Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/hZ9k1BET3qTQCSizJ3QQD6cazS4.roa
File: hZ9k1BET3qTQCSizJ3QQD6cazS4.roa (raw, json)
Hash identifier: FVixxShmjflGfNK/dCbbOgJ4OiWZ1YNO/jMsMJ9FbQI=
Subject key identifier: 85:9F:64:D4:11:13:DE:A4:D0:09:28:B3:27:74:10:0F:A7:1A:CD:2E
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 09C5
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/hZ9k1BET3qTQCSizJ3QQD6cazS4.roa
Signing time: Wed 29 Sep 2021 02:42:00 +0000
ROA not before: Wed 29 Sep 2021 02:42:00 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18419
IP address blocks: 103.234.228.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2501 (0x9c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Sep 29 02:42:00 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=859F64D41113DEA4D00928B32774100FA71ACD2E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:7a:aa:fa:3e:3e:16:9d:df:2a:22:c2:31:af:
f8:fb:da:fc:0b:b2:9c:3d:db:fe:3f:0f:84:1c:b1:
ba:2d:01:5f:7c:5f:8d:fc:d0:f3:47:3b:50:c2:10:
0e:5d:4d:00:f4:f0:12:9b:75:ff:34:a0:0e:7d:24:
31:a2:76:1f:e2:1b:35:3e:20:ed:a6:ec:52:f9:45:
85:c3:46:51:48:63:a4:31:85:96:12:8f:a9:77:df:
8a:af:75:51:53:30:77:50:9a:28:a0:f8:4a:f4:fd:
ed:e0:6f:df:5e:d5:38:8a:07:8d:62:d3:ec:5e:9c:
2c:fc:1b:91:f2:3d:19:68:df:9a:66:b8:0c:70:2b:
42:1f:6b:57:f9:99:bc:8b:8c:bb:29:8e:a7:8a:3b:
44:6c:c7:b7:f7:40:16:48:a7:57:2a:f3:13:0a:5a:
91:9f:51:81:27:be:7e:4e:de:9f:9b:44:52:cb:1e:
e5:42:87:79:ca:9b:3f:92:f5:7a:16:cb:9b:37:97:
b4:82:04:70:f4:d9:34:af:b4:fb:13:68:97:31:eb:
88:36:e8:c3:6e:c3:12:3a:5b:97:37:5f:0e:d4:d5:
00:42:0e:4e:7f:12:30:16:a2:d4:07:cc:53:a2:0f:
c7:b9:40:40:f9:7b:e0:59:4b:ae:f0:67:96:82:fd:
87:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:9F:64:D4:11:13:DE:A4:D0:09:28:B3:27:74:10:0F:A7:1A:CD:2E
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/hZ9k1BET3qTQCSizJ3QQD6cazS4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.234.228.0/22
Signature Algorithm: sha256WithRSAEncryption
bb:09:4f:dc:f0:a7:73:19:0c:c7:89:b9:94:0b:c0:e1:db:03:
ea:33:22:16:fd:22:94:6d:39:32:f5:7a:ef:e3:88:05:ae:e1:
c5:0f:3c:87:a7:43:ff:dc:1c:11:1f:d8:04:90:f1:f3:02:0b:
d9:72:ec:b8:e5:17:ec:96:db:43:df:7d:7a:c8:6b:47:98:30:
31:33:ca:f9:24:7c:13:2a:72:ba:e1:ea:b1:b3:28:45:c4:51:
38:c1:54:f0:d4:2a:d5:71:69:eb:bd:d8:26:fa:72:bf:56:d5:
4e:40:22:2b:19:42:dd:9c:73:4b:86:3f:2e:5d:79:f6:8e:ce:
95:fc:26:4b:2c:f1:37:c7:7f:73:5e:ff:19:58:2a:ad:f8:d8:
b9:df:45:37:14:2c:d6:f2:fa:7b:7b:ca:a7:7d:68:1a:94:5f:
ee:69:11:1a:11:69:6f:da:d2:bc:5d:a5:57:22:ad:aa:35:25:
7f:7f:2d:d9:27:81:c4:79:0c:19:85:36:4d:88:f3:bd:04:e6:
15:a4:ed:e5:39:3a:f1:ee:25:f7:b8:83:7c:78:ae:78:54:11:
e3:57:c6:b6:87:93:c1:f3:c3:48:4b:e5:62:5e:18:93:51:0f:
2e:9f:a5:ad:1c:b4:7a:db:bc:85:d8:f6:c2:4e:9c:e7:db:79:
4a:d0:51:92
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCcUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0JF
NkM2NTEzNTBFOEZBMUZDN0QwQTNFQUJDRjk4RjgxQjMxMTlEMzAeFw0yMTA5Mjkw
MjQyMDBaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDg1OUY2NEQ0MTExM0RF
QTREMDA5MjhCMzI3NzQxMDBGQTcxQUNEMkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDveqr6Pj4Wnd8qIsIxr/j72vwLspw92/4/D4QcsbotAV98X438
0PNHO1DCEA5dTQD08BKbdf80oA59JDGidh/iGzU+IO2m7FL5RYXDRlFIY6QxhZYS
j6l334qvdVFTMHdQmiig+Er0/e3gb99e1TiKB41i0+xenCz8G5HyPRlo35pmuAxw
K0Ifa1f5mbyLjLspjqeKO0Rsx7f3QBZIp1cq8xMKWpGfUYEnvn5O3p+bRFLLHuVC
h3nKmz+S9XoWy5s3l7SCBHD02TSvtPsTaJcx64g26MNuwxI6W5c3Xw7U1QBCDk5/
EjAWotQHzFOiD8e5QED5e+BZS67wZ5aC/YenAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUhZ9k1BET3qTQCSizJ3QQD6cazS4wHwYDVR0jBBgwFoAUO+bGUTUOj6H8fQo+
q8+Y+BsxGdMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0lHTUEv
Ty1iR1VUVU9qNkg4ZlFvLXE4LVktQnN4R2RNLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9PLWJHVVRVT2o2SDhmUW8tcTgtWS1Cc3hHZE0uY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSUdNQS9oWjlrMUJFVDNxVFFDU2l6SjNR
UUQ2Y2F6UzQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ+rk
MA0GCSqGSIb3DQEBCwUAA4IBAQC7CU/c8KdzGQzHibmUC8Dh2wPqMyIW/SKUbTky
9Xrv44gFruHFDzyHp0P/3BwRH9gEkPHzAgvZcuy45RfslttD3316yGtHmDAxM8r5
JHwTKnK64eqxsyhFxFE4wVTw1CrVcWnrvdgm+nK/VtVOQCIrGULdnHNLhj8uXXn2
js6V/CZLLPE3x39zXv8ZWCqt+Ni530U3FCzW8vp7e8qnfWgalF/uaREaEWlv2tK8
XaVXIq2qNSV/fy3ZJ4HEeQwZhTZNiPO9BOYVpO3lOTrx7iX3uIN8eK54VBHjV8a2
h5PB88NIS+ViXhiTUQ8un6WtHLR627yF2PbCTpzn23lK0FGS
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org