Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/H1xRAMfMMATqweMzwah4X2NUPe4.roa
File: H1xRAMfMMATqweMzwah4X2NUPe4.roa (raw, json)
Hash identifier: bSu8YaQZ39lemMXqXZc/I36MJez/7zuX9L9lfg6mrVw=
Subject key identifier: 1F:5C:51:00:C7:CC:30:04:EA:C1:E3:33:C1:A8:78:5F:63:54:3D:EE
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 09B6
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/H1xRAMfMMATqweMzwah4X2NUPe4.roa
Signing time: Wed 29 Sep 2021 02:41:56 +0000
ROA not before: Wed 29 Sep 2021 02:41:56 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 103.234.204.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2486 (0x9b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Sep 29 02:41:56 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=1F5C5100C7CC3004EAC1E333C1A8785F63543DEE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:5d:24:36:61:8c:fd:fa:eb:8a:6f:33:53:5f:
f9:e1:26:fb:51:3f:22:42:46:63:99:cd:41:33:0f:
da:b1:ab:9d:16:f2:8b:b1:db:a3:eb:f4:f7:7d:2b:
b7:c6:ce:d0:1b:88:da:70:4e:d7:e6:6c:39:94:23:
67:5a:a8:b2:f1:cd:ad:f5:53:b6:25:34:86:fa:a1:
eb:ce:6e:b0:dc:20:f0:ab:7a:4c:e3:37:fa:01:7c:
a6:c8:a2:61:e7:1d:1c:f5:b6:b5:03:ad:59:c4:b9:
43:71:f4:cd:5a:5a:27:1b:41:29:8a:66:1d:b3:4c:
28:cb:39:02:f8:a0:fc:2f:81:2e:b1:41:ef:01:02:
07:fe:1a:b8:2f:8d:c6:49:cc:15:63:04:c6:0c:a9:
cd:36:b4:52:54:23:d2:67:21:aa:50:52:04:54:75:
ae:6a:01:68:a7:b1:97:b9:af:da:41:c9:07:77:2d:
86:2b:8a:46:d9:a5:ce:0d:d2:08:89:46:4f:e6:09:
1b:4c:e8:08:77:8f:bc:b8:fc:99:1c:f9:43:9b:9d:
18:6e:24:3e:1d:75:76:66:cd:fc:eb:a7:3d:2a:55:
32:96:ae:c3:b4:08:8a:b7:f7:49:0f:2a:ee:0b:42:
8f:12:80:49:b9:57:50:32:74:b6:cf:b1:92:2d:ee:
ba:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:5C:51:00:C7:CC:30:04:EA:C1:E3:33:C1:A8:78:5F:63:54:3D:EE
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/H1xRAMfMMATqweMzwah4X2NUPe4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.234.204.0/22
Signature Algorithm: sha256WithRSAEncryption
7a:0a:4c:18:be:19:47:97:4b:74:bd:aa:63:c4:44:e9:7e:48:
55:e9:00:29:48:5f:9f:5f:c4:d7:49:9f:74:1c:48:55:ad:52:
18:e1:dc:4f:13:5a:23:f4:3a:a2:52:e2:92:3b:27:34:32:ba:
1d:90:c7:b0:68:4b:6a:64:a8:df:7d:10:2f:f1:6c:ef:21:d6:
6d:65:6d:d3:ea:fe:c9:83:9d:87:fd:39:0b:68:e8:41:42:e9:
21:06:55:86:80:d2:6e:d0:cd:28:77:00:8c:08:d9:c0:2c:a7:
05:c5:7a:e3:5a:4c:83:f1:5b:43:f2:01:a6:00:51:26:f1:4e:
9a:05:42:89:88:65:93:30:d9:3c:a1:da:4f:f0:a3:f7:91:e1:
d8:33:f5:20:8f:44:c0:65:7b:d7:6e:97:42:4f:fd:da:54:d0:
75:7f:ed:a3:e6:8f:ea:9c:80:9f:da:be:06:dd:a2:68:c8:db:
dd:60:b4:4b:7f:4c:39:08:e2:fb:9f:5c:e0:d4:0f:74:7d:36:
9c:a6:d9:67:89:c1:8c:89:79:9d:87:0f:3c:76:65:89:d7:33:
eb:fb:3d:16:1e:7d:36:d4:34:f6:14:67:fd:59:e5:1b:f1:36:
bb:29:98:bd:3a:68:d8:3b:8a:d2:75:54:50:6e:96:5f:02:d4:
1f:76:95:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org