Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/71JEjRNTJQAvLgp5i12ZL1TCH84.roa
File: 71JEjRNTJQAvLgp5i12ZL1TCH84.roa (raw, json)
Hash identifier: 2aIrl4rxAQVs1UV7wLdj6zuUaPMeGmHs/VoWXQ3iq7U=
Subject key identifier: EF:52:44:8D:13:53:25:00:2F:2E:0A:79:8B:5D:99:2F:54:C2:1F:CE
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 0916
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/71JEjRNTJQAvLgp5i12ZL1TCH84.roa
Signing time: Sun 07 Feb 2021 12:59:11 +0000
ROA not before: Sun 07 Feb 2021 12:59:11 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 150.129.228.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2326 (0x916)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Feb 7 12:59:11 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=EF52448D135325002F2E0A798B5D992F54C21FCE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:a7:18:55:c0:aa:ff:dc:cf:18:93:81:02:39:
bd:ec:17:fe:a2:2c:71:05:80:8a:e5:f1:c2:db:4d:
14:9b:02:a5:12:76:d4:83:16:2a:ec:67:94:e8:3e:
6e:44:32:0d:84:32:7d:6a:06:f6:09:74:29:1e:eb:
ed:d2:7d:70:f9:b8:13:bd:a7:7f:96:6d:63:8d:37:
32:59:e1:5d:95:97:91:fa:29:fd:aa:08:90:bd:a9:
d1:54:67:3d:f8:f9:1c:41:05:60:8e:1b:37:00:bc:
76:49:ba:aa:b1:2b:f5:6a:02:d9:4a:02:a0:d1:a4:
88:59:80:27:c2:62:6d:9f:c0:13:76:57:42:71:8f:
1b:fb:ee:fd:eb:d0:a6:db:c9:a4:62:28:19:c3:e5:
24:ec:2d:9c:16:ad:f5:bd:75:b0:6a:1e:e6:8e:f1:
a1:5d:1f:21:68:56:f7:84:fc:30:8c:e5:12:e1:6b:
0c:f5:4c:b0:5e:a1:03:51:a1:79:9d:b7:07:57:ce:
d1:37:44:f4:73:5d:77:cf:ab:4b:94:c5:b8:45:b8:
1c:49:4a:59:a1:e5:a0:19:c0:be:3a:5a:ed:6f:66:
9a:d4:58:d1:36:b6:21:77:a4:59:39:38:85:b9:ad:
5c:10:21:00:12:cb:1c:11:ce:87:a1:10:85:05:33:
74:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:52:44:8D:13:53:25:00:2F:2E:0A:79:8B:5D:99:2F:54:C2:1F:CE
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/71JEjRNTJQAvLgp5i12ZL1TCH84.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.129.228.0/22
Signature Algorithm: sha256WithRSAEncryption
26:38:1a:e3:26:ce:f8:36:3f:33:7d:ed:f3:89:f2:dd:71:e1:
a4:89:6b:82:80:a8:aa:c2:cf:44:a4:91:fe:fd:2f:84:8e:49:
38:cc:87:31:3b:e1:cd:65:a7:07:8d:c5:d7:75:59:29:56:14:
ea:cc:43:69:28:07:c9:81:93:68:49:4d:d5:52:c7:29:8d:df:
4d:61:4d:95:0f:40:43:3e:9e:8b:34:71:e5:ed:92:9b:81:2a:
62:e4:b6:be:73:fb:35:cd:36:ba:e3:da:ec:bb:d9:0c:20:3a:
05:3a:88:a6:a4:ff:f4:82:ff:76:74:57:c7:d3:73:d1:f6:a5:
b2:fd:a8:69:5a:71:91:65:14:b2:ed:2a:d5:74:15:b4:c6:2c:
c6:3e:91:b8:fc:ea:fc:bf:72:e7:84:3a:21:3e:7a:19:50:f0:
42:a7:a7:52:f9:8d:b1:e9:02:3f:47:ca:63:57:d4:99:f1:59:
dc:18:a2:40:01:2d:ea:92:1c:36:93:a5:4b:9e:41:57:42:38:
cf:a2:92:fc:5e:72:48:85:f9:b5:b4:a3:a2:61:52:a2:b1:4a:
bd:d8:05:b3:a0:17:ea:89:64:9f:a6:ad:55:91:cd:8b:e8:62:
45:07:1d:ab:5c:98:43:71:e4:a0:28:c8:cb:18:f4:63:68:b2:
61:82:bf:58
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCRYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0JF
NkM2NTEzNTBFOEZBMUZDN0QwQTNFQUJDRjk4RjgxQjMxMTlEMzAeFw0yMTAyMDcx
MjU5MTFaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEVGNTI0NDhEMTM1MzI1
MDAyRjJFMEE3OThCNUQ5OTJGNTRDMjFGQ0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDgpxhVwKr/3M8Yk4ECOb3sF/6iLHEFgIrl8cLbTRSbAqUSdtSD
FirsZ5ToPm5EMg2EMn1qBvYJdCke6+3SfXD5uBO9p3+WbWONNzJZ4V2Vl5H6Kf2q
CJC9qdFUZz34+RxBBWCOGzcAvHZJuqqxK/VqAtlKAqDRpIhZgCfCYm2fwBN2V0Jx
jxv77v3r0KbbyaRiKBnD5STsLZwWrfW9dbBqHuaO8aFdHyFoVveE/DCM5RLhawz1
TLBeoQNRoXmdtwdXztE3RPRzXXfPq0uUxbhFuBxJSlmh5aAZwL46Wu1vZprUWNE2
tiF3pFk5OIW5rVwQIQASyxwRzoehEIUFM3QdAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQU71JEjRNTJQAvLgp5i12ZL1TCH84wHwYDVR0jBBgwFoAUO+bGUTUOj6H8fQo+
q8+Y+BsxGdMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0lHTUEv
Ty1iR1VUVU9qNkg4ZlFvLXE4LVktQnN4R2RNLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9PLWJHVVRVT2o2SDhmUW8tcTgtWS1Cc3hHZE0uY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSUdNQS83MUpFalJOVEpRQXZMZ3A1aTEy
WkwxVENIODQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCloHk
MA0GCSqGSIb3DQEBCwUAA4IBAQAmOBrjJs74Nj8zfe3zifLdceGkiWuCgKiqws9E
pJH+/S+Ejkk4zIcxO+HNZacHjcXXdVkpVhTqzENpKAfJgZNoSU3VUscpjd9NYU2V
D0BDPp6LNHHl7ZKbgSpi5La+c/s1zTa649rsu9kMIDoFOoimpP/0gv92dFfH03PR
9qWy/ahpWnGRZRSy7SrVdBW0xizGPpG4/Or8v3LnhDohPnoZUPBCp6dS+Y2x6QI/
R8pjV9SZ8VncGKJAAS3qkhw2k6VLnkFXQjjPopL8XnJIhfm1tKOiYVKisUq92AWz
oBfqiWSfpq1Vkc2L6GJFBx2rXJhDceSgKMjLGPRjaLJhgr9Y
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org