Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/OMYxVAVikDUvWtB1xF3oZQm3bhY.roa
File: OMYxVAVikDUvWtB1xF3oZQm3bhY.roa (raw, json)
Hash identifier: uKm/esFO5D+ipbzoH2hjSs7fph0n1oosEV2iYvfr2QM=
Subject key identifier: 38:C6:31:54:05:62:90:35:2F:5A:D0:75:C4:5D:E8:65:09:B7:6E:16
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 09C2
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/OMYxVAVikDUvWtB1xF3oZQm3bhY.roa
Signing time: Wed 29 Sep 2021 02:42:00 +0000
ROA not before: Wed 29 Sep 2021 02:42:00 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 124.109.112.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2498 (0x9c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Sep 29 02:42:00 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=38C63154056290352F5AD075C45DE86509B76E16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:e0:f9:4a:4a:aa:c8:17:24:b0:7a:50:9f:1b:
a3:be:bc:7f:c1:83:c4:b9:ec:4a:e0:02:49:57:39:
84:5a:71:2f:e8:29:10:cd:77:7d:dd:36:62:53:ba:
aa:f8:e6:ad:e8:56:61:62:b7:ae:55:24:84:4c:31:
d9:dd:1f:76:7d:bf:cc:2b:d3:82:67:73:48:66:8c:
d9:5e:2b:f5:30:6c:ae:cf:c8:9a:e2:09:53:25:b1:
1e:d2:27:9f:2d:a7:25:29:13:15:31:cf:df:4a:63:
74:27:dc:32:13:e9:ca:38:21:88:3d:6b:99:4b:8c:
b7:44:93:3e:f1:5b:e9:6d:5c:44:bf:f7:d3:54:26:
93:f3:1e:a7:8b:60:2c:46:05:73:4f:e7:68:5c:0a:
79:83:34:60:26:06:b1:dc:14:40:73:56:52:75:cd:
cf:1c:09:b3:3c:52:74:cd:72:44:9e:61:cd:bb:b2:
97:63:70:f0:8d:51:c2:3c:01:51:d9:58:13:e1:9f:
88:43:25:ab:b1:b9:db:54:b0:82:78:e8:93:29:6d:
e9:18:7d:d1:66:cd:64:41:15:83:f9:78:9c:b9:0f:
54:14:bc:42:51:c2:ed:9f:87:cd:e4:82:e3:6a:fc:
96:bb:5c:47:8f:39:67:82:8f:a7:77:3d:97:b9:33:
81:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:C6:31:54:05:62:90:35:2F:5A:D0:75:C4:5D:E8:65:09:B7:6E:16
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/OMYxVAVikDUvWtB1xF3oZQm3bhY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.109.112.0/20
Signature Algorithm: sha256WithRSAEncryption
51:9a:8d:ce:94:3c:22:81:f5:df:09:33:39:2f:1b:71:65:6b:
f0:7d:09:a8:11:2d:65:90:6e:81:41:9c:65:e2:bc:d3:4e:5a:
b9:b6:fc:84:07:a6:68:11:23:40:9b:0f:ec:54:45:b0:13:37:
46:f4:0d:b9:f9:6e:ec:b2:d9:e5:80:4e:cb:48:c1:2d:bb:e6:
6b:b3:15:76:bd:5c:32:67:14:64:87:2a:89:b1:7a:66:b4:0b:
13:e1:ce:dc:9f:e1:01:cf:4c:81:ad:04:ec:a1:19:fb:82:8a:
78:43:91:83:55:49:1a:0e:c5:d7:de:91:0d:21:37:ec:3f:1c:
8e:d4:cb:bc:05:30:69:c9:2f:13:e4:97:0a:e9:21:e1:19:75:
36:49:7f:22:03:54:0b:2b:89:84:22:45:2f:fc:c8:6a:1c:36:
fd:f4:a0:f2:f7:8a:20:f3:3f:e3:d9:e1:4f:ec:7a:1c:1c:d7:
ee:c1:ad:31:6c:46:fa:7a:2f:a0:a7:c5:39:93:25:62:7f:f8:
0a:b7:e6:be:3a:08:3e:97:d5:a8:b6:40:e2:e4:73:5f:d4:90:
23:b3:b9:90:e8:6e:46:8e:9e:47:50:9a:16:a9:7d:0f:c3:78:
a6:48:c4:f2:b9:f8:de:8f:3d:f7:23:c0:b7:ce:f4:5f:5e:77:
07:e7:04:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org