Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/gBIxNgBQxsnjBXMRErse54CfsIY.roa
File: gBIxNgBQxsnjBXMRErse54CfsIY.roa (raw, json)
Hash identifier: zgWKK+yGQgC66atuQ/T5ilCNTR7n95h6r2sGTNQQs/w=
Subject key identifier: 80:12:31:36:00:50:C6:C9:E3:05:73:11:12:BB:1E:E7:80:9F:B0:86
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 09BF
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/gBIxNgBQxsnjBXMRErse54CfsIY.roa
Signing time: Wed 29 Sep 2021 02:41:59 +0000
ROA not before: Wed 29 Sep 2021 02:41:59 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18419
IP address blocks: 180.214.176.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2495 (0x9bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Sep 29 02:41:59 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=801231360050C6C9E305731112BB1EE7809FB086
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:a5:99:16:54:71:b1:96:47:77:58:ee:c2:e3:
e2:bc:2a:0c:4c:b1:1d:04:b8:6e:14:4c:02:a2:ad:
70:d2:8e:bc:ab:17:17:b3:77:60:f8:65:dd:86:db:
6f:e7:2d:4b:c1:81:71:b4:d5:43:0e:66:35:21:c3:
b9:17:c1:43:6f:96:2f:4f:9f:d6:d0:7f:a2:0d:d5:
74:ac:d9:91:8d:6e:3c:80:c1:a2:ef:3b:18:9a:0c:
4f:49:d5:44:40:e7:75:a3:d7:52:1c:f5:20:00:ae:
87:bb:97:c7:d5:39:90:ad:5b:08:9a:53:d8:e7:2a:
9d:80:a4:83:0f:99:71:f6:f2:bb:c4:c9:e8:27:be:
f3:65:30:4c:42:5b:f1:53:46:4c:f3:ab:a6:82:8f:
1c:24:99:ff:63:28:9f:f3:c7:b8:b0:c6:f0:38:02:
65:49:b1:3b:d4:2a:f8:99:ca:71:64:9f:b3:51:9b:
15:7f:e7:3b:fb:3e:73:95:43:13:a4:a3:4b:ed:20:
8f:b8:89:1e:ee:3d:16:37:c3:b2:4a:ea:38:35:f1:
01:bb:a9:d5:64:ee:0b:0b:ee:f6:32:36:92:2b:06:
d6:cc:f9:1a:4e:5f:b7:3c:eb:d4:a0:1a:3d:64:6b:
70:05:68:16:2d:b7:d6:b5:23:8a:97:28:82:65:a2:
b2:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:12:31:36:00:50:C6:C9:E3:05:73:11:12:BB:1E:E7:80:9F:B0:86
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/gBIxNgBQxsnjBXMRErse54CfsIY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.214.176.0/20
Signature Algorithm: sha256WithRSAEncryption
86:c1:01:be:12:8f:53:bc:d4:9e:0c:6f:eb:74:1f:41:10:67:
68:de:cb:1f:a7:6a:86:04:e9:48:6e:2f:63:04:f2:8b:98:8d:
23:f7:41:88:e0:d0:17:cb:95:0e:ae:40:52:55:a0:e6:6f:40:
0a:92:b4:09:de:e5:a1:aa:1a:89:e6:33:c8:1f:ca:f5:e9:b6:
27:f8:de:0e:d9:ea:09:af:97:75:2a:01:1f:bb:a6:30:c3:21:
34:5c:e7:e5:21:d0:03:63:3e:5c:9e:63:55:36:03:bd:f6:5e:
a5:55:3d:c3:25:31:18:c5:16:28:13:53:6d:32:0a:61:5f:b3:
81:e1:53:7f:9e:fb:fd:0a:ad:c9:b0:2d:ab:29:7c:27:c1:9b:
ab:31:e0:d1:5b:50:5e:50:1e:83:29:38:ba:60:74:a6:6d:17:
d9:96:96:cd:e6:af:75:69:5d:2d:56:3f:ba:b7:ae:50:5d:ec:
8d:4a:63:be:a2:46:d1:8f:4d:04:b2:25:90:86:24:8c:2f:15:
d1:3a:74:2d:7e:82:ee:67:c8:b4:2f:36:f5:5d:92:37:da:3e:
ed:52:a2:e7:c4:92:64:39:c6:c2:fa:78:2b:e5:f8:8f:c1:6f:
d7:d4:09:39:cc:5b:96:2c:66:f9:bb:dc:62:b0:ac:66:fe:af:
17:e8:69:df
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCb8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0JF
NkM2NTEzNTBFOEZBMUZDN0QwQTNFQUJDRjk4RjgxQjMxMTlEMzAeFw0yMTA5Mjkw
MjQxNTlaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDgwMTIzMTM2MDA1MEM2
QzlFMzA1NzMxMTEyQkIxRUU3ODA5RkIwODYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDspZkWVHGxlkd3WO7C4+K8KgxMsR0EuG4UTAKirXDSjryrFxez
d2D4Zd2G22/nLUvBgXG01UMOZjUhw7kXwUNvli9Pn9bQf6IN1XSs2ZGNbjyAwaLv
OxiaDE9J1URA53Wj11Ic9SAAroe7l8fVOZCtWwiaU9jnKp2ApIMPmXH28rvEyegn
vvNlMExCW/FTRkzzq6aCjxwkmf9jKJ/zx7iwxvA4AmVJsTvUKviZynFkn7NRmxV/
5zv7PnOVQxOko0vtII+4iR7uPRY3w7JK6jg18QG7qdVk7gsL7vYyNpIrBtbM+RpO
X7c869SgGj1ka3AFaBYtt9a1I4qXKIJlorJTAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUgBIxNgBQxsnjBXMRErse54CfsIYwHwYDVR0jBBgwFoAUO+bGUTUOj6H8fQo+
q8+Y+BsxGdMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0lHTUEv
Ty1iR1VUVU9qNkg4ZlFvLXE4LVktQnN4R2RNLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9PLWJHVVRVT2o2SDhmUW8tcTgtWS1Cc3hHZE0uY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSUdNQS9nQkl4TmdCUXhzbmpCWE1SRXJz
ZTU0Q2ZzSVkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEtNaw
MA0GCSqGSIb3DQEBCwUAA4IBAQCGwQG+Eo9TvNSeDG/rdB9BEGdo3ssfp2qGBOlI
bi9jBPKLmI0j90GI4NAXy5UOrkBSVaDmb0AKkrQJ3uWhqhqJ5jPIH8r16bYn+N4O
2eoJr5d1KgEfu6YwwyE0XOflIdADYz5cnmNVNgO99l6lVT3DJTEYxRYoE1NtMgph
X7OB4VN/nvv9Cq3JsC2rKXwnwZurMeDRW1BeUB6DKTi6YHSmbRfZlpbN5q91aV0t
Vj+6t65QXeyNSmO+okbRj00EsiWQhiSMLxXROnQtfoLuZ8i0Lzb1XZI32j7tUqLn
xJJkOcbC+ngr5fiPwW/X1Ak5zFuWLGb5u9xisKxm/q8X6Gnf
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:49:43 2025 by rpki-client