Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/BfZcKQaVCqSMGAT98wV7iMcxYks.roa
File: BfZcKQaVCqSMGAT98wV7iMcxYks.roa (raw, json)
Hash identifier: GXyG0BXpUwHtVFSr+5Du+xhp66Y/qEyGWzz+2LqugSI=
Subject key identifier: 05:F6:5C:29:06:95:0A:A4:8C:18:04:FD:F3:05:7B:88:C7:31:62:4B
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 07A0
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/BfZcKQaVCqSMGAT98wV7iMcxYks.roa
Signing time: Tue 29 Sep 2020 10:06:09 +0000
ROA not before: Tue 29 Sep 2020 10:06:09 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 103.234.204.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1952 (0x7a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Sep 29 10:06:09 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=05F65C2906950AA48C1804FDF3057B88C731624B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:f2:02:e6:6b:fd:70:87:18:1b:e2:7e:1c:89:
ed:cd:bb:b7:9a:f3:9c:f7:87:3d:12:e7:d2:69:cc:
b0:22:43:28:33:af:0b:46:53:5a:0f:51:3e:e6:82:
1c:8e:ef:87:9e:f1:95:0f:cf:1c:66:71:71:86:20:
4c:fa:5f:5f:8f:82:d7:1e:1e:cd:6c:86:45:a7:d7:
8d:7c:1a:10:b7:d7:3a:27:86:44:e4:e1:86:15:f9:
e9:ed:3d:4e:32:b0:f5:e4:ea:f3:88:1e:e2:7e:0b:
8e:16:32:11:a7:5f:79:d4:62:7f:fc:8d:9a:91:0b:
9a:87:13:9e:d3:b8:89:a5:ac:62:a7:28:07:7f:bd:
e3:ee:a1:a1:05:f7:1d:60:19:64:75:d3:25:9b:95:
93:0c:0e:68:35:28:01:3c:99:01:76:0e:42:50:38:
02:e6:35:d9:dc:d1:18:7e:4e:0e:f8:91:61:80:f4:
c5:82:99:43:c7:67:7c:82:93:71:64:e1:c2:d7:d5:
e9:8d:ed:3e:ee:8a:dc:5d:c5:ae:7f:23:d2:9f:52:
bf:07:af:c8:09:7e:f5:96:ff:df:83:03:c0:79:24:
d8:b6:59:2b:74:bc:43:0f:2f:15:2b:d5:68:a6:fa:
2e:44:5b:6d:69:0e:e2:a5:db:79:0f:0f:4d:83:3f:
79:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:F6:5C:29:06:95:0A:A4:8C:18:04:FD:F3:05:7B:88:C7:31:62:4B
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/BfZcKQaVCqSMGAT98wV7iMcxYks.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.234.204.0/22
Signature Algorithm: sha256WithRSAEncryption
77:af:e1:be:45:e0:a9:be:ce:0b:6a:41:97:de:08:4a:09:b8:
6c:93:4a:66:7c:9c:75:5a:a0:8c:18:05:95:ca:c8:29:df:8c:
06:56:3e:c3:96:aa:74:7a:69:ca:59:f6:d3:f5:bd:ca:02:b5:
12:e1:d4:2c:19:68:18:0e:74:ea:5b:7b:51:50:f5:92:04:39:
91:eb:d8:02:b5:9e:11:7a:21:d0:80:c6:94:f1:33:38:55:43:
57:af:6b:b1:1b:b2:f0:95:e6:83:30:07:34:4e:19:bf:41:1a:
2b:d9:cf:8b:96:40:19:22:0e:99:26:ce:e9:97:67:31:07:e6:
c0:28:47:94:8a:bf:e7:9a:d8:e4:55:3d:a1:35:a9:c8:21:4d:
a9:00:07:33:00:7f:1f:b2:9f:d6:17:00:7c:8e:8a:4f:3f:1d:
50:87:cb:09:b2:20:2b:90:86:07:7a:a6:d5:8b:23:27:4d:67:
78:e0:8c:da:09:71:c2:5f:88:08:c5:d1:e5:ca:20:27:54:23:
3e:87:fc:d0:23:90:a2:59:5e:81:90:de:75:c5:0b:57:d6:0e:
78:21:59:64:a6:d4:04:94:89:5b:2c:4b:65:a4:bd:ef:84:25:
39:7e:07:9d:c8:c6:2e:9e:ee:2a:13:75:40:a2:1e:8e:c4:6f:
e9:71:21:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org