Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/iVmsIqrf89Gu7bf3dEQgve6JI7I.roa
File: iVmsIqrf89Gu7bf3dEQgve6JI7I.roa (raw, json)
Hash identifier: JIqFJq/6sj3a1V/emuaTf0anAiqXgsXTmrzpACV3wKo=
Subject key identifier: 89:59:AC:22:AA:DF:F3:D1:AE:ED:B7:F7:74:44:20:BD:EE:89:23:B2
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 0BC0
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/iVmsIqrf89Gu7bf3dEQgve6JI7I.roa
Signing time: Fri 01 Sep 2023 09:45:03 +0000
ROA not before: Fri 01 Sep 2023 09:45:03 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18419
IP address blocks: 103.234.204.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3008 (0xbc0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Sep 1 09:45:03 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=8959AC22AADFF3D1AEEDB7F7744420BDEE8923B2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:53:57:f4:5f:47:6c:24:8f:34:af:ac:3e:99:
50:3a:1c:b2:68:c6:04:cd:48:02:04:69:ed:0e:2c:
66:c6:51:11:f6:06:b7:37:e4:bf:bd:7e:b3:99:31:
9a:c2:5e:b4:8f:c2:94:a5:86:a1:8c:76:04:48:b2:
39:66:e8:26:15:b6:05:6a:68:8a:b4:98:34:7b:a0:
ef:39:26:44:9f:19:ed:85:13:c9:50:fa:e4:b2:36:
a5:5d:84:dd:3c:62:b4:de:cf:c8:b8:10:f1:69:8c:
0e:67:90:7e:02:9d:46:2e:5c:3a:92:eb:91:3c:00:
49:41:55:dd:02:ee:47:12:6f:83:89:20:3d:e0:62:
66:29:cc:32:e8:00:56:52:f7:cd:3c:d1:88:63:f0:
35:4d:c6:83:38:e8:2f:2e:2a:78:42:8f:95:c6:fb:
1b:6a:53:11:62:7c:5d:b5:0d:d5:27:79:45:32:e9:
be:fb:b3:b8:7d:31:37:51:2e:70:b1:ff:85:ac:cb:
4e:4a:18:8a:60:e2:d0:25:78:22:4a:5d:a7:d2:ac:
0d:91:eb:87:a2:c9:c5:31:e7:02:4f:4e:3c:28:15:
0a:4d:28:1e:94:ac:c4:32:37:18:66:cc:5b:7c:67:
ba:be:4a:2e:60:d3:6d:75:ee:cb:60:a7:c3:eb:28:
e6:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:59:AC:22:AA:DF:F3:D1:AE:ED:B7:F7:74:44:20:BD:EE:89:23:B2
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/iVmsIqrf89Gu7bf3dEQgve6JI7I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.234.204.0/22
Signature Algorithm: sha256WithRSAEncryption
22:d4:bb:b6:05:9e:ca:83:ac:ee:ca:cc:ec:86:1d:90:d5:48:
98:9a:98:9d:a2:69:9a:9e:15:5f:0f:0e:0b:9b:06:ea:b7:f4:
87:ec:20:93:39:ac:e4:ef:5b:92:16:90:f3:e0:43:87:69:9a:
42:6f:58:0a:5d:88:60:4d:40:1c:84:fd:3d:6d:f0:6f:06:d3:
97:e7:40:94:0d:89:85:f3:65:bf:39:9d:18:a2:ae:71:88:5b:
cc:63:08:d8:25:2e:49:a8:ef:22:b3:cf:dc:6c:fc:19:89:c6:
7f:a6:b2:8b:b9:c6:98:67:7e:b8:f7:ce:18:88:81:0c:b3:d4:
8c:28:d0:c2:c5:14:20:fe:02:b9:7c:25:d3:d8:3c:72:07:45:
3c:65:6d:f7:f7:27:c4:95:f8:ff:b9:6e:8c:12:a5:15:f8:66:
50:d5:12:2f:5d:fd:c3:08:4e:c7:c1:13:f9:01:41:8b:e1:b9:
35:8e:db:0c:72:5d:f0:44:e3:fb:a6:96:7e:d4:d9:61:6a:10:
5f:76:48:7a:c0:43:1e:e2:32:5e:06:fa:0b:5d:af:52:28:6b:
a3:15:1f:99:e8:75:cb:05:a5:7f:07:8a:a2:22:b2:3e:e9:95:
c1:d3:8b:20:f8:77:39:af:6a:f3:64:65:88:37:4d:b1:c6:a5:
f8:ec:e8:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:50:25 2025 by rpki-client