Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/3VY-Z9Od2Dd6S6C-EM8P-bhOfrU.roa
File: 3VY-Z9Od2Dd6S6C-EM8P-bhOfrU.roa (raw, json)
Hash identifier: ftDO6Y7Ms+NkROMjpBpSeSQwU+7+SF3Zb/kM66jaLcc=
Subject key identifier: DD:56:3E:67:D3:9D:D8:37:7A:4B:A0:BE:10:CF:0F:F9:B8:4E:7E:B5
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 0AB1
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/3VY-Z9Od2Dd6S6C-EM8P-bhOfrU.roa
Signing time: Thu 15 Sep 2022 02:41:47 +0000
ROA not before: Thu 15 Sep 2022 02:41:47 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18419
IP address blocks: 103.234.228.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2737 (0xab1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Sep 15 02:41:47 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=DD563E67D39DD8377A4BA0BE10CF0FF9B84E7EB5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:55:c9:20:79:db:13:63:28:58:d7:4a:ea:46:
b3:92:91:91:ca:6e:a2:26:7a:04:e9:40:c0:33:b5:
95:d9:72:df:5b:07:70:8c:67:1f:68:8d:c2:3a:b5:
66:7e:a4:8e:8c:d5:4c:09:65:aa:26:2a:7e:5d:4f:
23:24:39:0f:4b:19:4b:fd:a6:d0:f2:f7:07:66:00:
71:52:35:eb:6c:5f:d9:dc:7f:19:46:74:22:0d:4e:
ba:9b:d1:bd:14:d8:8e:d8:11:fc:96:c2:f4:f2:9d:
24:37:32:cc:f8:50:13:37:98:ed:14:89:93:5d:22:
c4:ed:1d:34:6c:f1:1f:aa:ed:ab:06:9a:18:4f:98:
cc:38:f6:db:10:88:ef:1e:c6:30:63:39:52:a2:e4:
90:28:f1:07:34:0f:0c:dc:ed:08:27:f5:97:4b:3c:
4c:01:ad:3c:cd:02:be:56:c9:bd:f1:0b:d1:37:1c:
4b:af:d0:bf:63:3f:fb:bd:4d:16:b8:4e:61:35:59:
d1:24:63:32:9b:1a:6b:e7:1b:06:38:93:7e:a9:21:
d8:0f:0e:ec:a2:01:8f:f1:6b:36:fe:49:8f:08:f0:
d0:21:6c:a8:b7:1c:c5:c1:41:76:74:19:82:62:b7:
e9:b2:62:62:7c:bf:f6:10:6e:82:69:c1:cc:37:2a:
38:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:56:3E:67:D3:9D:D8:37:7A:4B:A0:BE:10:CF:0F:F9:B8:4E:7E:B5
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/3VY-Z9Od2Dd6S6C-EM8P-bhOfrU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.234.228.0/22
Signature Algorithm: sha256WithRSAEncryption
6a:d9:5c:f4:e5:b3:60:c5:e5:58:21:1b:c6:80:43:e9:b2:ad:
f3:65:02:33:27:8d:7a:fb:42:66:5d:23:db:1c:06:ee:92:b2:
77:b2:37:cb:9e:38:23:78:f5:93:d1:ca:c9:a7:3f:8c:c3:8d:
ce:5f:7a:db:b3:5c:9d:26:30:f9:70:17:05:d9:40:10:5b:af:
a4:e1:2f:fc:bf:a1:3e:4f:dd:51:db:c5:73:be:91:60:41:c2:
f6:73:37:89:98:22:7f:95:32:6f:59:a7:fd:b4:66:33:e6:e6:
4b:c2:51:42:2a:0b:93:ad:f3:cb:da:5e:01:44:f0:e0:53:71:
88:0a:57:36:9f:46:37:78:5a:cb:3b:d6:b2:1f:d3:06:23:da:
1e:c8:a0:0e:59:ea:64:d7:cf:ce:d4:4d:30:50:2c:cf:a8:38:
eb:f5:77:c6:fb:66:ef:8a:03:9c:4c:35:27:38:b7:76:a9:7c:
d1:9c:e8:ec:69:fa:12:f6:58:e7:48:54:9e:e9:3a:1d:11:4d:
cd:73:c4:b1:f5:de:c0:0d:0c:d0:c5:22:c1:e9:50:27:ed:0c:
2d:38:80:d4:3b:8b:75:e0:7e:34:f3:66:fc:52:0c:85:c0:06:
1b:02:2d:86:79:df:55:9b:c0:c9:4f:f4:76:6a:58:d1:97:24:
dc:bf:25:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org