Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/6eH0oJjyXcbW9t20F5sKaD5i_n4.roa
File: 6eH0oJjyXcbW9t20F5sKaD5i_n4.roa (raw, json)
Hash identifier: 4AMw1tcIzSrpwjxP42hactltfbe3FtTjOQpUDltUrW0=
Subject key identifier: E9:E1:F4:A0:98:F2:5D:C6:D6:F6:DD:B4:17:9B:0A:68:3E:62:FE:7E
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 09BB
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/6eH0oJjyXcbW9t20F5sKaD5i_n4.roa
Signing time: Wed 29 Sep 2021 02:41:58 +0000
ROA not before: Wed 29 Sep 2021 02:41:58 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18419
IP address blocks: 203.121.240.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2491 (0x9bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Sep 29 02:41:58 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=E9E1F4A098F25DC6D6F6DDB4179B0A683E62FE7E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:f2:e1:44:39:fc:58:b9:ca:0b:48:1d:ee:5d:
9d:a8:f3:e1:27:26:8c:bb:5c:77:eb:4a:84:8b:08:
44:00:e2:d9:dc:57:a7:62:e4:a1:73:cb:f6:d8:5c:
ad:17:68:9f:2d:b8:79:93:91:c8:e1:bf:f5:8c:23:
aa:23:17:5b:7e:a6:8e:27:e1:46:e7:52:ff:e5:74:
c4:54:cc:4e:fb:64:21:0a:ac:30:a3:a4:8c:0d:de:
87:72:78:e2:e3:05:7e:05:5c:17:cf:b8:66:97:24:
f3:4f:72:4b:c4:18:07:b3:6a:9d:d8:72:e1:a1:36:
11:c1:03:98:03:61:3c:f9:bd:7c:1f:77:7c:a8:7b:
1d:c0:64:d1:85:f1:70:eb:6e:5e:13:e8:61:1f:df:
40:d2:6d:fc:f5:96:23:80:60:26:4a:e6:21:f3:19:
41:95:a2:1a:88:8d:52:0c:0a:32:b0:08:95:85:74:
9c:b5:ca:33:02:1e:02:21:2d:69:9a:42:d3:81:ed:
db:ed:cc:0d:f1:06:88:12:cd:9e:57:bc:12:87:79:
58:f4:4d:9a:32:c5:22:65:cf:ad:94:46:88:c9:ca:
62:c0:ba:67:26:88:9a:b8:43:18:b6:4d:ab:d9:f3:
63:80:4c:e9:e9:32:14:1c:b0:e2:ab:00:44:62:ad:
d4:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:E1:F4:A0:98:F2:5D:C6:D6:F6:DD:B4:17:9B:0A:68:3E:62:FE:7E
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/6eH0oJjyXcbW9t20F5sKaD5i_n4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.121.240.0/20
Signature Algorithm: sha256WithRSAEncryption
92:a0:d8:08:7b:ae:19:2d:08:84:e8:cd:78:5a:16:7e:99:f4:
ba:b5:37:12:11:14:ca:a4:04:d8:12:9c:a9:1f:4a:a4:f7:b8:
59:2b:67:07:70:63:42:48:98:ae:49:26:ac:b4:13:51:5e:ab:
73:4c:a2:71:9a:52:b3:14:09:fb:d1:d3:90:75:76:69:5e:f7:
07:71:3d:24:ab:81:9a:8b:11:70:35:f9:19:e4:82:44:6c:b0:
d2:2a:32:ff:01:4c:31:3f:07:51:a0:88:f4:4f:76:f8:40:7c:
51:c5:4d:7b:38:92:48:b9:ee:62:13:ec:85:34:69:ef:1d:a4:
15:bd:26:af:09:b6:11:ac:a3:a5:57:99:b1:00:31:42:92:b8:
78:33:1a:1b:4a:db:b7:b3:ff:48:37:56:58:c9:2b:0d:c4:b6:
4d:ec:10:44:0f:4b:10:e8:50:ad:1e:ea:f2:55:8a:06:af:8e:
af:6f:f0:7f:a7:2b:85:68:7f:a4:5d:57:2c:24:a2:86:03:9c:
33:02:db:8a:75:b7:13:e7:63:01:c1:ad:ce:f6:07:71:6a:7e:
8c:7f:a7:a9:f2:9d:28:12:f9:8a:c7:ae:69:01:b4:b5:a0:7c:
7f:79:da:12:3a:24:b2:e5:48:c0:be:f6:61:1f:f2:db:3b:28:
f0:c6:fe:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org