Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/UFbJoxDttwec_pOUyEgTSxeeiQA.roa
File: UFbJoxDttwec_pOUyEgTSxeeiQA.roa (raw, json)
Hash identifier: 3toXjAtzgkz9T8rgOjSD530glDH4F9q8ZaXIIxcjsv0=
Subject key identifier: 50:56:C9:A3:10:ED:B7:07:9C:FE:93:94:C8:48:13:4B:17:9E:89:00
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 0793
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/UFbJoxDttwec_pOUyEgTSxeeiQA.roa
Signing time: Tue 29 Sep 2020 10:06:05 +0000
ROA not before: Tue 29 Sep 2020 10:06:05 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 203.121.224.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1939 (0x793)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Sep 29 10:06:05 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5056C9A310EDB7079CFE9394C848134B179E8900
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:61:6d:51:a8:d4:de:9c:2a:40:ed:cd:1b:38:
fa:cf:af:43:a4:f4:ff:eb:eb:7f:40:1a:02:99:5c:
0d:f7:59:47:90:ca:18:c4:d6:00:c7:aa:50:1b:21:
f8:21:c9:27:c6:1b:62:78:56:64:08:24:45:10:b5:
e0:25:21:d0:df:d8:9b:3c:6b:9e:22:6d:e1:32:29:
e5:13:41:4d:8f:13:d4:89:23:a6:ec:07:35:a1:25:
39:84:2d:51:09:de:c6:01:78:82:b1:05:1b:39:c9:
f8:5d:42:a1:a1:2d:86:30:84:a4:b6:7f:8d:38:ac:
59:a2:ae:52:6b:dc:31:6c:43:45:8c:43:0e:88:b2:
0a:14:7e:9b:49:c3:70:34:57:bf:d4:3f:1a:55:48:
b0:64:12:a8:d6:12:a8:8e:83:99:79:cb:06:44:4f:
a3:ef:63:eb:b2:e2:2c:13:a4:04:96:92:d4:e5:a1:
af:cd:12:45:df:64:d7:30:6d:af:24:8c:15:75:87:
ac:f4:a7:73:0e:ac:c4:73:64:33:13:94:2f:55:62:
ba:49:11:26:4f:c9:a1:0c:a3:1a:7f:c4:93:91:f6:
03:10:1d:1d:10:33:f1:2a:8e:6d:37:78:eb:df:06:
99:b1:4a:d7:6c:8d:7e:1c:00:51:57:65:bd:45:8a:
45:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:56:C9:A3:10:ED:B7:07:9C:FE:93:94:C8:48:13:4B:17:9E:89:00
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/UFbJoxDttwec_pOUyEgTSxeeiQA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.121.224.0/20
Signature Algorithm: sha256WithRSAEncryption
6e:cc:67:e6:11:f1:c0:90:20:8b:48:27:60:fc:78:d5:b5:0e:
75:5b:cb:f7:cb:03:e9:4b:f2:3f:61:1e:42:58:4f:6d:7a:c8:
5f:23:3a:fd:80:a4:3b:90:3d:b6:22:f5:22:1a:7f:84:db:a7:
d1:15:c8:29:3d:91:f5:59:81:5a:44:d2:80:1c:d1:dc:fa:b8:
2c:d2:98:01:80:61:fb:66:98:c6:76:a7:9e:b0:ee:55:4c:9c:
77:b7:d0:de:2e:04:85:6e:82:28:d2:a5:b6:d8:37:ad:29:c7:
41:30:ad:11:80:1f:ff:37:19:d0:aa:20:3a:59:c9:43:ce:a8:
9f:76:50:c3:2e:a1:06:97:c7:ba:ff:6d:07:d6:f8:51:02:4c:
94:72:da:09:0b:7b:50:5a:82:5f:99:b5:e1:72:8c:5e:24:8e:
8c:29:fb:81:41:99:7c:c2:a8:70:8d:f0:1d:e4:b1:1c:05:2f:
a6:cf:c9:19:7f:6f:34:26:7f:f9:07:4d:18:c7:a0:ea:af:7b:
f3:99:02:86:24:56:09:5e:cf:30:f9:5a:40:07:3b:24:f2:5b:
d7:77:c0:d0:1b:63:bd:14:cb:9a:e7:8d:43:46:b2:8c:ca:79:
aa:dc:2a:b2:38:86:33:48:bb:de:52:d3:3a:27:f5:f0:41:32:
44:46:62:94
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICB5MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0JF
NkM2NTEzNTBFOEZBMUZDN0QwQTNFQUJDRjk4RjgxQjMxMTlEMzAeFw0yMDA5Mjkx
MDA2MDVaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDUwNTZDOUEzMTBFREI3
MDc5Q0ZFOTM5NEM4NDgxMzRCMTc5RTg5MDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDPYW1RqNTenCpA7c0bOPrPr0Ok9P/r639AGgKZXA33WUeQyhjE
1gDHqlAbIfghySfGG2J4VmQIJEUQteAlIdDf2Js8a54ibeEyKeUTQU2PE9SJI6bs
BzWhJTmELVEJ3sYBeIKxBRs5yfhdQqGhLYYwhKS2f404rFmirlJr3DFsQ0WMQw6I
sgoUfptJw3A0V7/UPxpVSLBkEqjWEqiOg5l5ywZET6PvY+uy4iwTpASWktTloa/N
EkXfZNcwba8kjBV1h6z0p3MOrMRzZDMTlC9VYrpJESZPyaEMoxp/xJOR9gMQHR0Q
M/Eqjm03eOvfBpmxStdsjX4cAFFXZb1FikXpAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUUFbJoxDttwec/pOUyEgTSxeeiQAwHwYDVR0jBBgwFoAUO+bGUTUOj6H8fQo+
q8+Y+BsxGdMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0lHTUEv
Ty1iR1VUVU9qNkg4ZlFvLXE4LVktQnN4R2RNLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9PLWJHVVRVT2o2SDhmUW8tcTgtWS1Cc3hHZE0uY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSUdNQS9VRmJKb3hEdHR3ZWNfcE9VeUVn
VFN4ZWVpUUEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEy3ng
MA0GCSqGSIb3DQEBCwUAA4IBAQBuzGfmEfHAkCCLSCdg/HjVtQ51W8v3ywPpS/I/
YR5CWE9teshfIzr9gKQ7kD22IvUiGn+E26fRFcgpPZH1WYFaRNKAHNHc+rgs0pgB
gGH7ZpjGdqeesO5VTJx3t9DeLgSFboIo0qW22DetKcdBMK0RgB//NxnQqiA6WclD
zqifdlDDLqEGl8e6/20H1vhRAkyUctoJC3tQWoJfmbXhcoxeJI6MKfuBQZl8wqhw
jfAd5LEcBS+mz8kZf280Jn/5B00Yx6Dqr3vzmQKGJFYJXs8w+VpABzsk8lvXd8DQ
G2O9FMua541DRrKMynmq3CqyOIYzSLveUtM6J/XwQTJERmKU
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org