Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/VsWla5AWs4ZVn7oBng7KZWxo_2s.roa
File: VsWla5AWs4ZVn7oBng7KZWxo_2s.roa (raw, json)
Hash identifier: 2Ve4TF+HxKX21lBADkfMZTIhnC6nEtLDNIQuWJjpqoU=
Subject key identifier: 56:C5:A5:6B:90:16:B3:86:55:9F:BA:01:9E:0E:CA:65:6C:68:FF:6B
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 0AB1
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/VsWla5AWs4ZVn7oBng7KZWxo_2s.roa
Signing time: Thu 15 Sep 2022 02:41:44 +0000
ROA not before: Thu 15 Sep 2022 02:41:44 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 203.121.224.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2737 (0xab1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Sep 15 02:41:44 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=56C5A56B9016B386559FBA019E0ECA656C68FF6B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:03:de:ff:e9:95:ae:fd:e3:ec:da:14:10:53:
35:16:c7:cf:00:10:db:e0:40:14:75:e9:d4:aa:23:
02:49:b2:c4:be:ae:ed:37:4f:fc:c0:7b:fc:c4:47:
37:04:bb:78:84:91:85:dd:09:c1:a4:96:11:39:91:
db:e0:34:9d:45:a6:e7:4d:94:51:8a:e2:98:08:7d:
16:1f:77:ef:13:77:42:6b:b7:f9:91:b9:26:fa:79:
b4:5a:db:d5:7e:72:a2:7a:e0:7d:17:d1:1a:6b:34:
90:34:e7:4b:84:24:47:d5:f5:7c:53:77:5a:c1:b6:
28:26:7b:a0:36:23:f6:0a:b6:a4:b2:e3:1a:d4:1f:
f5:0a:d4:14:72:a6:73:2a:28:67:5b:38:fe:40:29:
54:6c:8b:41:c2:69:e9:99:16:97:9e:65:54:79:0d:
4b:37:93:ec:2d:63:b0:9f:53:e1:26:f3:29:a5:68:
23:c2:70:6e:fb:16:9c:4d:f1:51:f5:35:32:7c:02:
be:93:07:f6:04:5d:96:d8:fd:af:dc:33:eb:d9:a4:
25:e3:c6:6e:48:0a:a4:ab:9a:b5:e7:84:2c:51:0c:
31:14:32:b0:91:f4:b6:71:41:29:52:df:64:ac:67:
dc:e5:77:ec:92:a5:f6:b5:7d:0b:d9:54:80:92:b6:
a1:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:C5:A5:6B:90:16:B3:86:55:9F:BA:01:9E:0E:CA:65:6C:68:FF:6B
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/VsWla5AWs4ZVn7oBng7KZWxo_2s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.121.224.0/20
Signature Algorithm: sha256WithRSAEncryption
41:3c:b2:6a:3e:f0:a1:e2:17:85:75:e6:9e:2d:4f:c8:7d:86:
09:aa:15:08:dd:ba:49:6f:ed:21:0d:d9:d7:b4:17:39:cf:bb:
64:43:59:af:18:a2:3d:fb:4a:c3:e4:b6:77:0f:8d:0f:7e:46:
75:73:89:43:6c:cd:a8:da:9c:74:d4:d7:a7:fe:df:d1:05:7e:
27:91:53:61:78:17:f5:b8:7f:d7:20:3d:c6:71:cb:a1:5b:50:
c3:86:12:c5:d3:ca:56:6f:4d:3e:e6:a0:e8:8b:e2:ab:e9:18:
38:fa:2a:ac:b5:b8:73:10:6e:88:aa:46:ab:3f:31:ad:7e:12:
61:bd:de:ef:a8:7f:1e:88:2c:6b:f6:e0:cf:dd:11:7c:b2:f9:
59:41:5c:cf:8c:89:12:4e:b6:9f:de:cd:b4:86:07:9d:0a:ae:
f0:27:31:5a:f6:1a:e4:7b:67:4e:be:c9:3f:55:89:ef:78:14:
42:7b:32:cf:87:ac:80:bd:81:70:45:24:2e:88:e5:71:58:02:
c1:60:2c:6b:e9:ae:1c:91:87:43:77:07:93:1e:22:c8:93:e6:
20:79:b6:38:2d:51:8d:48:28:2f:ef:66:f5:11:31:e5:7b:5d:
d4:0d:18:a9:e5:bd:ba:96:f2:ff:da:39:03:ce:a2:5d:61:3f:
20:22:fa:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org