Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/cY_iD4PGwOtU_qqjPNvNWOzpRLM.roa
File: cY_iD4PGwOtU_qqjPNvNWOzpRLM.roa (raw, json)
Hash identifier: yZYulEmfBsJFyUeOpF+iAJCGKTtGBos2oUCNEyYX2cc=
Subject key identifier: 71:8F:E2:0F:83:C6:C0:EB:54:FE:AA:A3:3C:DB:CD:58:EC:E9:44:B3
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 0AB1
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/cY_iD4PGwOtU_qqjPNvNWOzpRLM.roa
Signing time: Thu 15 Sep 2022 02:41:48 +0000
ROA not before: Thu 15 Sep 2022 02:41:48 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18419
IP address blocks: 150.129.228.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2737 (0xab1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Sep 15 02:41:48 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=718FE20F83C6C0EB54FEAAA33CDBCD58ECE944B3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:4a:f5:5e:19:40:84:04:d3:8d:7d:12:f4:78:
96:87:ff:72:c4:e0:e7:6d:56:23:19:41:f5:f9:9d:
1a:1e:75:09:1d:02:05:e5:dd:62:51:db:6f:b7:68:
0e:03:d0:4e:67:05:10:29:2f:63:9a:92:ac:26:06:
4d:2e:d2:64:4e:07:6b:d2:ee:f7:79:aa:02:6b:08:
bc:5b:46:ea:41:4b:2f:7a:d7:c2:fc:35:3e:61:d9:
5e:42:c4:05:97:c0:0c:f3:14:91:53:40:07:17:6a:
a5:d1:67:33:c2:d4:47:4b:00:9f:bf:e7:50:24:8b:
7e:2f:2b:fc:6b:45:ca:d5:45:3c:0e:aa:27:06:f3:
7d:3f:44:6b:21:58:e0:40:7a:25:6d:9f:13:62:26:
55:1d:8e:5e:de:cd:ff:7c:47:b5:80:f8:51:7b:23:
71:95:ca:c8:ab:05:dd:62:8b:07:c0:91:32:ce:af:
e5:08:b8:06:bc:6b:6f:72:fd:a2:fd:a9:5f:69:1c:
79:76:2b:1b:0b:13:c0:8e:ca:49:c4:8e:dc:62:c2:
8a:58:d2:85:01:76:79:5e:50:5b:24:50:89:83:95:
0a:95:fe:04:bc:f0:1a:1d:9f:f9:9b:65:29:f8:b3:
05:12:d7:10:fb:03:33:58:67:97:97:db:09:6c:64:
ee:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:8F:E2:0F:83:C6:C0:EB:54:FE:AA:A3:3C:DB:CD:58:EC:E9:44:B3
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/cY_iD4PGwOtU_qqjPNvNWOzpRLM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.129.228.0/22
Signature Algorithm: sha256WithRSAEncryption
59:41:07:b1:a0:8b:f9:ed:31:44:ac:ee:53:0f:0b:dd:06:d7:
63:28:16:57:91:43:86:33:36:c3:24:74:a8:09:c5:de:60:69:
fc:14:e8:bd:9d:31:cd:e8:5f:b1:c2:9b:20:0b:1d:40:8b:41:
d1:c3:95:01:03:02:41:c6:fa:03:b6:6e:c8:f2:a8:08:68:c7:
00:51:d4:2f:bf:da:66:02:48:15:a5:5e:06:fa:61:1f:d9:ba:
d1:98:d2:85:b5:c0:30:5f:40:fd:db:5a:f5:50:ac:85:ef:51:
f3:34:85:96:19:02:de:f7:8b:d1:8e:4d:4a:c0:a9:1e:f1:b0:
9e:68:b8:de:e4:af:3e:eb:e0:3b:9e:32:ac:b0:bf:f5:27:1d:
41:f2:ad:aa:c8:48:a1:94:ce:3d:65:f0:d1:34:3c:5a:aa:30:
d0:1f:93:fd:e6:65:47:4f:45:01:1b:f1:b1:a5:b6:56:11:7b:
91:4e:aa:23:9f:59:4e:3c:4f:13:37:dd:87:63:74:0a:fc:ab:
b7:e3:27:b1:60:7b:c3:e1:6f:66:ce:1e:ab:80:10:b0:58:4a:
b1:57:06:0a:da:53:9f:f4:38:e3:46:74:2c:9c:6b:bd:77:95:
56:b6:d2:ce:f6:cf:d5:7e:be:46:e8:75:65:38:b6:d7:c0:5b:
f1:b8:3c:b3
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCrEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0JF
NkM2NTEzNTBFOEZBMUZDN0QwQTNFQUJDRjk4RjgxQjMxMTlEMzAeFw0yMjA5MTUw
MjQxNDhaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDcxOEZFMjBGODNDNkMw
RUI1NEZFQUFBMzNDREJDRDU4RUNFOTQ0QjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDbSvVeGUCEBNONfRL0eJaH/3LE4OdtViMZQfX5nRoedQkdAgXl
3WJR22+3aA4D0E5nBRApL2OakqwmBk0u0mROB2vS7vd5qgJrCLxbRupBSy9618L8
NT5h2V5CxAWXwAzzFJFTQAcXaqXRZzPC1EdLAJ+/51Aki34vK/xrRcrVRTwOqicG
830/RGshWOBAeiVtnxNiJlUdjl7ezf98R7WA+FF7I3GVysirBd1iiwfAkTLOr+UI
uAa8a29y/aL9qV9pHHl2KxsLE8COyknEjtxiwopY0oUBdnleUFskUImDlQqV/gS8
8Bodn/mbZSn4swUS1xD7AzNYZ5eX2wlsZO4lAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUcY/iD4PGwOtU/qqjPNvNWOzpRLMwHwYDVR0jBBgwFoAUO+bGUTUOj6H8fQo+
q8+Y+BsxGdMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0lHTUEv
Ty1iR1VUVU9qNkg4ZlFvLXE4LVktQnN4R2RNLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9PLWJHVVRVT2o2SDhmUW8tcTgtWS1Cc3hHZE0uY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSUdNQS9jWV9pRDRQR3dPdFVfcXFqUE52
TldPenBSTE0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCloHk
MA0GCSqGSIb3DQEBCwUAA4IBAQBZQQexoIv57TFErO5TDwvdBtdjKBZXkUOGMzbD
JHSoCcXeYGn8FOi9nTHN6F+xwpsgCx1Ai0HRw5UBAwJBxvoDtm7I8qgIaMcAUdQv
v9pmAkgVpV4G+mEf2brRmNKFtcAwX0D921r1UKyF71HzNIWWGQLe94vRjk1KwKke
8bCeaLje5K8+6+A7njKssL/1Jx1B8q2qyEihlM49ZfDRNDxaqjDQH5P95mVHT0UB
G/GxpbZWEXuRTqojn1lOPE8TN92HY3QK/Ku34yexYHvD4W9mzh6rgBCwWEqxVwYK
2lOf9DjjRnQsnGu9d5VWttLO9s/Vfr5G6HVlOLbXwFvxuDyz
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org