Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/K6mjxe87GliFggh5xHj02MCTNaM.roa
File: K6mjxe87GliFggh5xHj02MCTNaM.roa (raw, json)
Hash identifier: mHp22D7yDLk1bdFTdq8AA4ZVdIkLcBCpfTU/OtBrNEU=
Subject key identifier: 2B:A9:A3:C5:EF:3B:1A:58:85:82:08:79:C4:78:F4:D8:C0:93:35:A3
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 090A
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/K6mjxe87GliFggh5xHj02MCTNaM.roa
Signing time: Sun 07 Feb 2021 11:49:27 +0000
ROA not before: Sun 07 Feb 2021 11:49:27 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 203.121.240.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2314 (0x90a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Feb 7 11:49:27 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2BA9A3C5EF3B1A5885820879C478F4D8C09335A3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:f6:62:10:0c:78:92:3a:20:7f:29:03:0a:26:
cc:3a:67:0f:52:06:f8:ea:09:f0:26:a5:5b:d2:72:
93:b7:67:97:e3:d6:dd:78:6e:c3:f6:5b:3f:0d:06:
0e:ef:ed:8e:ea:c0:5b:80:d0:a6:eb:08:fa:12:8f:
a2:d6:f2:3f:53:0d:31:ad:dc:d1:f5:6a:c4:cb:15:
2d:c0:63:c2:3f:f5:83:95:9e:ff:b7:0e:94:b6:da:
c6:72:c5:cd:3c:b8:99:e1:be:b1:aa:06:73:2a:51:
44:a8:b2:74:51:e7:3a:7b:70:48:e7:0c:4d:4f:14:
25:2d:8d:df:a0:10:ee:f0:27:ca:60:41:3b:38:01:
95:e6:6f:06:a7:75:60:ad:79:40:c9:fb:37:ea:9a:
3f:59:85:74:93:4f:68:2d:74:65:39:cc:61:8b:9c:
b1:d3:39:81:e8:86:05:fc:65:f6:f8:53:38:12:d6:
95:4e:7f:dc:e6:da:a2:a0:b3:fd:47:d6:79:92:83:
ab:4b:60:ab:ad:6f:ac:24:d9:89:49:07:6a:b5:e3:
d9:18:21:f2:70:95:2a:d4:78:5d:fa:a1:cb:f4:b1:
7e:d4:a4:ed:17:62:52:c2:33:d7:32:70:65:d0:f0:
20:ef:af:b4:69:c0:c6:3b:66:87:ac:4c:7d:66:3c:
a7:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:A9:A3:C5:EF:3B:1A:58:85:82:08:79:C4:78:F4:D8:C0:93:35:A3
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/K6mjxe87GliFggh5xHj02MCTNaM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.121.240.0/20
Signature Algorithm: sha256WithRSAEncryption
6f:2b:d1:63:d1:2f:e5:18:66:35:47:f6:81:e2:0c:85:f1:9d:
b6:31:47:ff:db:c7:08:34:95:23:4a:92:cc:f2:ee:02:5b:e3:
92:76:31:27:9f:1d:21:fe:ee:c5:a7:5b:a9:07:40:e2:d3:2e:
8d:b3:f1:a8:c6:f0:23:a2:d4:b2:68:15:8f:14:84:b7:39:19:
7c:f6:28:a2:3f:d2:4d:f4:93:f1:83:03:1b:4a:08:fa:f0:f8:
ee:1e:d4:9a:35:58:52:e3:7a:7e:bb:be:8d:03:f3:06:fb:1f:
34:cc:16:17:ed:87:f4:21:09:78:56:7c:77:3f:62:c1:af:3d:
9e:e5:cf:58:2a:a7:f7:f5:74:ae:f1:66:22:c3:0e:87:83:59:
f9:6b:02:fb:6e:71:6b:b9:08:45:0b:55:da:e8:ad:13:a2:ab:
d9:5c:22:58:41:3b:4c:fb:af:34:1e:04:41:b7:bd:98:a9:4c:
df:1f:fd:b0:f5:67:3e:05:0f:3e:64:a3:18:5e:af:8d:1e:cc:
44:f8:b4:80:ca:20:5e:1a:a5:7d:dc:c8:39:15:cb:f7:ed:40:
0d:36:45:f1:63:95:ee:ee:66:96:25:70:a4:08:de:12:45:17:
13:f6:c8:af:0b:60:71:52:ce:c5:58:ed:e9:ef:a1:4a:7d:9f:
ed:92:97:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:50:57 2025 by rpki-client