Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/acsog_tPfVE9egnDBjs7mPFOIMk.roa
File: acsog_tPfVE9egnDBjs7mPFOIMk.roa (raw, json)
Hash identifier: 4u7pGkV4bNtExKhFXLjU+RMezDtfPFnWtJlCQXNJIrQ=
Subject key identifier: 69:CB:28:83:FB:4F:7D:51:3D:7A:09:C3:06:3B:3B:98:F1:4E:20:C9
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 0902
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/acsog_tPfVE9egnDBjs7mPFOIMk.roa
Signing time: Sun 07 Feb 2021 11:49:22 +0000
ROA not before: Sun 07 Feb 2021 11:49:22 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 180.214.176.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2306 (0x902)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Feb 7 11:49:22 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=69CB2883FB4F7D513D7A09C3063B3B98F14E20C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:86:d2:40:76:a5:4e:d9:83:70:36:43:8b:9a:
24:91:4f:8a:88:60:d7:94:c0:06:2e:a8:be:79:24:
a8:3f:ea:cb:bd:04:48:74:d0:11:af:a2:ab:10:23:
5f:ea:60:45:2c:f2:95:1f:bd:87:2d:87:a2:31:f6:
e1:6b:98:39:f1:52:10:40:f2:81:3f:dd:eb:c3:ed:
54:bf:f4:eb:66:f2:0e:6e:cd:26:b2:6a:f5:ef:9d:
f8:f4:66:f3:b4:aa:ed:f4:fa:71:80:06:47:5d:05:
62:0f:ce:1f:f7:5a:86:6e:47:e7:0c:d4:f9:43:69:
00:ec:2e:42:12:62:c0:d2:3f:c2:fa:e4:a2:7f:81:
89:2e:02:5a:11:a5:a2:45:62:9b:60:c6:a6:12:07:
d3:92:90:95:c7:37:3e:a8:bc:48:8b:35:29:f2:d4:
50:01:2f:92:11:91:54:4c:50:db:3c:96:83:cf:f7:
1e:43:45:4b:98:fd:19:1a:e0:ab:21:6a:1d:06:20:
ea:f3:1e:69:d6:b6:31:f8:85:7d:df:46:ac:6d:a5:
39:ae:cd:1f:a0:ff:08:fa:6b:d5:11:d3:10:62:d7:
cf:4e:bd:01:92:40:1b:d2:ba:d1:20:2a:03:91:1f:
d8:55:d0:e3:c6:94:a9:8a:59:c4:72:53:e3:b6:bc:
5e:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:CB:28:83:FB:4F:7D:51:3D:7A:09:C3:06:3B:3B:98:F1:4E:20:C9
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/acsog_tPfVE9egnDBjs7mPFOIMk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.214.176.0/20
Signature Algorithm: sha256WithRSAEncryption
52:31:ff:0d:90:c5:86:cf:66:93:fb:9e:fd:c9:c4:a4:d0:d2:
81:72:e6:e0:59:0f:9b:eb:49:98:db:c8:ff:f9:5b:c6:8d:cf:
c6:1b:6c:df:4b:8c:59:17:12:f3:74:21:82:32:f4:63:38:ff:
64:b4:bf:b5:1f:c1:89:74:cb:6e:a0:f7:b5:8a:32:f7:b5:b4:
40:19:9e:15:15:d2:97:91:bc:7c:7f:93:50:5e:45:18:2f:bc:
87:55:8c:2b:e5:6f:f5:9d:f9:b2:0a:00:26:c5:f9:cd:8f:c6:
03:be:88:79:d9:e5:14:de:cc:38:ed:94:59:9f:73:4b:d8:2b:
4b:70:ef:91:7a:5e:26:ae:6a:17:6f:86:bf:d6:c4:dd:5a:eb:
8e:ee:f3:4d:9d:2d:95:b8:6e:cf:6e:7d:b8:4b:f7:a3:4e:09:
37:a3:86:01:10:11:af:55:50:1c:01:fe:ed:a0:f8:bd:ff:c4:
f3:d9:7d:b2:71:f9:0d:7a:86:9e:66:cf:62:2e:a8:4c:be:cf:
57:5c:dd:60:f1:13:52:d8:5d:96:80:84:97:8c:24:c2:b7:44:
af:95:ac:18:ca:0f:ca:ba:ca:fa:39:5f:d4:26:ab:ba:d7:1f:
66:b8:bd:e6:af:7b:0a:56:15:7c:c9:1a:b7:88:36:da:4b:67:
7c:af:94:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org