Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/ivgivLcxbh_X7Z_G5VsRgwDgeTY.roa
File: ivgivLcxbh_X7Z_G5VsRgwDgeTY.roa (raw, json)
Hash identifier: zuOejU1tnDr3vCrZBSUvE52cX0IrPuVAwF/zai1scc0=
Subject key identifier: 8A:F8:22:BC:B7:31:6E:1F:D7:ED:9F:C6:E5:5B:11:83:00:E0:79:36
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 0910
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/ivgivLcxbh_X7Z_G5VsRgwDgeTY.roa
Signing time: Sun 07 Feb 2021 12:59:06 +0000
ROA not before: Sun 07 Feb 2021 12:59:06 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18419
IP address blocks: 103.234.204.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2320 (0x910)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Feb 7 12:59:06 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8AF822BCB7316E1FD7ED9FC6E55B118300E07936
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:49:33:7d:77:14:42:46:1e:fb:f2:2c:93:7e:
12:b2:86:93:e4:6b:22:2a:b7:ce:41:32:ef:5b:1a:
75:82:da:89:34:48:d4:0e:23:37:4a:4d:22:38:a6:
d3:cd:c0:01:1a:6d:75:c4:c5:c3:8d:c9:6f:19:79:
a4:f6:e2:28:c8:76:5e:c8:82:05:18:6b:ff:80:ec:
40:70:1b:9e:6f:43:60:60:f7:0e:42:6f:6e:5a:39:
24:17:6e:67:e4:91:27:02:26:c2:76:9a:1f:8c:f3:
5d:19:56:55:f9:59:46:cf:c7:4a:0c:1a:9e:e4:11:
77:8b:9b:66:aa:4e:2a:8a:c3:43:98:4a:4d:d3:f3:
8d:9c:42:73:2f:86:df:d5:a1:9a:0e:36:3a:3d:89:
ba:3f:8d:bf:4b:a2:7b:6d:32:ca:92:fb:96:01:a5:
30:3f:80:de:cb:87:b9:b3:2a:68:dc:b9:35:8e:03:
9d:0b:b5:2b:45:ce:d2:11:3d:a8:73:3b:2f:2e:5f:
8a:f6:c6:8b:00:a2:fd:80:a1:d5:f9:3b:dd:10:fc:
a7:ab:11:d6:6b:15:e1:ac:73:64:a4:5b:99:c5:76:
28:bd:40:8e:7d:dc:e3:ae:62:46:1d:54:7d:fc:2b:
44:6f:07:79:26:6c:75:26:26:89:c2:79:bc:41:8b:
c3:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:F8:22:BC:B7:31:6E:1F:D7:ED:9F:C6:E5:5B:11:83:00:E0:79:36
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/ivgivLcxbh_X7Z_G5VsRgwDgeTY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.234.204.0/22
Signature Algorithm: sha256WithRSAEncryption
9f:b5:81:26:30:62:0a:f1:2d:d5:64:80:78:e1:79:b8:6a:c5:
b4:4b:94:b9:8d:18:b8:b0:d1:25:84:d8:64:a0:c5:5a:ec:b6:
b2:5c:a6:75:33:34:0e:39:9f:5d:30:6e:5c:b2:ec:ba:74:ae:
bf:04:68:26:29:c7:0e:30:c0:ed:8a:bd:82:17:2d:e9:cb:f0:
8b:54:5e:f9:8b:ec:cf:7d:c4:0d:bd:78:d2:d5:fa:67:de:fe:
e7:87:b8:23:2d:00:6e:65:4f:ef:21:15:0c:6a:cf:e1:80:1c:
28:e8:06:e9:ca:69:3c:fe:42:b1:03:bf:4c:7e:c2:32:69:32:
f5:53:91:51:92:fa:fc:82:63:dc:99:5c:d4:9a:3e:78:7d:ab:
71:a8:65:bb:41:87:04:6b:be:7b:30:e8:fb:51:3f:1a:cd:e5:
82:ec:d9:eb:6f:3b:08:3d:2c:4f:33:c4:e4:54:25:8b:b8:d6:
a4:65:40:f9:c4:a9:77:c7:8b:99:a5:9e:3d:41:39:98:12:65:
97:5d:76:ad:74:d7:ec:90:de:70:b5:5d:fa:cb:b3:15:00:26:
04:f2:7b:c6:e4:99:ef:4e:00:a2:df:4a:a7:3f:d6:ca:81:f7:
51:17:30:c8:31:85:14:71:22:74:d1:2d:fd:ce:e7:be:52:d2:
65:30:58:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org