Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/_dqbEWlMiZOvC1CJXJiFWq5Rxko.roa
File: _dqbEWlMiZOvC1CJXJiFWq5Rxko.roa (raw, json)
Hash identifier: 4AOoxT/8qNf5lUR4PbUTiTWHSHScqsrGM3Y0cp6CYI0=
Subject key identifier: FD:DA:9B:11:69:4C:89:93:AF:0B:50:89:5C:98:85:5A:AE:51:C6:4A
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 079D
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/_dqbEWlMiZOvC1CJXJiFWq5Rxko.roa
Signing time: Tue 29 Sep 2020 10:06:08 +0000
ROA not before: Tue 29 Sep 2020 10:06:08 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18419
IP address blocks: 150.129.72.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1949 (0x79d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Sep 29 10:06:08 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=FDDA9B11694C8993AF0B50895C98855AAE51C64A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:c8:69:f4:61:24:2c:19:4a:db:cf:e4:75:83:
9c:be:af:cf:cc:2f:b9:bc:37:7c:35:d1:ee:25:fb:
29:da:0b:40:81:82:41:20:d3:78:d5:de:2c:6b:32:
d9:d6:57:b2:7f:14:01:47:6f:0f:8d:7b:8c:0e:57:
14:ae:27:ff:35:f7:69:04:de:51:86:f8:f0:98:51:
7c:34:50:9f:66:f1:06:46:a0:1e:76:17:44:a2:0d:
11:25:48:67:c0:d6:3e:78:4a:4e:0f:46:95:23:6e:
42:bc:99:f0:a3:b1:09:6f:2e:93:32:c8:7b:5c:80:
90:aa:17:69:b3:46:f6:96:ae:72:74:89:d9:22:8d:
a6:d9:6c:d1:cf:3c:f6:f4:ab:65:4d:49:0b:34:dd:
5e:c6:d8:d7:4d:d9:b1:ef:51:ad:0e:22:fa:5b:b5:
8e:0b:e4:6d:75:f6:c6:8e:c9:d2:3f:40:a7:14:68:
4f:54:33:39:22:7c:72:4e:48:8d:60:6b:36:dd:df:
1f:a9:1d:e4:d1:46:bc:a6:b5:96:bd:b3:fa:08:1f:
d6:04:54:66:e3:ac:ae:8e:10:d4:e1:b2:e2:80:7e:
a9:4e:c6:29:89:3a:98:c5:80:f5:c4:5e:92:e9:a7:
69:29:36:1c:c6:4b:8e:ba:f4:8d:3d:58:69:47:75:
dc:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:DA:9B:11:69:4C:89:93:AF:0B:50:89:5C:98:85:5A:AE:51:C6:4A
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/_dqbEWlMiZOvC1CJXJiFWq5Rxko.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.129.72.0/22
Signature Algorithm: sha256WithRSAEncryption
7f:c2:24:f7:6b:30:e5:d5:0e:fe:a3:a3:2e:55:b0:fe:33:8a:
a3:48:70:a5:e6:a6:b2:00:0b:4d:fc:6d:3f:22:9d:fe:39:0a:
a6:d6:1f:1d:7d:bb:87:aa:bd:9e:90:0c:cd:69:1d:aa:53:dc:
61:59:d8:9c:30:f8:69:ec:32:37:f0:ba:4c:ac:85:52:e9:81:
45:f2:a0:39:3b:53:b5:49:36:ae:4f:11:5e:3d:1b:2f:b7:02:
06:b5:47:fb:6a:d9:55:8b:68:c6:c8:8b:d2:12:73:32:c7:4a:
ee:18:e3:64:fd:87:2d:df:05:67:3c:9d:7a:75:4b:c9:a0:02:
28:2b:5e:5e:cc:11:4d:14:f6:4d:20:a4:82:30:ed:7e:b2:01:
6f:dc:3b:a9:c5:f8:fa:cd:a7:59:4b:2a:05:84:4e:19:ef:c3:
96:44:89:9d:80:ed:90:2b:7f:8e:b7:bb:67:ad:f3:3c:c1:d6:
67:47:1d:f2:d3:10:03:a0:34:a1:09:1d:96:c6:32:93:cc:33:
ee:c0:83:d7:6f:68:ae:99:8c:fc:66:e8:02:a4:1d:5d:83:eb:
2d:d7:d2:3f:9d:1c:33:6b:04:40:71:67:c4:db:00:e9:0f:64:
aa:2e:93:19:7e:45:b6:53:f7:6a:d4:eb:7d:07:cd:16:3e:e9:
59:30:1f:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org