Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/8iFI0HRQMAB8rwTcKufeiiQr7Nk.roa
File: 8iFI0HRQMAB8rwTcKufeiiQr7Nk.roa (raw, json)
Hash identifier: cOOhyOqdqNW5VmaMoCmFLMCLGRROSNxV0be7ghykqB4=
Subject key identifier: F2:21:48:D0:74:50:30:00:7C:AF:04:DC:2A:E7:DE:8A:24:2B:EC:D9
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 09C6
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/8iFI0HRQMAB8rwTcKufeiiQr7Nk.roa
Signing time: Wed 29 Sep 2021 02:42:00 +0000
ROA not before: Wed 29 Sep 2021 02:42:00 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 2402:2580::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2502 (0x9c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Sep 29 02:42:00 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=F22148D0745030007CAF04DC2AE7DE8A242BECD9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:f9:d6:4c:15:a8:97:96:ef:df:21:07:9d:8a:
04:ad:74:d4:e4:68:5e:d3:80:99:82:c1:95:af:b6:
7f:5c:80:46:e7:56:e2:82:d5:2e:4e:24:09:ef:43:
58:59:74:2f:1b:b5:9e:a3:03:7a:81:fc:b5:81:93:
a7:a5:ee:89:42:7b:8d:7e:03:8b:99:69:f6:e3:4b:
93:33:3f:3c:a9:2c:d4:96:c1:2b:a1:dc:6a:b0:29:
81:b7:85:1d:09:da:21:5b:0e:ac:e0:74:da:c0:db:
2e:cb:70:73:9a:27:94:7b:a6:0a:aa:c1:6c:de:82:
9d:74:05:1b:dd:5b:6e:d3:e9:38:43:d3:e7:33:83:
90:9b:9e:78:46:1d:ef:a1:e0:6f:2a:10:ae:47:38:
b1:ca:07:d1:e9:d1:08:f6:4c:3d:82:e5:95:9c:99:
01:60:ad:5b:6b:63:ba:9a:61:6a:2e:87:84:da:90:
8d:ad:3e:77:ff:eb:7a:6b:08:7f:f4:d0:7a:df:7e:
b1:7d:b3:8c:81:48:11:f9:24:70:c0:75:d8:97:d1:
a9:0a:7b:89:2a:ca:d1:22:80:91:aa:d4:09:8f:d8:
81:ee:e1:0a:64:bc:ad:3e:de:15:71:95:8e:b4:eb:
8b:26:c0:c3:04:a1:db:e8:38:4d:b3:7c:97:45:3d:
9c:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:21:48:D0:74:50:30:00:7C:AF:04:DC:2A:E7:DE:8A:24:2B:EC:D9
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/8iFI0HRQMAB8rwTcKufeiiQr7Nk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2402:2580::/32
Signature Algorithm: sha256WithRSAEncryption
30:e6:30:f9:77:d1:66:7e:c4:43:83:73:46:62:72:06:75:5b:
b8:39:50:24:c6:b4:c8:01:75:ac:ba:b3:50:cf:ac:4a:18:a2:
50:c8:ff:2b:aa:97:ad:3d:1d:4e:0c:88:48:b5:62:80:c8:37:
58:aa:d3:f7:ff:77:ae:15:fa:dd:2d:48:2a:61:e6:6a:39:76:
02:47:3d:dd:02:94:17:2a:26:d4:cc:50:7e:ac:ab:9e:3a:94:
84:05:2d:ba:72:09:5a:23:b9:92:eb:8c:ee:fd:57:ad:f6:10:
d4:cc:75:a8:e0:e4:52:97:2e:97:90:9a:37:07:5b:90:0e:9a:
9f:2c:ef:4c:9a:ce:99:45:2f:c4:b9:cd:b1:b1:13:91:cb:fb:
59:69:f5:e0:ad:e1:ae:82:e6:22:e1:09:7d:f7:53:36:90:8a:
89:f1:ae:64:27:5b:97:e3:96:5e:6d:07:48:b0:af:86:62:29:
9e:87:49:23:8f:74:d1:20:ec:da:98:5f:0e:f4:56:1f:79:a0:
bb:ba:43:0d:a1:fb:35:59:21:53:ed:00:7f:41:f8:14:1e:8a:
45:6d:a9:cb:c5:75:e7:5a:3e:b6:fd:08:c3:3e:30:31:19:ab:
14:63:2a:f5:ed:14:af:a4:79:fa:dc:25:b2:e1:9c:c3:66:37:
1a:16:aa:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org