Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/12AiclkLFQkOZjYKxZLg3S9GFBw.roa
File: 12AiclkLFQkOZjYKxZLg3S9GFBw.roa (raw, json)
Hash identifier: 4Uc3u6T04Q6F/fUQlxaC4HzZCjvitQLjUrpkxCQsyug=
Subject key identifier: D7:60:22:72:59:0B:15:09:0E:66:36:0A:C5:92:E0:DD:2F:46:14:1C
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 0BC4
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/12AiclkLFQkOZjYKxZLg3S9GFBw.roa
Signing time: Fri 01 Sep 2023 09:45:04 +0000
ROA not before: Fri 01 Sep 2023 09:45:04 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 4780
IP address blocks: 150.129.72.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3012 (0xbc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Sep 1 09:45:04 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=D7602272590B15090E66360AC592E0DD2F46141C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:b3:2e:29:9a:4b:aa:14:9b:44:9d:7a:06:bb:
a6:4b:d7:c6:98:64:f1:97:6f:c0:38:43:8c:de:8d:
21:8d:b7:e8:5b:ec:36:d0:ca:43:1b:b3:d2:4b:93:
72:21:5b:ea:c3:b1:34:a9:c6:95:cd:e6:70:dc:b9:
f1:7c:87:8a:d2:7a:f0:30:ef:97:54:42:d7:3d:27:
47:cf:3b:c5:7c:2f:3e:25:fc:af:b7:19:6d:83:ae:
01:fb:7b:03:3b:5c:45:97:72:5d:f4:35:ee:60:c1:
83:d9:fe:da:ca:13:19:e9:58:a4:a9:d7:86:57:50:
02:f4:e0:0d:77:5c:0a:7a:82:29:de:12:df:26:c8:
ec:5a:5f:d1:d0:59:4b:1d:30:db:bd:3f:d6:5a:d7:
4a:b2:3a:a6:3c:e2:59:92:c9:71:03:7f:b8:39:29:
9c:f9:ba:a4:ac:9d:a2:94:aa:4b:c2:95:3b:fd:75:
1c:2e:e3:18:95:88:f0:5e:16:d8:44:37:28:19:ec:
0f:bc:c0:38:83:92:98:64:56:bb:0b:03:25:85:85:
c8:75:86:4b:13:4a:cb:a9:58:d8:a7:ed:33:df:f4:
52:93:cc:09:d8:1a:5a:e0:36:42:74:71:08:55:21:
80:a9:4b:58:71:6c:e6:f9:25:66:f5:21:11:b3:ff:
b3:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:60:22:72:59:0B:15:09:0E:66:36:0A:C5:92:E0:DD:2F:46:14:1C
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/12AiclkLFQkOZjYKxZLg3S9GFBw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.129.72.0/22
Signature Algorithm: sha256WithRSAEncryption
7c:3c:24:6f:c5:02:be:b4:fb:87:dd:85:ee:05:4b:3e:e3:87:
4c:f1:1e:ea:06:50:92:25:bc:66:ad:2d:44:e6:ab:c5:57:c5:
16:f0:df:f5:0e:aa:61:6a:34:dd:73:f3:be:d7:ce:b2:a5:5d:
97:19:94:7a:3c:fc:82:51:37:b8:ff:39:fa:e8:76:ab:ad:01:
92:c3:f9:0f:bc:6d:75:11:63:a0:76:4a:b6:29:d7:e5:c1:17:
85:be:68:05:4f:94:98:83:0c:dc:a1:11:a8:70:dc:41:be:62:
a9:1b:81:e7:74:cc:58:5f:cd:4d:7d:e0:19:02:56:3c:e0:aa:
0a:6d:85:c6:f3:1f:fc:1c:b8:7c:f7:41:75:a5:47:b7:09:a2:
4f:80:42:6f:f4:20:6e:dd:28:38:9a:bd:0f:c3:3c:6c:97:2f:
fb:9a:8a:7b:82:8a:66:3b:fa:ad:66:25:d1:77:5d:69:9b:77:
1a:6f:89:fb:56:d7:9c:54:93:9d:8f:10:7b:da:56:4b:13:e3:
88:ee:55:24:e6:2a:cd:bd:21:fa:b2:7f:b4:60:80:6c:2a:c2:
ad:c8:41:dc:31:62:21:32:cf:0c:a5:ad:1e:c8:d6:dd:4f:e7:
ea:a3:76:2f:a3:4c:7c:df:a0:11:d0:dc:18:2f:2a:40:c2:00:
b2:c3:07:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:00:42 2025 by rpki-client