Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/CxEjtDwA5fkBEP5wGORc5WTxFcM.roa
File: CxEjtDwA5fkBEP5wGORc5WTxFcM.roa (raw, json)
Hash identifier: XsNcT0lorvLGsYqy7CpYPZ5GnKUNU/0i5UqyIbivAZ8=
Subject key identifier: 0B:11:23:B4:3C:00:E5:F9:01:10:FE:70:18:E4:5C:E5:64:F1:15:C3
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 09BD
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/CxEjtDwA5fkBEP5wGORc5WTxFcM.roa
Signing time: Wed 29 Sep 2021 02:41:58 +0000
ROA not before: Wed 29 Sep 2021 02:41:58 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18419
IP address blocks: 203.121.224.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2493 (0x9bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Sep 29 02:41:58 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=0B1123B43C00E5F90110FE7018E45CE564F115C3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:97:78:71:0e:ab:88:4e:0d:cc:4d:d2:37:18:
73:28:19:43:51:a0:c8:f9:ee:97:ff:b6:2f:c0:af:
8b:03:90:0c:5e:f8:65:ae:40:a3:74:a3:14:ef:d0:
d1:f6:60:1d:a2:c4:a6:35:b8:15:ae:cc:db:cc:4a:
1e:7c:24:2e:5d:d0:3e:36:6f:e2:24:0e:ae:c4:d9:
22:9c:bc:0b:88:75:1a:9c:0d:6b:37:4d:f7:fb:69:
f7:9b:86:05:df:29:a3:05:1e:29:40:02:d0:88:3e:
f9:65:b3:1c:8d:3a:07:40:e3:fb:26:3c:a0:31:4e:
78:7f:ec:08:29:f4:09:95:32:51:08:54:e0:72:46:
b0:d5:e3:f0:f9:c7:8d:a0:0e:cb:1f:a5:ea:d8:d1:
5a:16:df:e1:e2:28:31:b7:6c:1a:da:21:9e:eb:79:
05:43:12:cf:c9:bf:2d:05:48:ef:a9:83:67:c2:97:
83:61:01:fb:ac:bd:71:14:0d:4f:40:3b:2b:e5:08:
94:08:0a:d3:eb:e0:8b:88:4e:6d:58:d8:0c:14:09:
b3:22:c1:1b:a1:07:b5:d7:a7:9b:18:0a:9d:fe:33:
81:08:0b:73:ec:64:02:63:73:18:6b:c0:a2:77:ef:
2d:e7:cf:5d:bc:ca:a5:ae:b3:3a:fc:4d:4c:84:b1:
9c:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:11:23:B4:3C:00:E5:F9:01:10:FE:70:18:E4:5C:E5:64:F1:15:C3
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/CxEjtDwA5fkBEP5wGORc5WTxFcM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.121.224.0/20
Signature Algorithm: sha256WithRSAEncryption
1d:66:00:1e:b1:14:3f:53:95:27:e0:a2:63:c3:6b:ba:01:27:
a9:ae:88:da:de:e2:4c:6f:a5:d0:d6:24:c9:98:5e:84:9f:91:
d2:39:21:c0:74:50:ff:3a:f4:26:61:57:88:06:79:8f:44:79:
5f:51:68:e2:72:b9:f2:d0:35:a0:4c:ad:dc:79:b9:2d:85:99:
52:25:d3:d6:25:03:54:fb:bb:05:c5:b8:c6:78:7f:f7:38:f4:
15:01:27:e2:2c:5e:c7:cd:c0:66:0b:36:ad:0b:61:0a:1f:d3:
d8:08:d7:f4:df:3d:2f:37:45:74:d9:91:65:dd:4a:de:ed:ec:
4f:ed:6d:c6:fd:2c:89:c6:e0:b6:8b:07:dd:6a:7f:1d:fc:f0:
ff:44:87:91:65:81:e0:42:d9:02:31:33:84:49:f2:32:b5:f7:
b3:e3:7e:b2:aa:bb:65:2c:6b:0f:a3:fb:4d:52:aa:b2:a1:f5:
ae:4a:06:98:c1:39:c0:02:b0:3c:f1:36:11:b8:30:57:de:9f:
1e:ed:e0:60:04:5a:e0:f0:a1:e4:46:fb:69:2d:30:5b:a2:13:
31:aa:69:06:20:50:01:c7:13:93:b7:ee:e7:f9:8f:a0:db:43:
52:34:a4:5f:34:23:2d:e5:e7:18:d3:00:db:ea:71:b8:51:70:
eb:a4:e0:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org