Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/B8eoQErSFHKXlr2AfrGc3klF3a4.roa
File: B8eoQErSFHKXlr2AfrGc3klF3a4.roa (raw, json)
Hash identifier: +wSaPDVkCnMld5pJt5VkfCIDUDG1I0a1BZYcwiS4gnE=
Subject key identifier: 07:C7:A8:40:4A:D2:14:72:97:96:BD:80:7E:B1:9C:DE:49:45:DD:AE
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 09C3
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/B8eoQErSFHKXlr2AfrGc3klF3a4.roa
Signing time: Wed 29 Sep 2021 02:42:00 +0000
ROA not before: Wed 29 Sep 2021 02:42:00 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18419
IP address blocks: 124.109.112.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2499 (0x9c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Sep 29 02:42:00 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=07C7A8404AD214729796BD807EB19CDE4945DDAE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:2c:7e:3a:ff:55:ca:cd:b2:15:b8:23:61:45:
aa:0b:a5:3c:df:5c:9f:18:9c:65:df:e7:bc:33:0c:
b3:ca:ed:09:e5:d2:99:f2:d6:00:28:37:90:bd:27:
78:c3:d5:ba:a0:b8:58:2f:56:a7:1c:cc:f8:f0:61:
78:11:8e:8d:8e:4b:9a:b3:cb:fd:c4:d1:27:07:bb:
ee:77:cc:73:5f:8b:52:c1:96:89:fe:bb:0d:f2:9b:
a7:9c:02:fd:2d:87:5a:fd:41:a4:59:e2:07:f2:53:
eb:8d:ab:ed:a1:36:dd:45:df:92:cf:97:92:a5:fa:
8e:d6:f7:e1:6a:f1:d9:51:f0:19:93:d1:61:a7:e4:
59:a4:fb:fe:9d:7a:5d:a8:6a:ea:e5:a5:55:3d:c4:
f5:a4:c0:05:90:20:f6:8d:f3:c7:da:ae:d3:17:90:
05:50:d2:37:5e:9a:3f:4a:e9:de:6b:00:33:d9:06:
31:71:86:b7:68:79:c6:5b:24:89:60:c3:d2:87:7d:
51:e3:0d:c2:03:2e:a3:8c:21:8f:db:d2:95:32:85:
fe:8e:91:09:5d:cb:ec:c7:d9:61:45:4c:95:31:8e:
17:ea:f4:39:69:38:53:e9:dd:7d:d6:f3:1d:ff:8f:
fa:b5:6e:64:73:d4:47:7f:d3:fb:97:3b:67:f7:26:
46:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:C7:A8:40:4A:D2:14:72:97:96:BD:80:7E:B1:9C:DE:49:45:DD:AE
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/B8eoQErSFHKXlr2AfrGc3klF3a4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.109.112.0/20
Signature Algorithm: sha256WithRSAEncryption
1d:94:b5:ae:f4:f8:5b:c7:b0:76:80:b7:c3:e6:f2:e0:c4:87:
ea:69:99:36:e5:8b:be:b0:88:1d:3e:f6:00:39:7b:75:98:f7:
9a:48:11:93:c5:9c:53:03:38:14:b1:9e:40:77:8f:a7:8e:bb:
1b:51:9d:85:68:22:97:2a:5b:3d:83:35:2f:57:75:81:34:bb:
08:9d:7c:18:39:ab:6f:a5:39:7c:d7:ca:6a:bc:b8:4e:79:68:
b7:6f:9d:e5:f9:d0:d9:b3:a1:7d:b8:25:34:18:a3:e2:62:1d:
2d:bc:36:76:22:45:fb:69:ef:53:5e:c5:0b:6b:8b:41:8c:c2:
bf:d1:62:f1:49:60:c7:3e:00:48:9a:be:e2:c3:47:e0:47:eb:
95:7b:c0:77:0f:fe:29:f2:58:eb:1d:70:9e:e0:dd:09:ff:21:
23:8a:a0:0e:9b:a5:ec:c0:18:28:58:e2:a1:1b:5d:5f:6c:f0:
fa:d7:73:5b:13:7c:2c:69:c7:f5:3e:ff:85:f9:da:8e:c0:8e:
b0:7e:8e:2b:db:60:59:3f:c3:58:6f:39:ee:c8:77:34:1b:a3:
2a:c5:57:83:08:24:26:f2:75:ad:d8:80:e1:40:da:11:5b:42:
8c:b9:d2:db:90:0c:d6:67:0d:6c:45:68:36:67:35:e4:13:20:
87:85:75:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org