Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/B8fr2-LiD79soB08kmmeDmn5oEc.roa
File: B8fr2-LiD79soB08kmmeDmn5oEc.roa (raw, json)
Hash identifier: URSx48vE0KrQpJxBxiEOgkDH4JD2p/Z9wkWlmdDalxs=
Subject key identifier: 07:C7:EB:DB:E2:E2:0F:BF:6C:A0:1D:3C:92:69:9E:0E:69:F9:A0:47
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 07A1
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/B8fr2-LiD79soB08kmmeDmn5oEc.roa
Signing time: Tue 29 Sep 2020 10:06:10 +0000
ROA not before: Tue 29 Sep 2020 10:06:10 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18419
IP address blocks: 150.129.228.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1953 (0x7a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Sep 29 10:06:10 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=07C7EBDBE2E20FBF6CA01D3C92699E0E69F9A047
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:f9:7a:7b:1e:10:32:c9:14:c7:36:c7:1b:7b:
fb:62:76:85:e0:43:62:c3:02:cf:af:f6:00:28:61:
9a:c7:28:1f:7d:f5:e9:36:d3:f8:50:22:bc:04:fa:
d8:75:8e:96:d5:2c:cd:8a:5e:ca:fb:b9:4c:b1:e9:
b3:05:e2:25:0e:e1:b8:92:f7:ce:b7:70:e1:02:09:
5e:7b:90:41:36:f8:8c:6a:ed:e9:c7:9b:05:c7:8f:
8d:93:98:e5:03:0e:ed:15:ed:6c:a6:32:c7:4f:01:
0b:07:bb:e6:04:88:67:bd:0a:4c:2b:6a:d5:d0:32:
78:11:bf:c2:ff:a8:04:4b:d7:84:9d:ff:d2:87:84:
d5:f2:80:19:b4:17:2b:e6:c0:87:26:65:a2:bc:32:
39:8b:9b:ea:b1:d6:9e:ad:ca:d3:ac:74:03:b0:db:
79:39:95:8d:5d:7d:45:8e:02:b7:67:20:09:f5:d5:
2d:de:29:95:03:b3:a2:dc:17:aa:81:da:e8:23:8f:
6e:da:9e:dd:f4:b9:6b:cf:4b:fc:c3:96:5a:22:b5:
57:06:aa:ef:4a:c9:d9:b5:a9:a3:f1:dc:32:64:6b:
c8:b1:68:09:f5:10:31:70:10:ab:d2:3f:4a:a0:80:
5d:92:7c:51:5d:8c:40:3a:ba:a3:b9:92:ee:35:c1:
24:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:C7:EB:DB:E2:E2:0F:BF:6C:A0:1D:3C:92:69:9E:0E:69:F9:A0:47
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/B8fr2-LiD79soB08kmmeDmn5oEc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.129.228.0/22
Signature Algorithm: sha256WithRSAEncryption
a1:59:05:d0:aa:4a:81:30:28:5c:2d:77:26:fd:ff:11:26:d5:
60:60:7f:86:bd:a1:19:e9:7e:33:06:0f:4a:d4:10:8e:d5:95:
0c:8f:d7:66:6b:5d:ff:32:cf:0e:22:ff:f1:eb:a4:3c:41:fd:
68:6a:96:da:11:cd:f9:b7:08:72:01:b5:20:f5:0c:75:ed:fd:
04:80:ea:94:2e:86:61:77:da:29:44:74:71:f1:5a:e2:d3:4b:
5e:45:a8:e9:67:be:e0:f9:b6:e0:bd:fe:43:02:fa:86:9a:2e:
c8:1c:55:c4:c9:25:69:ed:26:a5:06:13:b6:c1:a0:7f:12:0c:
81:ac:34:ac:15:bc:35:81:fe:93:42:62:5c:a6:31:b3:88:91:
e5:62:e0:bd:af:37:01:e1:75:a3:53:de:77:d6:b4:bd:f3:d5:
11:46:92:9b:6f:7d:cd:e5:18:48:36:a7:a6:4e:0e:e6:33:3d:
b9:4f:be:0b:8c:5d:5f:a0:e8:1f:52:18:2e:e7:4c:0e:02:9f:
20:6f:78:27:01:f8:79:5e:f5:4b:1b:76:b2:ac:07:f7:fe:f2:
e2:95:4e:6e:ab:bd:cc:73:d6:9c:0c:2c:8a:05:ba:2d:63:53:
9e:6a:d1:f1:6e:1a:56:d0:ad:49:ea:af:45:e2:6d:88:23:73:
98:db:fd:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org