Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/IxGejJeVtKA-gBqtzLhJ2b36oRM.roa
File: IxGejJeVtKA-gBqtzLhJ2b36oRM.roa (raw, json)
Hash identifier: fmXHOCQ1ewvgw65iHwQpS0CFrRmECKmct/lVJzNjAXE=
Subject key identifier: 23:11:9E:8C:97:95:B4:A0:3E:80:1A:AD:CC:B8:49:D9:BD:FA:A1:13
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 08F6
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/IxGejJeVtKA-gBqtzLhJ2b36oRM.roa
Signing time: Sun 07 Feb 2021 11:49:13 +0000
ROA not before: Sun 07 Feb 2021 11:49:13 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 103.234.228.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2294 (0x8f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Feb 7 11:49:13 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=23119E8C9795B4A03E801AADCCB849D9BDFAA113
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:ea:fb:94:e1:7f:1a:b4:47:83:36:08:36:0c:
4d:31:67:75:dc:fe:55:14:34:66:49:47:8f:80:ae:
a8:9e:16:50:fb:1a:86:1f:ce:53:e3:b5:40:11:c0:
d1:ab:88:80:ea:5e:fc:7d:c5:40:aa:38:3d:39:67:
2b:b6:f6:30:67:58:ee:e7:89:e9:83:16:d9:ed:ee:
ee:77:28:41:84:37:b9:73:b5:7a:c6:43:76:46:5a:
62:1b:ca:0e:f9:22:d0:57:a7:af:bc:01:15:52:94:
90:28:1b:1c:ec:dd:2e:cc:f1:df:0b:8c:88:db:dc:
14:7e:9a:02:2c:47:e9:d8:2b:38:c3:35:18:2f:73:
74:c3:77:6c:fd:42:9a:6b:ca:75:5c:86:5e:e6:59:
09:a9:d3:67:73:04:4c:5b:63:18:b4:88:03:f8:99:
71:d9:2b:42:d5:a1:95:1a:e9:b9:0e:78:e1:0c:13:
68:6b:5b:fb:cf:6d:2f:26:0c:80:a7:07:59:04:86:
53:e4:d7:67:f6:0c:8f:04:a2:63:95:05:0b:1a:db:
d8:e7:01:c2:a4:59:11:15:80:d8:ad:fe:45:20:3a:
18:61:d9:6a:54:be:90:76:bc:7c:ac:01:eb:47:28:
35:d2:91:3f:cf:a6:33:6e:a0:7e:18:a6:a6:b9:24:
f6:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:11:9E:8C:97:95:B4:A0:3E:80:1A:AD:CC:B8:49:D9:BD:FA:A1:13
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/IxGejJeVtKA-gBqtzLhJ2b36oRM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.234.228.0/22
Signature Algorithm: sha256WithRSAEncryption
af:34:65:5b:3f:ca:5c:a1:8f:34:8e:ff:c9:c1:3f:8d:3a:b3:
45:7d:5d:95:66:33:25:d8:47:d7:ed:a2:d7:c1:d6:ec:09:17:
93:1b:3d:50:61:83:8f:1e:2a:d9:29:0e:c5:29:10:a8:d7:18:
11:1a:2b:a6:fb:7d:ce:6f:a5:7d:01:6e:90:ea:ac:66:35:b3:
31:0f:9b:a9:b8:6b:87:3b:7d:59:64:e0:1a:5f:e3:54:56:54:
32:f2:36:05:3b:89:cb:e4:a1:d1:cf:4f:eb:ff:b8:7e:af:bf:
93:83:8b:74:de:92:87:a3:46:45:3c:98:a9:68:4d:c1:7a:08:
91:73:af:bb:37:0d:db:e5:e1:cb:b5:f8:16:fd:1c:b9:1e:ce:
06:3e:b0:e8:e2:49:94:60:5f:5c:5b:92:74:cb:e4:1f:0e:6f:
f2:6a:d5:9e:70:fb:b1:a9:86:3a:ec:a2:f0:e0:1b:62:ca:6f:
74:da:3e:56:44:7c:dd:39:5f:98:1e:12:3a:d2:11:c6:16:9e:
7d:e5:60:7f:22:52:7d:6b:3c:64:c8:d3:8b:4b:7a:2d:3e:02:
f6:d5:59:d4:bc:6b:66:87:3e:8f:b4:39:e1:46:10:f3:7e:3f:
f1:2a:02:83:5a:a2:ba:b8:cc:87:e2:d5:1c:76:cf:72:42:72:
e8:f1:5d:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org