Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/NTEi4tmqSB52lnIlHb2WzKh2G4M.roa
File: NTEi4tmqSB52lnIlHb2WzKh2G4M.roa (raw, json)
Hash identifier: a+Q9C17H1rUZjWmB4tL/ntP07SqlCyiTPmQwbJPKXTo=
Subject key identifier: 35:31:22:E2:D9:AA:48:1E:76:96:72:25:1D:BD:96:CC:A8:76:1B:83
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 0AB1
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/NTEi4tmqSB52lnIlHb2WzKh2G4M.roa
Signing time: Thu 15 Sep 2022 02:41:48 +0000
ROA not before: Thu 15 Sep 2022 02:41:48 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18419
IP address blocks: 61.60.192.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2737 (0xab1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Sep 15 02:41:48 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=353122E2D9AA481E769672251DBD96CCA8761B83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:eb:48:49:e2:20:23:55:eb:3f:ed:1e:09:8d:
f5:93:45:ab:7e:49:2a:c1:05:b6:37:4c:c4:62:a2:
1e:d6:e6:0a:3a:89:d7:4a:1b:b6:78:61:58:fb:f8:
5e:0a:17:5a:58:3d:da:95:f9:a7:5f:e2:0e:43:ba:
aa:5f:d8:75:78:77:50:38:00:f9:68:06:8b:30:45:
f6:62:17:b5:a8:f5:59:e1:76:1b:d0:84:6c:ce:6d:
db:e6:9d:a2:95:db:03:75:25:47:73:12:9f:48:da:
c7:2d:fc:85:33:23:1d:bf:0c:6b:89:88:63:59:51:
82:b8:a6:1c:92:e7:b8:ff:28:60:0f:ec:37:0d:64:
81:e6:34:96:cf:00:bb:e7:f1:8f:50:a9:d0:c0:ef:
88:90:b4:77:f5:48:2d:47:65:67:bb:47:cc:42:a1:
55:f9:ab:5d:45:a6:f1:9f:97:69:78:78:87:40:3c:
82:f8:96:a7:1e:45:3c:78:2a:d2:3b:b4:0e:09:fa:
f3:6f:ed:4b:2d:9f:31:65:ee:4c:6e:59:04:02:18:
59:f0:65:d6:38:45:16:af:d8:90:bb:c7:25:8d:5f:
89:a8:a8:a3:06:16:7c:e9:ac:26:8d:af:01:81:ee:
6f:af:57:36:13:1e:e9:cc:11:5e:94:ad:17:51:85:
c8:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:31:22:E2:D9:AA:48:1E:76:96:72:25:1D:BD:96:CC:A8:76:1B:83
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/NTEi4tmqSB52lnIlHb2WzKh2G4M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.60.192.0/20
Signature Algorithm: sha256WithRSAEncryption
39:17:6c:69:d9:a6:73:fa:85:63:b2:b8:56:cb:9d:a7:bd:a7:
75:ab:29:5d:1e:ca:c3:ec:06:ee:d7:e9:48:a9:2c:ad:b0:d5:
1c:2d:e3:67:c2:64:a1:36:dc:9b:13:db:bf:b6:ff:9a:a2:ad:
60:70:91:0a:90:64:4f:71:bc:81:b7:0f:56:02:7a:87:a1:71:
57:b8:26:31:3a:37:d4:f2:0d:25:61:4d:3b:83:a4:fb:7a:97:
fe:8a:a4:d1:f8:d2:68:13:e6:75:ae:79:ae:fa:cc:a3:c6:78:
0a:67:52:a2:0b:a7:00:c9:e3:d7:42:44:01:cf:43:cc:2f:c1:
a3:7a:04:d7:b4:bd:52:14:bb:84:4b:82:41:60:a2:60:b2:70:
58:5a:dd:7c:43:2c:67:19:ff:1c:7b:d2:b9:8f:91:e8:ca:56:
a4:0c:6b:f9:91:c0:f0:d4:06:18:7d:07:05:86:2c:3f:09:0a:
b0:6c:ac:91:40:3c:73:0a:70:c6:8e:91:77:3b:df:ed:d7:ad:
c8:7d:82:a3:40:d0:7e:d5:ce:d6:b6:e9:58:a6:da:2b:94:7b:
7b:6c:ab:b9:bd:ea:8c:81:b3:88:4d:88:23:10:b5:f4:51:65:
7c:2e:b6:a9:8b:75:91:01:ea:07:f9:93:f7:bb:4a:d4:1f:01:
c3:9d:5e:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org