Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/SKzfkKjsPvm_caDPak6qFzNTXW0.roa
File: SKzfkKjsPvm_caDPak6qFzNTXW0.roa (raw, json)
Hash identifier: nLoLogVD8jEe8+U/MvVO7KB21goFNwoyFK9s/gaP6zE=
Subject key identifier: 48:AC:DF:90:A8:EC:3E:F9:BF:71:A0:CF:6A:4E:AA:17:33:53:5D:6D
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 09B4
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/SKzfkKjsPvm_caDPak6qFzNTXW0.roa
Signing time: Wed 29 Sep 2021 02:41:55 +0000
ROA not before: Wed 29 Sep 2021 02:41:55 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 150.129.228.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2484 (0x9b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Sep 29 02:41:55 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=48ACDF90A8EC3EF9BF71A0CF6A4EAA1733535D6D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:35:2e:4f:70:6b:f5:70:1a:ef:08:87:5b:d1:
23:27:31:0e:dc:a5:ba:16:8d:91:ab:c6:2c:2e:6a:
ea:67:f2:c8:b7:72:3f:1b:16:8f:23:f7:0b:54:95:
2d:0f:c5:09:e2:f7:af:ed:c2:1e:9e:0a:1e:8d:eb:
19:02:7a:d2:27:d6:cc:84:02:dd:3f:33:9e:7a:6e:
0d:5a:ab:fc:a6:31:78:ec:5c:d5:55:9e:57:1b:a9:
62:4c:c2:8f:b9:3c:99:66:da:1e:f6:79:bf:12:6a:
86:84:e5:d1:27:9d:59:39:09:4a:07:53:96:b1:aa:
88:87:53:d1:4b:4b:d7:f0:95:3f:d6:ec:48:0e:78:
78:be:82:7e:4a:d7:ea:df:d8:76:42:2f:42:93:42:
44:8a:8a:8c:68:8a:da:2a:1f:48:d1:53:a9:9b:96:
33:18:c3:0e:86:ed:01:ee:e4:a1:41:0d:4d:c4:6f:
d9:3f:cb:bc:43:73:46:51:b6:79:69:69:ba:7f:08:
dd:c7:ee:cd:4d:7d:68:60:d6:32:98:25:00:cf:11:
a7:25:ee:c0:5f:4e:da:c9:62:92:09:44:b0:77:72:
7a:e5:41:8c:95:01:13:bb:55:9e:31:6c:fc:24:8d:
56:f3:9d:05:56:29:03:3e:52:28:6c:66:23:38:9b:
5e:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:AC:DF:90:A8:EC:3E:F9:BF:71:A0:CF:6A:4E:AA:17:33:53:5D:6D
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/SKzfkKjsPvm_caDPak6qFzNTXW0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.129.228.0/22
Signature Algorithm: sha256WithRSAEncryption
6d:a9:a7:4f:3e:32:2e:7f:00:0d:99:ba:a8:74:a2:70:d7:26:
1c:40:13:78:68:dd:98:75:49:1a:f4:55:6e:2a:3c:25:c0:96:
bc:d8:b5:8e:b9:8b:ea:b5:97:db:4e:44:b6:0d:2c:f5:37:02:
3d:b0:be:76:ec:56:16:22:d7:6a:8a:f7:8d:b8:ef:13:cd:a4:
4f:93:74:b4:64:22:72:a2:5e:ae:e1:2e:1c:a3:1a:43:d8:9d:
41:d9:71:e3:a2:f4:8a:20:4d:71:47:07:33:c1:0c:22:5b:31:
7e:ef:4e:f0:b7:77:7d:45:e1:a8:d5:bc:79:3d:08:a8:f8:c5:
4f:17:01:3d:d8:ff:f5:f4:59:ab:17:dd:b5:9a:c3:56:b4:c4:
7c:13:ca:d0:fe:e4:de:9a:90:8c:ea:18:4b:e9:76:e3:9a:a0:
96:1f:8d:2a:92:bf:47:f8:c2:1f:ec:7c:23:e1:7f:83:5f:f0:
72:2e:05:2e:dc:56:0b:c8:12:37:7b:ee:34:e8:16:d8:de:db:
4a:3c:4c:0a:38:50:f6:2c:4a:5c:2b:48:65:32:c8:ed:05:26:
70:99:b0:36:c0:84:66:43:a8:f1:c1:41:a6:32:5d:8a:06:ff:
62:38:55:05:97:44:74:4f:15:ea:b2:8f:c9:12:62:b9:18:fe:
e3:7a:57:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org