Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/6maLzJ6cFKF-g9HIhj93AbWkYGQ.roa
File: 6maLzJ6cFKF-g9HIhj93AbWkYGQ.roa (raw, json)
Hash identifier: JQ9fBbKkVeLtVhYd5mi/AyNWfoQ4dG4X27d9hkAYYeE=
Subject key identifier: EA:66:8B:CC:9E:9C:14:A1:7E:83:D1:C8:86:3F:77:01:B5:A4:60:64
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 09C0
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/6maLzJ6cFKF-g9HIhj93AbWkYGQ.roa
Signing time: Wed 29 Sep 2021 02:41:59 +0000
ROA not before: Wed 29 Sep 2021 02:41:59 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 150.129.72.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2496 (0x9c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Sep 29 02:41:59 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=EA668BCC9E9C14A17E83D1C8863F7701B5A46064
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:3a:ae:9c:61:82:24:4c:27:a2:d5:97:ea:89:
db:76:a0:06:a6:ec:5f:78:ad:d9:5a:85:3b:15:99:
f5:bd:d4:dc:c4:f6:8c:b3:fe:d0:0e:ce:15:78:9a:
aa:02:16:b5:a7:cd:c0:ad:28:3c:09:2e:77:4c:af:
f7:8c:8f:0d:5e:b2:82:10:9a:f6:95:b0:ab:23:a2:
ec:c3:24:85:b9:b9:49:7b:25:96:df:e4:bd:0b:e9:
16:6c:9b:da:18:b2:f7:ad:e4:86:6f:2a:e2:40:9f:
c8:09:93:55:0c:c8:85:fd:02:04:f6:4b:4a:4e:19:
c8:29:d5:fd:62:50:46:f1:0f:6e:a0:81:98:d8:b4:
e1:b0:6a:3c:4a:5b:d3:21:32:8b:92:fc:87:16:06:
79:0b:f5:b8:90:db:04:ef:c6:ee:e2:37:25:70:68:
9a:64:49:66:ad:c1:c6:ce:e4:37:a4:ca:e8:26:64:
97:fc:7a:d9:e6:c7:f2:f5:20:8f:b5:f4:54:7d:cb:
b6:83:a5:c4:30:de:9f:2f:02:2c:dc:fb:a2:3d:05:
53:5b:24:2c:dc:68:25:1c:8e:0f:7e:49:e7:a7:0e:
87:e1:3d:af:23:87:e0:ea:0a:66:fc:02:cf:6e:49:
a5:b0:eb:1c:99:2b:e1:6e:1d:ba:17:89:a5:5f:16:
65:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:66:8B:CC:9E:9C:14:A1:7E:83:D1:C8:86:3F:77:01:B5:A4:60:64
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/6maLzJ6cFKF-g9HIhj93AbWkYGQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.129.72.0/22
Signature Algorithm: sha256WithRSAEncryption
95:9b:3e:91:d2:e8:c6:f4:53:3f:08:2c:c7:a4:90:de:d4:33:
aa:36:ee:9a:9e:7c:15:ae:15:e0:e7:bc:2a:d2:b0:12:7d:7d:
a6:11:9f:b9:72:7f:55:33:c6:ed:8c:45:ef:c2:63:88:32:c0:
59:85:c2:f1:f7:ca:cd:69:97:ee:09:55:8e:f3:f8:40:51:8d:
8b:8c:cf:19:e6:93:ad:23:1c:79:24:83:77:c0:1e:e6:51:a9:
af:b0:e4:a7:68:ca:24:38:61:4e:80:1b:63:ba:b1:b2:74:02:
cd:fc:39:2b:d8:d3:ec:19:60:a9:fb:d3:9a:9c:6d:9a:62:74:
00:ee:91:dd:01:b4:b3:e2:cf:d2:cc:d3:30:61:4f:e7:fb:07:
9f:3d:0c:bb:71:7c:a5:1a:2f:dc:21:37:dc:54:fb:18:d3:9d:
17:bd:05:02:7d:d4:74:6e:89:03:3b:b8:fd:de:ea:b9:87:cb:
58:32:3c:eb:51:ab:56:ed:9e:98:75:6f:56:82:ed:b6:db:31:
05:e7:07:b6:d1:35:63:31:5a:81:c3:6f:13:f5:c0:ce:51:15:
01:92:6a:ae:47:5f:50:df:b8:7b:71:08:ee:21:fc:bb:9f:20:
a4:80:9c:31:35:25:4b:7c:0d:a3:60:29:5a:02:87:2d:21:a3:
ba:46:5e:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org