Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/_XjhFheO8qgKrwvKGbvTMbvSLTQ.roa
File: _XjhFheO8qgKrwvKGbvTMbvSLTQ.roa (raw, json)
Hash identifier: 0bEaTdLN0W4pRJC7/RbHEwt7kHFa/7TMfI5r40hoTDk=
Subject key identifier: FD:78:E1:16:17:8E:F2:A8:0A:AF:0B:CA:19:BB:D3:31:BB:D2:2D:34
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 0908
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/_XjhFheO8qgKrwvKGbvTMbvSLTQ.roa
Signing time: Sun 07 Feb 2021 11:49:26 +0000
ROA not before: Sun 07 Feb 2021 11:49:26 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18419
IP address blocks: 203.121.240.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2312 (0x908)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Feb 7 11:49:26 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=FD78E116178EF2A80AAF0BCA19BBD331BBD22D34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:41:4e:66:08:1c:c8:35:4e:5d:e7:19:b1:0c:
cc:0c:e9:31:59:52:b9:83:4b:6a:04:4a:ab:bd:fa:
b9:f8:24:49:ba:7d:3f:a2:35:1b:1f:1f:8f:f6:14:
f3:11:40:22:32:1d:10:16:6d:0b:a6:57:0a:e0:d0:
d6:41:00:39:96:6e:c4:38:66:5f:e8:8b:29:36:83:
c0:9e:04:a8:37:11:ef:ba:7b:31:47:ae:00:e4:3a:
6c:b8:43:0e:82:e5:eb:01:ed:a2:d6:6f:04:c7:09:
49:90:60:02:d2:c4:6f:11:9a:33:16:95:f6:14:a8:
d4:20:08:22:30:16:d2:da:01:a1:b7:86:3a:6e:27:
ab:4a:36:49:6f:1d:4e:e0:2b:fa:a7:d6:ab:b3:d3:
91:09:2b:a4:f0:2b:5e:78:b9:11:37:f3:ee:a2:1e:
8e:3e:0e:66:79:4d:f0:38:f8:ae:56:11:3c:e8:e0:
e0:04:01:2b:9e:55:50:e3:d3:b1:12:c5:d6:5a:ab:
62:75:fc:06:1b:46:30:1f:f3:37:0a:b9:9d:72:e7:
c1:56:7c:b3:dd:b6:fb:e4:15:67:39:55:68:31:ff:
49:a5:80:64:90:24:43:13:ab:81:f1:ea:0e:99:60:
b9:e2:f4:e7:4e:63:13:2b:77:aa:d3:5b:b7:b3:da:
bb:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:78:E1:16:17:8E:F2:A8:0A:AF:0B:CA:19:BB:D3:31:BB:D2:2D:34
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/_XjhFheO8qgKrwvKGbvTMbvSLTQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.121.240.0/20
Signature Algorithm: sha256WithRSAEncryption
65:f1:ca:09:31:87:93:e4:d8:ba:29:ce:a2:dd:43:ed:41:c4:
86:18:d5:c3:08:58:d9:01:ba:e7:d5:c8:22:6e:23:da:a8:ee:
d0:88:65:47:50:e2:9b:6d:2b:55:24:c5:39:3f:2d:cf:5f:df:
57:44:f0:b4:ce:eb:4d:a9:9b:f3:e2:0c:6a:62:bf:be:16:0b:
d8:32:de:a5:6d:18:1b:76:c5:07:ce:22:5f:90:10:9c:a0:75:
e2:0c:34:9b:4a:0c:01:e4:d7:fc:52:f1:db:45:51:b8:0e:35:
da:10:5f:5f:65:ed:84:77:bd:ec:85:b6:05:bf:ae:76:7c:c3:
41:38:fc:06:90:3c:75:67:68:01:7c:2f:bc:79:20:7c:f9:8d:
c4:62:1f:ac:be:96:ae:d6:71:d1:be:06:6d:ac:c9:f9:77:a5:
27:c9:12:81:f3:3c:42:8a:b5:9b:dd:03:65:5d:d4:d5:f2:79:
62:2e:a8:4d:b4:52:c0:92:7f:d8:67:39:5d:75:73:d5:f9:0d:
99:3e:29:0d:f6:2a:31:ed:3a:f5:01:10:d8:ac:16:73:a7:78:
e1:d7:67:fc:ef:4d:a4:6f:d6:b0:1c:ae:41:78:b9:5e:7d:a7:
ea:65:82:69:ad:1a:0b:1d:a0:5b:b1:16:91:cc:44:1f:06:5a:
61:a9:b2:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:57:30 2025 by rpki-client