Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/RiSA9YxfFTIfRoMyx6RBXqsuvFo.roa
File: RiSA9YxfFTIfRoMyx6RBXqsuvFo.roa (raw, json)
Hash identifier: B6VS7eSoxDdwtR1yJQQY6PF5seb8ppvC5mXn73puPCQ=
Subject key identifier: 46:24:80:F5:8C:5F:15:32:1F:46:83:32:C7:A4:41:5E:AB:2E:BC:5A
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 0912
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/RiSA9YxfFTIfRoMyx6RBXqsuvFo.roa
Signing time: Sun 07 Feb 2021 12:59:08 +0000
ROA not before: Sun 07 Feb 2021 12:59:08 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 103.234.204.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2322 (0x912)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Feb 7 12:59:08 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=462480F58C5F15321F468332C7A4415EAB2EBC5A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:c9:80:39:c1:df:6c:f3:26:94:fe:fe:1f:5a:
21:19:7c:d6:05:62:b1:d0:0f:d9:38:bd:ef:16:3c:
ab:5d:78:84:8d:9a:16:56:b1:f0:52:e6:3f:89:3a:
35:45:c7:34:2d:95:ca:19:e7:ec:50:f3:35:7c:e2:
0e:7e:b1:f2:35:17:a2:38:3e:bc:8b:82:e8:47:72:
77:8c:58:ab:a3:1a:99:66:2a:d3:62:25:3f:b8:41:
f3:ac:88:bc:b3:70:ae:a7:33:6d:9c:d1:89:4d:46:
dc:2d:00:0d:c6:6d:f6:b1:c4:00:29:35:98:cc:42:
7c:20:c9:07:2f:d2:cd:18:20:71:57:e4:95:de:ae:
b3:1b:8f:11:8b:f9:24:52:0e:3e:67:a2:1d:7e:6f:
db:f4:d8:80:4d:0c:03:3d:6b:65:69:4a:98:fd:48:
ca:39:9d:d8:a0:6f:a0:31:17:c8:38:9b:0c:d8:22:
07:6c:a9:e8:3e:a7:83:11:c8:46:85:ca:36:c5:e6:
72:37:7d:78:56:2e:72:74:9e:4d:d5:89:29:0e:52:
c8:8c:4f:07:b3:7d:cb:b9:6e:4d:a6:79:c8:f2:5c:
a0:4e:17:35:fc:ac:eb:3c:85:47:b3:07:81:58:4d:
71:11:e1:99:3f:04:6d:91:40:fc:6d:f2:13:52:22:
a6:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:24:80:F5:8C:5F:15:32:1F:46:83:32:C7:A4:41:5E:AB:2E:BC:5A
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/RiSA9YxfFTIfRoMyx6RBXqsuvFo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.234.204.0/22
Signature Algorithm: sha256WithRSAEncryption
18:a2:9a:4d:3e:03:d5:20:65:69:04:9d:c2:7d:48:e1:c3:21:
93:a9:70:af:57:42:72:76:5a:c1:2c:9c:05:c3:24:0e:9f:a7:
2d:17:51:4f:08:31:44:e1:59:f4:a6:d4:36:b7:7e:9f:0a:ac:
a5:5c:78:df:88:f6:b2:2f:af:63:7e:02:3f:55:4d:38:24:90:
c4:5b:d5:da:bb:8c:60:42:b7:d2:d1:78:9d:f2:95:43:34:a4:
f0:46:39:56:41:ef:da:87:be:7f:94:11:1d:54:f5:bc:66:19:
58:11:70:14:b3:09:43:ec:f8:15:e4:22:4d:b1:c0:ed:bb:06:
71:4b:21:6e:18:56:48:c5:87:7b:25:90:ea:9a:d8:bf:73:b7:
66:38:42:45:a2:f9:92:94:0f:26:e4:09:71:47:3e:d6:39:c9:
00:be:aa:5a:37:c6:d2:59:e6:1d:75:e3:9f:b2:bc:5c:40:aa:
5a:7d:dc:af:71:88:f9:d9:21:9b:4d:bd:5c:bb:17:64:ef:49:
76:16:52:c4:b8:e2:de:7a:77:54:49:80:d6:b2:30:cb:6d:a2:
4b:fc:31:1a:61:39:c6:67:70:cb:9b:69:9e:f3:d1:1b:ad:dc:
2e:a4:a0:f1:7a:09:dc:56:53:17:63:c8:82:dc:a4:96:8a:fb:
0b:ae:f9:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org