9c:f6:fb:e0:01:5b:cc:f9:60:
1b:c0:3a:86:b4:c6:d6:6b:f3:8c:a4:46:4a:0a:5b:
f2:f4:17:1a:83:65:4d:07:26:f4:07:2a:f0:a6:95:
c3:51:83:e8:6b:a1:4a:c8:60:b6:d4:98:b4:50:b4:
34:3a:a4:50:bb:80:06:c8:7f:85:bf:b3:66:3e:06:
24:34:f6:13:b6:10:90:d5:2b:5d:4f:dd:e1:0a:ab:
68:2b:4e:8b:a5:8f:d8:4e:7f:84:1f:d7:92:5f:8e:
0f:02:17:0f:df:25:63:aa:f5:b7:2d:2d:e0:9e:a8:
e5:1f:b3:d8:f0:c4:4a:c2:6e:52:a3:6d:67:16:3c:
43:0d:4e:e1:4a:6f:42:8a:3b:bc:18:f5:18:eb:2f:
37:9d:c7:34:63:41:39:17:cf:c3:95:3e:9f:c1:e4:
f1:4f:5a:25:97:18:91:1b:5d:9e:83:5f:54:3f:80:
3f:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:5F:46:75:7A:0E:17:BC:A7:63:31:45:2A:E1:E2:2D:62:04:B7:68
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/119GdXoOF7ynYzFFKuHiLWIEt2g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.129.228.0/22
Signature Algorithm: sha256WithRSAEncryption
09:ee:de:0c:be:15:c1:25:3b:62:b1:17:30:e1:22:6a:96:b6:
7f:af:66:8b:6a:d2:e5:a8:a6:21:7b:7c:ac:5a:fe:ce:4d:30:
77:ae:ec:a0:bb:fd:14:40:9c:82:c7:2f:28:54:82:2f:48:7b:
5c:81:70:8c:85:48:35:4c:ed:7e:aa:89:16:b1:dc:1c:d3:88:
3b:0c:d9:d7:3f:70:28:c3:38:df:63:cc:c8:92:fe:96:c6:95:
76:a2:50:95:19:86:69:73:bc:7f:44:41:ce:7b:c1:4d:0f:5f:
bd:7e:0c:c2:3f:71:8a:a0:f4:53:b7:03:02:60:aa:37:3f:58:
ab:d3:df:56:ef:fd:8e:21:b1:c6:42:68:c5:8d:47:41:3e:21:
5d:64:a2:51:9e:53:03:59:0a:d0:fc:aa:ba:f9:97:3b:91:fc:
b7:77:6c:2b:63:1f:51:69:02:76:69:e4:5d:67:c1:68:7b:96:
d4:49:0f:8b:03:6b:b8:6c:21:1b:b9:f4:09:68:3d:63:ea:d6:
e1:36:5c:35:8a:78:12:b7:ec:d1:a2:b5:55:62:59:d5:17:f1:
e3:03:37:16:b3:31:73:a2:a0:7c:b8:cc:86:5a:8b:51:1b:8f:
03:62:fe:b9:3a:8d:44:c2:fe:ff:c7:7a:dd:6d:b6:08:6e:3e:
0a:1b:ae:4b
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCbUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0JF
NkM2NTEzNTBFOEZBMUZDN0QwQTNFQUJDRjk4RjgxQjMxMTlEMzAeFw0yMTA5Mjkw
MjQxNTVaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEQ3NUY0Njc1N0EwRTE3
QkNBNzYzMzE0NTJBRTFFMjJENjIwNEI3NjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDT9Yaofs/2KbPYETzUCFKBlRS/HC85+G9jAzTRNzIBeR9YAMEC
uGaDwqlduwc+gVMH/8jAgK4a1cU/V4j7j/r7iVZAr4nmG0LhKGCAsb2Kdpz2++AB
W8z5YBvAOoa0xtZr84ykRkoKW/L0FxqDZU0HJvQHKvCmlcNRg+hroUrIYLbUmLRQ
tDQ6pFC7gAbIf4W/s2Y+BiQ09hO2EJDVK11P3eEKq2grToulj9hOf4Qf15Jfjg8C
Fw/fJWOq9bctLeCeqOUfs9jwxErCblKjbWcWPEMNTuFKb0KKO7wY9RjrLzedxzRj
QTkXz8OVPp/B5PFPWiWXGJEbXZ6DX1Q/gD9lAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQU119GdXoOF7ynYzFFKuHiLWIEt2gwHwYDVR0jBBgwFoAUO+bGUTUOj6H8fQo+
q8+Y+BsxGdMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0lHTUEv
Ty1iR1VUVU9qNkg4ZlFvLXE4LVktQnN4R2RNLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9PLWJHVVRVT2o2SDhmUW8tcTgtWS1Cc3hHZE0uY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSUdNQS8xMTlHZFhvT0Y3eW5ZekZGS3VI
aUxXSUV0Mmcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCloHk
MA0GCSqGSIb3DQEBCwUAA4IBAQAJ7t4MvhXBJTtisRcw4SJqlrZ/r2aLatLlqKYh
e3ysWv7OTTB3ruygu/0UQJyCxy8oVIIvSHtcgXCMhUg1TO1+qokWsdwc04g7DNnX
P3AowzjfY8zIkv6WxpV2olCVGYZpc7x/REHOe8FND1+9fgzCP3GKoPRTtwMCYKo3
P1ir099W7/2OIbHGQmjFjUdBPiFdZKJRnlMDWQrQ/Kq6+Zc7kfy3d2wrYx9RaQJ2
aeRdZ8Foe5bUSQ+LA2u4bCEbufQJaD1j6tbhNlw1ingSt+zRorVVYlnVF/HjAzcW
szFzoqB8uMyGWotRG48DYv65Oo1Ewv7/x3rdbbYIbj4KG65L
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org