Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/R3ZSx5VFdq3bMxe9zCCZRmsh-qQ.roa
File: R3ZSx5VFdq3bMxe9zCCZRmsh-qQ.roa (raw, json)
Hash identifier: nWpWLJPjb4OYT3ZVJk/7Bb+0nwHvWAB+2ich2gAbqas=
Subject key identifier: 47:76:52:C7:95:45:76:AD:DB:33:17:BD:CC:20:99:46:6B:21:FA:A4
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 0900
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/R3ZSx5VFdq3bMxe9zCCZRmsh-qQ.roa
Signing time: Sun 07 Feb 2021 11:49:20 +0000
ROA not before: Sun 07 Feb 2021 11:49:20 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18419
IP address blocks: 180.214.176.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2304 (0x900)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Feb 7 11:49:20 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=477652C7954576ADDB3317BDCC2099466B21FAA4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:12:5b:b7:60:86:eb:af:22:08:55:ef:17:ec:
05:d7:0a:5e:3e:1e:0e:6f:d2:6a:9a:1a:40:ec:b4:
d9:35:e8:b4:51:64:c5:7b:40:e3:c1:16:18:8e:f7:
c4:39:19:61:29:71:7d:43:52:fb:11:af:3b:56:10:
9e:db:a4:47:a6:3b:33:e8:60:79:d9:d8:22:f2:3e:
b9:e0:fd:7d:f8:e5:79:33:6d:61:92:6b:82:17:93:
94:f1:dd:fc:39:cc:aa:c5:bf:6b:84:ad:5e:7c:28:
4e:b1:4c:cb:bc:5e:6e:7d:6c:0c:73:27:14:aa:57:
93:da:24:6a:10:d7:c8:5d:69:fe:ad:7c:10:2c:80:
b2:e6:cb:bc:d7:ae:b2:d5:ed:39:88:76:84:ce:4c:
41:d5:3b:8e:17:52:57:fc:7e:b3:ac:0b:72:f4:26:
66:98:42:e8:2c:eb:75:b7:0d:00:17:dc:96:fb:11:
8d:23:34:86:05:cb:da:95:c9:99:16:0f:73:2e:68:
b8:2b:d6:8b:86:a2:c6:bb:a9:59:9c:ff:4d:e8:49:
e8:81:fb:2e:66:4d:ce:75:5d:f8:3f:3a:2c:ab:46:
79:78:9a:a8:f2:50:fb:95:9b:f3:42:e6:c8:83:dd:
74:d5:b0:6c:9a:72:0f:12:20:d1:d7:51:25:0a:90:
c3:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:76:52:C7:95:45:76:AD:DB:33:17:BD:CC:20:99:46:6B:21:FA:A4
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/R3ZSx5VFdq3bMxe9zCCZRmsh-qQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.214.176.0/20
Signature Algorithm: sha256WithRSAEncryption
ad:88:70:54:bf:2a:6f:a3:3b:ad:82:4c:9e:2e:2f:c5:87:52:
e7:4c:f0:ef:c7:1a:8e:0b:58:c0:63:79:dd:f5:2b:cc:8c:72:
1f:2f:6a:53:dd:a2:40:f0:f6:63:0c:ca:c3:cb:5c:1e:a9:2d:
1c:ef:2e:fb:f3:bd:6c:21:fa:23:b7:93:10:a2:88:60:cd:7a:
8d:c4:57:4d:96:fa:24:19:65:b0:4b:08:2d:a9:ce:c2:7b:0d:
78:15:b2:8c:7b:5d:a0:49:59:85:2e:d6:dd:36:17:e0:ca:07:
22:b6:35:4a:aa:71:78:08:4f:9f:5c:ef:a4:bf:ad:87:ce:80:
41:19:70:1e:e7:6f:03:f5:d3:85:f0:f0:07:5e:ed:e2:cb:ea:
ca:fa:d7:38:52:aa:2f:69:8e:fb:19:51:4a:aa:fe:4b:71:25:
e5:91:e4:e0:9d:3e:32:ae:a2:29:5c:d3:5b:a6:11:d4:4c:3d:
94:48:33:d7:ba:0f:37:dc:4c:fa:c4:71:52:93:28:2d:54:55:
d9:73:98:64:2c:49:fd:7b:ec:be:e0:c5:5c:19:0f:6b:c9:63:
49:ea:56:68:47:a4:dc:f3:89:bd:81:b2:b3:5d:30:8c:50:e6:
79:01:98:a0:e9:0e:72:29:4a:88:94:c0:ed:f6:32:d4:0f:ff:
b7:56:6e:cd
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCQAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0JF
NkM2NTEzNTBFOEZBMUZDN0QwQTNFQUJDRjk4RjgxQjMxMTlEMzAeFw0yMTAyMDcx
MTQ5MjBaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDQ3NzY1MkM3OTU0NTc2
QUREQjMzMTdCRENDMjA5OTQ2NkIyMUZBQTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDfElu3YIbrryIIVe8X7AXXCl4+Hg5v0mqaGkDstNk16LRRZMV7
QOPBFhiO98Q5GWEpcX1DUvsRrztWEJ7bpEemOzPoYHnZ2CLyPrng/X345XkzbWGS
a4IXk5Tx3fw5zKrFv2uErV58KE6xTMu8Xm59bAxzJxSqV5PaJGoQ18hdaf6tfBAs
gLLmy7zXrrLV7TmIdoTOTEHVO44XUlf8frOsC3L0JmaYQugs63W3DQAX3Jb7EY0j
NIYFy9qVyZkWD3MuaLgr1ouGosa7qVmc/03oSeiB+y5mTc51Xfg/OiyrRnl4mqjy
UPuVm/NC5siD3XTVsGyacg8SINHXUSUKkMMBAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUR3ZSx5VFdq3bMxe9zCCZRmsh+qQwHwYDVR0jBBgwFoAUO+bGUTUOj6H8fQo+
q8+Y+BsxGdMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0lHTUEv
Ty1iR1VUVU9qNkg4ZlFvLXE4LVktQnN4R2RNLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9PLWJHVVRVT2o2SDhmUW8tcTgtWS1Cc3hHZE0uY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSUdNQS9SM1pTeDVWRmRxM2JNeGU5ekND
WlJtc2gtcVEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEtNaw
MA0GCSqGSIb3DQEBCwUAA4IBAQCtiHBUvypvozutgkyeLi/Fh1LnTPDvxxqOC1jA
Y3nd9SvMjHIfL2pT3aJA8PZjDMrDy1weqS0c7y77871sIfojt5MQoohgzXqNxFdN
lvokGWWwSwgtqc7Cew14FbKMe12gSVmFLtbdNhfgygcitjVKqnF4CE+fXO+kv62H
zoBBGXAe528D9dOF8PAHXu3iy+rK+tc4UqovaY77GVFKqv5LcSXlkeTgnT4yrqIp
XNNbphHUTD2USDPXug833Ez6xHFSkygtVFXZc5hkLEn9e+y+4MVcGQ9ryWNJ6lZo
R6Tc84m9gbKzXTCMUOZ5AZig6Q5yKUqIlMDt9jLUD/+3Vm7N
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org