Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/3vSPsD-HXeCwalPIgYWViuk-1F0.roa
File: 3vSPsD-HXeCwalPIgYWViuk-1F0.roa (raw, json)
Hash identifier: 62RAn2IzZTqs2Kvn141VNoZ94vi2rLZRve8SEYpPWts=
Subject key identifier: DE:F4:8F:B0:3F:87:5D:E0:B0:6A:53:C8:81:85:95:8A:E9:3E:D4:5D
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 079F
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/3vSPsD-HXeCwalPIgYWViuk-1F0.roa
Signing time: Tue 29 Sep 2020 10:06:09 +0000
ROA not before: Tue 29 Sep 2020 10:06:09 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18419
IP address blocks: 103.234.204.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1951 (0x79f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Sep 29 10:06:09 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=DEF48FB03F875DE0B06A53C88185958AE93ED45D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:c5:94:9d:76:89:3f:cc:d9:56:25:6b:5c:51:
ba:2a:e1:25:f0:d9:7a:7a:c7:50:3d:9f:17:11:dc:
1d:53:87:f8:1a:a2:66:ff:52:d1:53:44:f5:bd:23:
5c:6f:53:14:3c:d1:98:c7:30:63:a4:69:01:8e:28:
69:89:02:2b:4a:a3:57:94:b9:16:14:24:c4:83:aa:
10:8f:65:21:6a:6a:0d:85:5f:3e:9d:ae:3b:62:4b:
74:52:b4:1c:80:c9:98:f7:58:5a:99:1f:17:51:bf:
44:c2:a4:c5:a8:ca:fe:81:99:73:be:61:7b:f9:00:
fd:0d:f7:1b:25:02:17:b9:09:d2:87:0b:b7:dc:e0:
b5:9c:46:1f:fa:ca:cb:e9:82:09:d9:a8:13:cf:31:
90:4f:d6:43:90:f4:b0:93:60:ae:f5:8e:5f:30:e8:
18:d1:7d:4a:ef:b4:87:23:ab:46:e7:35:82:d9:d2:
9e:7a:5b:ff:4c:dc:ee:cc:1a:64:fa:96:83:9a:69:
4b:6a:17:34:be:09:40:93:90:2f:91:a7:ee:cc:30:
1d:e2:58:72:16:66:30:34:3e:9a:64:0c:ee:77:c9:
e1:ba:0a:ef:d4:c3:a4:46:4a:72:70:76:5b:39:82:
75:55:40:93:c7:78:50:9c:f1:e0:ca:54:30:23:f1:
76:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:F4:8F:B0:3F:87:5D:E0:B0:6A:53:C8:81:85:95:8A:E9:3E:D4:5D
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/3vSPsD-HXeCwalPIgYWViuk-1F0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.234.204.0/22
Signature Algorithm: sha256WithRSAEncryption
39:68:00:c4:44:b9:7a:78:7a:3d:1d:3a:22:11:f4:fc:7c:8c:
ab:f3:bd:c4:68:d9:d3:36:0d:9d:6f:66:1c:9e:0b:55:c6:41:
7f:ae:69:9e:27:ef:9d:c3:54:66:cf:b9:56:0c:39:ed:c1:8b:
8f:e8:b8:cc:5d:86:01:98:df:9a:eb:dd:3c:9a:f2:b4:6c:ae:
e7:24:7e:45:71:38:98:3c:71:c2:67:e9:6d:95:97:9f:2d:30:
57:82:a3:ef:a6:eb:7e:3b:f5:8f:08:06:83:16:cd:66:fb:7e:
af:8f:fb:24:df:84:f6:f6:87:f5:91:3b:0a:61:45:b8:02:63:
37:98:13:cb:4d:34:42:7d:16:bb:cb:41:26:ea:ad:fc:a0:f0:
f8:6e:1d:72:68:f1:7e:fc:41:63:ff:22:7a:cf:d5:97:e4:ec:
ac:a0:30:2c:16:02:99:87:f6:0b:a2:96:a5:08:16:6f:6e:e3:
00:4f:e1:33:a7:94:c9:f1:ad:ba:28:eb:2f:b7:5a:40:d2:fb:
4b:ea:ad:e6:07:b2:64:da:ad:90:d8:7f:73:c7:c8:0e:d5:36:
62:9b:de:aa:6b:15:f9:88:8a:30:23:d5:7d:71:b2:38:1f:36:
22:01:7a:b6:0b:86:8d:e2:ba:56:a6:f9:35:72:73:8f:7c:88:
0e:31:5c:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:36:23 2025 by rpki-client