Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/dDjGZ8kivwJ9nmvixVJdkJ5kflw.roa
File: dDjGZ8kivwJ9nmvixVJdkJ5kflw.roa (raw, json)
Hash identifier: hPE1Pb+D3SQqzEI2ozDOfcYoRdEV1RQhTVrLUcudjUI=
Subject key identifier: 74:38:C6:67:C9:22:BF:02:7D:9E:6B:E2:C5:52:5D:90:9E:64:7E:5C
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 0AB1
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/dDjGZ8kivwJ9nmvixVJdkJ5kflw.roa
Signing time: Thu 15 Sep 2022 02:41:49 +0000
ROA not before: Thu 15 Sep 2022 02:41:49 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18419
IP address blocks: 180.214.176.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2737 (0xab1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Sep 15 02:41:49 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=7438C667C922BF027D9E6BE2C5525D909E647E5C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:58:2d:4d:e8:a6:5f:3e:3f:9d:71:47:35:c3:
25:e7:50:a6:0c:c5:88:5d:61:cf:bc:4d:eb:fb:3e:
c0:bb:7a:49:a8:55:6f:56:d4:fd:0c:a3:84:0f:eb:
77:cc:1f:4c:ad:2d:56:c2:34:9a:4c:fc:12:4c:d3:
e2:40:82:fa:1e:a7:59:7b:3f:4d:6f:40:59:83:36:
06:c9:11:5f:46:7f:77:d1:dd:47:e1:56:83:d9:54:
bf:bb:b1:64:2f:4b:df:a5:9a:86:27:ed:cc:5e:6d:
7f:08:62:a8:e8:f0:0d:1e:f3:1f:5a:9e:bb:6e:88:
04:52:22:90:9e:a5:f9:66:cc:d2:76:d5:ef:01:3d:
c0:bf:6a:cc:3c:24:da:84:01:93:c5:00:3e:ca:72:
fb:a7:da:5e:aa:07:50:aa:73:be:43:97:13:80:f9:
b1:a2:f1:e0:b6:99:19:24:bc:6e:48:2e:87:28:29:
39:ab:97:e4:14:5f:e4:d6:e7:47:63:5c:0d:ad:df:
9e:8e:fc:c0:3c:37:00:90:a9:36:8e:78:e4:34:f0:
49:b9:91:0a:ed:7b:27:e8:cd:2b:b3:ef:d2:e4:e8:
16:a7:da:df:74:59:a2:cc:94:2a:f5:6e:e3:b4:54:
87:f8:72:de:39:7c:67:d3:85:97:9d:30:0f:74:85:
a6:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:38:C6:67:C9:22:BF:02:7D:9E:6B:E2:C5:52:5D:90:9E:64:7E:5C
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/dDjGZ8kivwJ9nmvixVJdkJ5kflw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.214.176.0/20
Signature Algorithm: sha256WithRSAEncryption
60:c6:3d:b7:da:7c:a8:a2:17:67:0a:91:02:50:54:b0:21:2f:
9f:71:1b:fc:9e:ab:9f:47:17:b1:93:b9:be:56:5b:18:e8:f6:
2c:19:7c:f8:33:ce:f7:9a:f8:6c:bd:a1:f2:83:fd:89:49:1a:
17:d8:7a:43:b6:f9:b4:56:c1:06:22:7d:70:76:5f:2a:9c:a4:
74:a6:c2:ea:76:b5:21:da:c4:6c:9e:56:fd:43:f9:63:93:8e:
e5:8b:10:9b:ee:a5:e1:52:46:c0:ad:16:28:32:05:e2:15:cf:
d1:56:fa:5b:93:91:eb:01:01:dc:81:f2:82:42:a5:7d:09:26:
e2:b8:5e:ec:ea:ea:76:1d:2f:c4:91:00:46:8a:dc:6b:2c:ef:
e5:b6:0c:5f:49:8a:17:07:39:1f:78:34:0b:d1:8f:3c:2c:88:
cc:dc:7f:8d:83:e7:3b:e6:6e:68:da:86:56:ce:b1:b8:a8:79:
7f:a4:21:a7:01:19:14:3b:64:a9:11:eb:3b:09:04:b0:3f:62:
e3:b5:a9:08:3d:5b:6b:15:3f:5b:16:a2:86:4f:81:73:c3:c8:
69:10:84:df:50:e5:69:93:52:2d:fe:6e:8d:70:47:37:78:0a:
87:df:1b:bb:bb:ee:74:00:a5:58:b4:55:81:85:8b:0d:b9:8d:
4c:fe:0a:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org