Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/f80uuM4UiAsqGTPULUlm3LNoVt0.roa
File: f80uuM4UiAsqGTPULUlm3LNoVt0.roa (raw, json)
Hash identifier: wRLuPiH9PLj0XrahETgEMxnlPFhrxLsqJ+7XEWeO2Z8=
Subject key identifier: 7F:CD:2E:B8:CE:14:88:0B:2A:19:33:D4:2D:49:66:DC:B3:68:56:DD
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 090C
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/f80uuM4UiAsqGTPULUlm3LNoVt0.roa
Signing time: Sun 07 Feb 2021 11:49:29 +0000
ROA not before: Sun 07 Feb 2021 11:49:29 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18419
IP address blocks: 61.60.192.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2316 (0x90c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Feb 7 11:49:29 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=7FCD2EB8CE14880B2A1933D42D4966DCB36856DD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:24:49:fa:15:64:5c:92:4c:ad:2c:b5:77:86:
30:05:a8:e4:65:51:77:80:31:d5:dd:08:3e:c2:bd:
83:2c:8d:1f:4d:0b:b3:76:95:f8:d5:a3:71:0e:ad:
74:d3:63:a9:aa:ce:13:75:c2:f5:ba:3e:16:49:59:
2f:58:45:bf:22:9d:ad:cc:d5:7f:f4:3f:ad:29:7e:
85:1e:e1:3b:da:d6:ec:2e:16:60:ea:69:28:13:04:
68:06:7e:de:4f:3e:5e:c0:a9:e3:9d:55:80:3b:81:
25:84:24:50:ed:81:3c:5c:bc:a3:6a:da:f8:94:98:
9a:ec:d2:ad:34:f4:6e:5b:ff:4b:6f:2d:a8:f1:fb:
50:90:80:07:b8:36:14:65:fa:f4:1f:7b:07:8a:5f:
e9:ff:fb:75:f0:f9:dc:69:87:d6:af:5c:76:ba:bb:
2f:dc:f0:d5:a3:9b:64:65:70:be:0a:f4:8a:61:25:
d2:c9:dc:a9:0c:0d:e6:57:51:85:84:3a:1a:7e:8b:
9e:8e:e1:4f:e9:42:a4:cf:a4:93:5e:8c:ef:85:8c:
c5:be:c6:52:40:d8:79:03:53:38:4c:19:13:ca:e7:
ba:07:43:0e:3c:41:a4:a1:63:f1:f4:62:5b:25:73:
0a:ff:73:24:c1:a2:a6:ca:c7:55:dd:35:98:3e:0e:
b4:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:CD:2E:B8:CE:14:88:0B:2A:19:33:D4:2D:49:66:DC:B3:68:56:DD
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/f80uuM4UiAsqGTPULUlm3LNoVt0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.60.192.0/20
Signature Algorithm: sha256WithRSAEncryption
5e:fb:f4:e5:3a:20:f9:91:bf:45:84:5b:25:4a:77:16:37:d4:
d3:4c:90:54:61:e4:78:79:4f:65:c9:3f:e7:6e:18:27:4e:fe:
16:f8:40:86:f0:7d:9e:a7:cc:60:b5:9c:ac:14:f2:3c:fb:bc:
a4:cd:7b:dd:c7:41:1d:78:4d:1d:37:12:a5:d3:34:52:7d:67:
46:47:97:e7:91:42:70:44:b0:59:fa:98:fa:2d:c2:95:28:ae:
f9:00:83:a8:0b:d5:fa:b4:53:b8:84:9e:01:10:15:56:db:87:
37:8d:20:c9:7f:f3:17:a8:12:67:6c:bb:85:ba:55:9f:fa:4b:
9d:af:bd:96:bc:0a:b8:61:12:d4:bf:03:ff:e4:bc:24:aa:55:
b4:30:77:03:f7:a2:e3:e3:30:e7:2e:43:9d:9d:95:6a:da:41:
3f:95:04:21:94:b1:c1:55:88:9f:b0:22:97:7b:61:63:b0:94:
92:c2:ff:f1:b6:8c:69:3d:2d:aa:f3:52:5f:bd:7b:11:13:dc:
0c:9f:bd:95:5d:f5:b1:51:07:dc:1f:8f:ca:4c:1e:a8:73:8c:
85:dc:e0:ef:20:24:5d:c4:c0:79:bb:92:49:9f:ed:79:e2:9f:
4d:c6:f2:eb:c9:da:02:25:01:ce:f7:db:62:a1:94:31:39:37:
56:68:5a:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org