Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/Pw8QfDSkLDuk1TGObLubchYePUk.roa
File: Pw8QfDSkLDuk1TGObLubchYePUk.roa (raw, json)
Hash identifier: 3l9IW2DWIFJ7F9yKyQ3ssrv81RUyQgeGP6rz4py2Xo0=
Subject key identifier: 3F:0F:10:7C:34:A4:2C:3B:A4:D5:31:8E:6C:BB:9B:72:16:1E:3D:49
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 079C
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/Pw8QfDSkLDuk1TGObLubchYePUk.roa
Signing time: Tue 29 Sep 2020 10:06:08 +0000
ROA not before: Tue 29 Sep 2020 10:06:08 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 203.121.240.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1948 (0x79c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Sep 29 10:06:08 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3F0F107C34A42C3BA4D5318E6CBB9B72161E3D49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c3:c6:09:dc:f6:16:23:94:b2:0e:ac:91:9c:
6c:25:fa:69:ec:a0:ff:ee:6e:1f:19:52:6d:8f:f3:
3b:2e:e2:ce:85:eb:d6:73:52:5a:95:64:d5:44:5a:
f9:4d:6e:48:07:86:89:ae:d0:27:8d:c7:bc:00:c3:
db:af:aa:6a:d2:ef:32:3f:78:ac:fd:4f:ce:b1:a4:
c5:25:d9:17:29:84:33:3b:79:e1:45:cd:75:07:e3:
a6:cd:d6:f2:91:8d:7a:e5:53:3c:f7:49:59:06:15:
f6:52:71:9c:9e:72:ce:4a:00:b4:f8:b2:db:2f:5f:
f5:bd:f4:48:6c:9f:ac:aa:30:1d:7d:d4:fe:a3:0f:
e6:34:08:14:c8:07:c0:eb:c3:30:39:fb:51:a0:79:
ae:24:64:ad:a3:fc:c0:56:3b:45:7d:1c:bb:f2:b9:
d1:d1:15:99:c8:15:81:e5:4b:a0:bb:93:3b:96:df:
e8:29:51:d6:01:c3:20:a8:4b:50:f4:7f:1c:bf:ed:
14:e1:26:54:f5:d6:de:26:85:20:ee:a4:1c:da:76:
21:c8:3c:31:c3:59:ae:5d:85:8d:b1:36:49:ec:47:
7b:02:68:f1:ed:f2:f0:cc:6a:80:3d:c2:9f:1d:08:
d6:c8:f3:8d:fa:b8:d3:2a:d5:0d:23:e2:2e:e3:1a:
27:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:0F:10:7C:34:A4:2C:3B:A4:D5:31:8E:6C:BB:9B:72:16:1E:3D:49
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/Pw8QfDSkLDuk1TGObLubchYePUk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.121.240.0/20
Signature Algorithm: sha256WithRSAEncryption
4b:93:cb:2f:70:fd:2d:6e:4c:35:b2:04:05:74:bb:f2:6a:9f:
cd:d4:93:50:e3:37:8d:80:5f:d0:48:5a:99:6c:35:57:c0:c3:
ce:5a:03:8b:50:ee:2f:58:e0:83:2d:94:eb:e4:1c:7a:90:5d:
a8:8c:a7:65:56:6a:e4:19:df:65:24:09:7f:6e:7d:7e:19:b7:
07:e6:f9:74:47:73:91:1f:88:25:7f:c8:48:a3:5c:57:9f:2b:
f8:88:3d:3f:8a:da:ff:5a:01:1d:55:41:3b:cb:e4:78:de:66:
f1:9d:49:2d:5b:03:80:3a:95:eb:e8:27:0a:ef:91:3d:46:12:
c9:6a:a7:a7:89:08:8a:92:b6:aa:fc:fe:03:94:fe:4b:ee:33:
02:d5:29:94:bf:21:40:2b:96:57:0e:79:4a:ed:1e:59:86:2f:
ee:6e:f3:e5:84:87:75:88:0d:bc:c0:55:9d:a9:ff:ad:3a:d1:
f7:0f:60:e3:80:40:61:2b:57:d4:a0:e5:8a:ee:c6:96:3d:47:
e9:1e:da:b3:41:ff:99:18:15:fb:79:8c:98:8d:e7:91:95:78:
81:81:16:b1:30:39:d4:54:ba:44:89:fe:09:77:60:2d:59:0e:
fd:d8:88:52:2f:18:27:24:fe:0a:18:46:95:7b:ff:fa:bd:cd:
dd:58:85:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:45:11 2025 by rpki-client