Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/XIx4Lrw9ZQfHXaS_jYSn8U3Ad5s.roa
File: XIx4Lrw9ZQfHXaS_jYSn8U3Ad5s.roa (raw, json)
Hash identifier: vk9juTvXPO6HOKTLudAr4zVD4nP1AnUcm1w6uVSEzvI=
Subject key identifier: 5C:8C:78:2E:BC:3D:65:07:C7:5D:A4:BF:8D:84:A7:F1:4D:C0:77:9B
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 09B8
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/XIx4Lrw9ZQfHXaS_jYSn8U3Ad5s.roa
Signing time: Wed 29 Sep 2021 02:41:56 +0000
ROA not before: Wed 29 Sep 2021 02:41:56 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 61.60.192.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2488 (0x9b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Sep 29 02:41:56 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=5C8C782EBC3D6507C75DA4BF8D84A7F14DC0779B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:f9:6e:b9:a9:20:d3:0a:d3:1f:dd:00:4c:1c:
f0:c6:42:f3:77:5b:ed:d2:6c:9a:01:23:bf:be:1a:
df:f7:42:de:dd:e5:22:37:a9:0b:bc:83:74:7b:69:
4c:b9:29:8f:72:6d:63:2f:67:f7:cc:54:c8:1c:70:
fe:89:b7:32:83:51:86:60:c5:8e:e1:03:6b:7d:34:
73:ad:c0:95:50:53:a1:78:ef:da:a4:56:5f:ae:e1:
8d:ac:60:f0:36:fe:f3:b1:a4:ac:ed:84:5a:36:77:
8c:5c:3d:2f:ac:8a:77:65:72:1c:dc:d5:98:66:78:
46:55:31:b8:24:60:53:ae:fb:ff:fb:23:be:db:b6:
7d:3d:6f:db:70:a2:cc:ef:28:69:df:66:e9:d8:4a:
87:a2:15:15:93:11:d7:bf:f9:54:bc:8d:84:43:a2:
b3:67:e4:92:5c:02:21:1c:60:46:cd:81:a6:c5:02:
48:32:c9:da:32:e2:74:0b:47:6a:a7:f6:47:b7:d1:
ac:26:3c:55:a5:16:01:00:6e:66:81:26:80:9c:ef:
9b:3d:28:dc:ca:02:4e:58:02:f4:7f:fa:a7:3b:01:
70:d6:7d:48:79:c3:79:c0:84:5c:6a:33:d9:af:70:
c0:1f:bb:b5:ec:8f:81:dd:99:33:43:b3:02:c0:85:
25:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:8C:78:2E:BC:3D:65:07:C7:5D:A4:BF:8D:84:A7:F1:4D:C0:77:9B
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/XIx4Lrw9ZQfHXaS_jYSn8U3Ad5s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.60.192.0/20
Signature Algorithm: sha256WithRSAEncryption
58:7a:e5:e3:f5:87:78:7a:c7:19:88:10:bf:7b:28:24:fc:00:
c3:2e:a6:6a:f4:15:0f:b6:ca:4b:58:6a:ae:39:55:71:5f:e3:
6a:44:4b:ce:7a:69:db:0d:22:40:c2:f0:43:01:2c:73:9e:77:
de:95:86:4f:2b:63:b7:5b:cc:3c:ce:f9:b3:27:10:0e:e0:27:
c1:e0:0e:b4:2c:9e:ab:ef:d4:c9:52:3d:63:ef:18:eb:ac:0e:
46:4e:a1:ba:18:00:a5:1f:4d:dd:fd:f7:8b:89:5e:39:ef:6f:
eb:8c:5a:87:3b:73:ff:ee:08:70:da:ae:9e:e7:c3:20:92:72:
79:13:fc:58:3a:68:4f:76:73:fb:22:c5:65:1c:25:5f:da:c2:
b9:5f:65:8e:bf:ca:69:69:b2:17:3a:48:9f:31:f3:3d:3c:1e:
f9:de:d3:74:f3:6e:ae:b8:b3:0a:04:47:55:6d:f7:d1:c8:11:
47:95:37:29:eb:de:de:99:90:5e:66:82:57:d6:41:4c:94:8b:
6f:eb:d0:01:6f:f5:b4:58:fa:29:81:2d:c2:ce:f2:f7:51:2c:
18:e0:f0:e0:6c:ca:79:3b:ec:75:b2:40:65:1b:d2:c1:73:e2:
91:d5:ca:bb:41:67:d6:fc:7c:84:6a:9b:52:55:a1:c1:92:a7:
21:e1:68:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:47:00 2025 by rpki-client