Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/XQeRWYpfyDwRdR_ot2rtDYs-kU8.roa
File: XQeRWYpfyDwRdR_ot2rtDYs-kU8.roa (raw, json)
Hash identifier: XMjyOKqp01ue9Ou2MQ5SrfGAYmOZcEe4MozSTMImacA=
Subject key identifier: 5D:07:91:59:8A:5F:C8:3C:11:75:1F:E8:B7:6A:ED:0D:8B:3E:91:4F
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 0914
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/XQeRWYpfyDwRdR_ot2rtDYs-kU8.roa
Signing time: Sun 07 Feb 2021 12:59:09 +0000
ROA not before: Sun 07 Feb 2021 12:59:09 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18419
IP address blocks: 150.129.228.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2324 (0x914)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Feb 7 12:59:09 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5D0791598A5FC83C11751FE8B76AED0D8B3E914F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:c0:bb:61:77:7d:ea:5e:7e:aa:ba:e7:90:50:
3f:58:6f:66:84:25:b6:35:f1:f1:09:30:1a:fa:96:
a5:c6:9d:0b:8f:eb:41:d4:8d:e9:83:d7:15:f7:6a:
5c:f6:9a:b3:7f:77:7d:02:f8:2a:1a:49:70:76:51:
96:3f:55:7d:23:cf:d1:15:6b:d2:c0:68:c1:97:9b:
40:63:df:35:0c:28:5e:84:b3:39:30:3f:28:e2:a3:
4b:9e:60:b9:8b:49:a4:ea:e4:fc:65:2b:dc:ab:5d:
5d:57:5f:31:ef:c2:09:f8:86:d1:bd:5d:45:c1:c9:
e0:6c:30:a4:99:1b:4b:37:0c:6d:3f:05:15:86:78:
72:f4:a5:9a:91:8e:51:9e:4c:01:da:95:52:a4:b9:
d7:09:ed:b0:5c:b3:85:a5:ca:04:86:d7:96:67:42:
6d:2f:48:84:67:2f:e0:d1:10:ad:f9:ef:70:17:68:
3f:69:f5:37:41:58:74:53:9d:b5:3e:f7:d4:0b:42:
dc:eb:28:27:9d:08:06:fc:d1:ad:96:53:8b:41:a2:
12:4a:c7:00:b5:eb:1b:c4:72:27:e9:3d:56:8e:36:
09:6c:2e:6a:b6:9e:df:66:88:fe:b6:29:4c:17:be:
bf:5e:a7:8a:24:b9:c0:bd:b3:af:44:7f:88:f3:13:
94:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:07:91:59:8A:5F:C8:3C:11:75:1F:E8:B7:6A:ED:0D:8B:3E:91:4F
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/XQeRWYpfyDwRdR_ot2rtDYs-kU8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.129.228.0/22
Signature Algorithm: sha256WithRSAEncryption
7f:e3:dd:62:d3:41:3c:f4:c3:a4:c7:e7:8b:a8:9b:b7:fa:29:
18:27:d0:4f:3b:41:17:71:8c:22:9d:55:9b:59:4c:a4:4b:e5:
54:c8:53:95:26:aa:a7:3c:56:31:36:4a:27:9c:e9:32:53:7b:
6c:10:ca:b9:ac:26:bd:56:33:4c:a6:bf:ee:bf:f2:66:74:b4:
62:f7:c9:73:da:92:70:1f:9c:ba:28:dc:af:e3:b5:cb:c4:02:
c2:92:b2:1e:37:01:4a:2d:ed:5a:c7:ac:1f:d3:ce:35:f4:26:
78:ad:c3:3e:8b:34:ac:17:b8:c9:e7:a8:81:2c:52:f6:53:c4:
91:2d:b1:f6:d8:49:85:db:a0:f3:6f:ad:82:24:73:57:05:73:
af:31:7c:2b:87:24:58:40:f7:56:46:78:56:f3:46:d7:6e:02:
ea:cf:48:79:68:99:76:13:c2:a1:7e:86:11:1b:f3:c3:36:a2:
30:d3:0b:ca:3b:61:1f:5f:2e:94:3b:e1:9e:0c:37:f9:91:d6:
56:2f:86:41:58:75:5c:27:7f:89:71:a4:22:ee:a2:4f:e2:28:
19:c4:d1:bf:1a:3d:88:f2:ad:a6:7a:f4:7d:a9:7a:e0:a1:cf:
35:f6:9a:ab:60:72:fe:96:b4:37:05:87:49:78:fb:02:a0:a3:
a8:93:fc:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org