Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/8bphCvUNEZxJvllIIJ4LWKILvN8.roa
File: 8bphCvUNEZxJvllIIJ4LWKILvN8.roa (raw, json)
Hash identifier: f5JQM1kUA/J5S4LqDuGYdHHz2u5+cMc/lSaFPNRzAC0=
Subject key identifier: F1:BA:61:0A:F5:0D:11:9C:49:BE:59:48:20:9E:0B:58:A2:0B:BC:DF
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 0798
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/8bphCvUNEZxJvllIIJ4LWKILvN8.roa
Signing time: Tue 29 Sep 2020 10:06:06 +0000
ROA not before: Tue 29 Sep 2020 10:06:06 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 103.234.228.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1944 (0x798)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Sep 29 10:06:06 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F1BA610AF50D119C49BE5948209E0B58A20BBCDF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:91:e6:09:e3:e9:16:39:04:6c:fe:5a:c1:5b:
e6:5f:bf:19:d9:da:63:5b:ac:c7:48:e3:a0:4d:ab:
f6:b2:04:f5:58:b0:e7:f2:06:35:c2:47:02:c0:a3:
ca:5a:7c:51:d0:55:f3:e0:75:63:82:bd:e7:66:ee:
6a:b6:76:cf:3f:85:1e:c7:9f:5b:c1:03:36:7b:40:
3b:20:0a:33:e0:20:dd:38:09:60:78:4b:e9:43:7c:
f5:bf:db:1a:52:18:42:34:57:c2:b7:13:72:6f:5f:
ee:35:9a:87:0f:f6:23:1a:fd:60:5e:a4:61:32:cf:
d1:72:9f:82:72:73:e3:f5:bb:2d:79:be:96:97:3b:
4b:e3:31:30:fd:a2:c5:a9:be:c7:be:c9:bb:48:2f:
19:95:23:e6:41:05:de:46:36:ee:c1:29:39:df:76:
6b:66:71:1a:86:0f:34:cc:41:45:95:94:29:9d:38:
9d:4f:db:f5:20:96:ab:6c:e2:3f:fc:09:57:56:5e:
e0:53:30:57:d1:d0:b4:2a:98:3d:76:2b:4d:20:38:
89:34:92:0e:dd:68:a9:3a:2d:5a:53:10:6e:8c:40:
80:ef:c6:21:7a:39:8a:27:ef:3b:b5:75:da:29:bf:
22:70:9d:72:9b:8c:39:b8:ed:fd:6f:3d:f4:57:52:
6d:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:BA:61:0A:F5:0D:11:9C:49:BE:59:48:20:9E:0B:58:A2:0B:BC:DF
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/8bphCvUNEZxJvllIIJ4LWKILvN8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.234.228.0/22
Signature Algorithm: sha256WithRSAEncryption
76:22:73:b9:26:1e:95:20:be:bc:ec:4c:30:65:8f:03:dc:7f:
c0:b7:eb:be:3e:5f:16:ec:0b:92:70:17:ab:bb:31:40:69:cd:
4c:ff:36:61:6d:4c:5c:0b:8d:7c:e1:19:26:fc:67:ce:7c:0f:
45:9b:03:a2:0e:89:58:13:2b:0a:f6:de:00:1b:fa:56:39:e2:
d9:33:91:40:1b:42:e8:91:89:55:0e:50:86:d3:42:be:cc:70:
8d:67:c1:72:ae:2c:ee:51:23:7c:ea:d9:a9:6b:a5:26:20:2a:
0d:c4:c1:cd:9f:b4:d5:17:db:55:16:bc:4f:10:e5:ca:a5:cd:
d5:25:5a:ea:a8:ca:bf:8a:ba:06:8c:80:15:43:74:9d:99:2a:
f0:6d:43:dd:38:74:a5:0b:59:35:e3:83:c8:03:ec:a0:3b:7e:
ce:04:5c:c3:8b:69:c6:01:93:0a:39:da:8f:07:5a:11:a9:43:
ce:26:1b:6e:61:9b:8a:00:35:e2:20:09:60:40:aa:ea:75:97:
5b:af:f6:f6:1b:1c:f8:a2:a0:08:6b:ba:0d:1e:a4:59:53:78:
8e:32:ab:b6:00:b5:e3:5b:85:d2:5f:ae:2a:b4:59:33:a0:58:
58:b3:09:ac:28:3b:dc:18:6b:93:f7:4b:b0:18:86:b1:14:a3:
a5:8a:fa:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org