Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/SvBHxQfX-qbLMrs_Z0CIeqC9ZOA.roa
File: SvBHxQfX-qbLMrs_Z0CIeqC9ZOA.roa (raw, json)
Hash identifier: xjMCZfHc1yDiVihKHd8qZoy6z1bT/BOoP+PzJF0cDcU=
Subject key identifier: 4A:F0:47:C5:07:D7:FA:A6:CB:32:BB:3F:67:40:88:7A:A0:BD:64:E0
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 0794
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/SvBHxQfX-qbLMrs_Z0CIeqC9ZOA.roa
Signing time: Tue 29 Sep 2020 10:06:06 +0000
ROA not before: Tue 29 Sep 2020 10:06:06 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18419
IP address blocks: 203.121.224.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1940 (0x794)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Sep 29 10:06:06 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=4AF047C507D7FAA6CB32BB3F6740887AA0BD64E0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:31:5b:61:48:34:57:b1:1a:7b:34:34:82:f4:
53:d3:7c:bc:66:59:6d:87:5d:1b:40:e9:ab:0c:7e:
62:ea:1f:7c:e4:79:19:38:3e:d0:e4:8a:fa:5d:d1:
6a:d4:30:77:97:0b:e2:45:3a:b7:3c:de:84:d0:da:
d6:23:72:bb:3f:9e:9e:18:54:e8:f7:8a:cb:b8:02:
3f:21:ee:22:de:d5:0d:e1:6f:1a:64:cf:dc:03:0e:
6f:b2:69:1d:7b:0e:6b:b2:8e:82:58:66:b4:ae:f0:
e8:eb:f4:34:a0:ad:b7:82:df:4b:d4:39:af:ec:c7:
05:18:de:d1:35:44:4b:b3:15:b3:1d:44:6c:55:d7:
19:1d:92:66:9d:ef:17:27:1d:78:a8:7a:ec:46:f5:
ad:11:80:75:d8:85:76:9c:e4:b0:f3:91:97:9a:e9:
51:80:b0:5f:22:26:d3:f7:54:6f:70:1c:e8:ef:66:
7f:56:d2:dd:ab:91:38:f4:1b:92:27:01:7e:3d:14:
f0:52:f0:ad:7c:73:39:fb:26:af:b2:a1:21:53:b7:
f6:b1:7c:2d:b2:9f:86:d0:2f:7d:37:9e:05:42:bb:
52:22:cf:8c:b5:66:d1:18:f3:20:2d:1a:de:ca:15:
24:26:ed:6b:47:88:87:c5:79:87:0e:94:a4:63:be:
94:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:F0:47:C5:07:D7:FA:A6:CB:32:BB:3F:67:40:88:7A:A0:BD:64:E0
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/SvBHxQfX-qbLMrs_Z0CIeqC9ZOA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.121.224.0/20
Signature Algorithm: sha256WithRSAEncryption
66:a4:ff:e0:3c:bf:6d:f1:9e:a7:bf:33:61:c6:1f:80:b9:d9:
95:a1:c3:b1:69:72:c3:07:15:b9:a9:8b:8f:21:59:f1:72:c2:
0b:6e:fd:c1:d2:bb:5b:5b:90:c3:0e:1d:f0:d5:e3:90:69:7f:
24:11:99:38:94:89:8d:9f:09:51:2e:5d:29:83:2f:00:67:c8:
de:7b:8c:9c:a9:bf:48:ae:a6:22:b8:77:70:38:2d:65:fb:c0:
07:36:6d:86:b5:bb:9f:96:9b:8b:a3:bb:34:87:60:e8:4c:08:
b8:85:a1:29:fc:0d:3d:d9:f0:38:c3:f8:93:ed:8b:a9:c7:db:
a1:fe:26:3d:55:a1:50:6c:20:f3:79:79:fe:a5:e5:80:c6:17:
97:eb:1d:23:3e:b6:ef:ea:76:43:25:06:a6:2c:d2:ff:2b:b4:
2d:b5:65:dd:da:38:ea:04:ae:4f:9a:99:05:7b:c1:63:1d:21:
71:33:0d:c4:c0:77:a8:ff:49:58:0c:79:e8:88:98:6c:3c:53:
fd:68:e4:49:e9:9c:01:1f:03:cf:08:4f:24:ec:f8:09:38:84:
38:21:f6:25:7f:71:cd:66:93:7a:3d:4e:cc:5a:d3:37:d8:65:
1d:6b:7b:a9:fc:aa:c3:fa:5a:3e:be:b0:cf:16:19:71:2e:38:
ae:ef:df:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org