Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/Gzpvc01m5Mc_LjpLcGhHBL_Qx-g.roa
File: Gzpvc01m5Mc_LjpLcGhHBL_Qx-g.roa (raw, json)
Hash identifier: XH+Lpd9wS4TXpfM+A1pcXBs+gO+K+N6bfOdl6U3jFao=
Subject key identifier: 1B:3A:6F:73:4D:66:E4:C7:3F:2E:3A:4B:70:68:47:04:BF:D0:C7:E8
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 08FA
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/Gzpvc01m5Mc_LjpLcGhHBL_Qx-g.roa
Signing time: Sun 07 Feb 2021 11:49:16 +0000
ROA not before: Sun 07 Feb 2021 11:49:16 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 124.109.112.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2298 (0x8fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Feb 7 11:49:16 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=1B3A6F734D66E4C73F2E3A4B70684704BFD0C7E8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:4b:fb:fb:ab:54:bc:33:73:2d:87:ec:49:00:
39:5c:23:de:ec:d4:78:e1:7a:cd:6c:1e:ba:ab:a5:
80:e3:58:d2:12:50:73:2b:02:4b:6f:6d:9e:52:e4:
b1:46:f3:e1:71:43:2d:bf:04:8b:a1:b1:55:dd:83:
de:13:bf:a2:5c:d7:b8:1c:79:73:a2:94:12:b2:1d:
d8:78:b7:1e:e5:53:c8:ef:3a:b3:d8:da:43:a8:13:
b7:6a:60:4b:3c:0f:88:6f:13:64:61:e1:5c:b4:1d:
18:91:7b:c8:6e:a4:d4:34:d2:19:ec:aa:65:6d:db:
b9:97:ec:18:5e:8e:5f:15:08:69:c2:95:d5:a6:90:
9d:36:48:7b:95:0f:54:3c:05:03:94:98:d8:ee:80:
af:76:38:3b:10:c4:96:50:54:80:22:85:d7:f5:86:
15:1f:c0:7f:e9:6e:20:b7:63:60:f8:55:a8:ef:2f:
89:32:10:b4:fe:83:ed:8b:b4:26:ed:d1:49:d5:25:
a4:27:d5:36:0b:00:80:8a:fa:07:ed:47:f5:a5:be:
ed:2c:a8:12:ad:65:e0:b9:dd:e0:83:da:c1:80:f7:
92:fd:d2:97:66:8c:5a:59:de:d5:f1:fe:b3:9a:e1:
04:79:d8:51:a9:0f:51:eb:9f:35:d0:57:52:39:d7:
9d:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:3A:6F:73:4D:66:E4:C7:3F:2E:3A:4B:70:68:47:04:BF:D0:C7:E8
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/Gzpvc01m5Mc_LjpLcGhHBL_Qx-g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.109.112.0/20
Signature Algorithm: sha256WithRSAEncryption
74:fb:b2:f0:74:c0:d1:3e:f1:d7:82:df:80:46:2c:6f:3f:27:
70:ce:f5:14:e5:7c:d2:b9:bf:9b:77:5b:d0:01:f7:ec:db:81:
1f:f4:ee:d0:f0:82:44:d7:74:6d:f0:94:72:f4:40:78:18:29:
02:38:d3:a7:2b:db:29:3a:02:d4:68:1b:8e:d6:23:0e:f5:61:
bd:03:d3:c1:80:13:6e:d5:54:80:ce:14:e3:67:4f:3b:12:07:
96:38:d5:91:4c:98:de:ee:32:dd:e9:9d:79:04:f2:31:27:5d:
0a:42:0a:c1:69:ef:23:f7:92:42:77:c0:75:37:3b:5a:63:81:
a9:b9:ac:a7:58:ca:84:2e:bf:3e:c2:9b:21:40:9d:a1:a0:51:
6b:e0:09:5e:b8:16:36:b9:5b:90:8d:04:fa:af:a7:aa:2c:2d:
5b:19:cc:67:ec:f8:c9:a9:b6:6d:de:38:6d:87:9e:1e:77:5e:
e7:80:09:97:3a:5a:c5:5f:a3:d8:16:61:89:30:a2:66:a5:f6:
c1:5a:b3:bd:9e:9c:8b:42:3e:01:f6:48:5d:8c:8d:03:bd:38:
45:22:2b:42:22:ea:26:22:77:65:c0:81:0b:ba:d4:05:e6:91:
d8:d4:4b:ef:28:24:55:2f:9a:86:5b:18:7b:08:d8:0a:72:87:
4c:90:cc:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org