Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/lwvsCayhfygvXEVsgpmKkZ-FGjk.roa
File: lwvsCayhfygvXEVsgpmKkZ-FGjk.roa (raw, json)
Hash identifier: ejkmyJHGQE6xhQj1IjBJYdgxkXzwjGvYBSseL3tiASA=
Subject key identifier: 97:0B:EC:09:AC:A1:7F:28:2F:5C:45:6C:82:99:8A:91:9F:85:1A:39
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 09BE
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/lwvsCayhfygvXEVsgpmKkZ-FGjk.roa
Signing time: Wed 29 Sep 2021 02:41:58 +0000
ROA not before: Wed 29 Sep 2021 02:41:58 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 180.214.176.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2494 (0x9be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Sep 29 02:41:58 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=970BEC09ACA17F282F5C456C82998A919F851A39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:53:f0:d6:d8:2b:fd:c8:e0:fa:fd:7e:e2:f1:
6f:eb:e7:89:92:6c:da:7a:bb:b6:59:85:57:33:d3:
50:21:48:82:dc:02:ea:30:b0:ff:ee:66:8a:20:f3:
78:44:c4:f0:31:fd:44:bc:30:4b:86:3f:b4:21:8f:
23:f2:f2:20:86:25:b0:39:49:24:5f:3a:b3:2c:e4:
44:57:6e:c0:eb:73:5f:c0:89:7f:06:31:16:b6:d5:
b9:4f:9d:5f:2e:27:08:3a:7b:2b:a9:1a:c4:0e:9a:
59:ad:86:12:b6:e3:9f:ab:b7:1e:f5:44:0c:cd:59:
80:65:1f:39:4f:79:99:58:d3:6f:ab:9d:5c:45:ac:
5a:42:83:e0:d1:6e:f1:67:bd:9d:06:71:68:b9:ad:
fa:23:4b:a8:bb:a0:30:08:61:3a:23:7b:60:21:29:
c0:8d:ee:fa:97:12:0d:bd:81:d5:83:5f:01:c9:95:
73:7a:9d:91:b0:47:e9:10:4c:0d:68:3b:06:00:30:
35:ce:f3:54:5a:72:39:e5:a2:12:47:1c:b5:09:5e:
93:0d:37:61:b9:d6:ab:61:4b:e9:22:0f:b6:39:dd:
b3:89:2d:4a:69:bd:49:60:4c:53:d5:04:44:19:e8:
74:aa:01:b1:3c:b2:6d:e7:56:0b:09:64:98:24:e8:
cd:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:0B:EC:09:AC:A1:7F:28:2F:5C:45:6C:82:99:8A:91:9F:85:1A:39
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/lwvsCayhfygvXEVsgpmKkZ-FGjk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.214.176.0/20
Signature Algorithm: sha256WithRSAEncryption
a5:6c:d7:21:e7:aa:3b:5b:a0:f1:6a:0a:4d:80:42:05:9f:41:
49:83:37:11:fe:dd:02:c4:84:f2:29:a3:4a:c9:de:b4:b9:60:
31:c1:98:fa:1a:ab:17:8a:47:af:91:3d:fb:e9:20:97:4f:04:
96:49:fa:bd:4b:d2:d5:17:cd:10:73:bf:0f:43:51:a0:38:e1:
20:0e:a8:aa:5b:c1:3d:5d:2a:60:29:09:e0:ac:18:4d:d9:bf:
a0:e5:58:bc:6d:e5:41:63:bb:20:2d:b2:69:6a:88:b3:76:1b:
6c:8b:da:85:3a:eb:00:00:f9:09:fd:11:97:aa:7e:d1:0b:e6:
7e:ba:36:18:b3:a4:8e:cf:2f:32:b8:57:38:2b:f1:4a:9e:ad:
91:42:d8:3e:a4:c7:2f:a3:ef:ef:e3:f1:a9:85:48:1b:e4:4a:
f4:b6:fe:c6:f1:c4:ba:26:5b:a7:65:13:cc:92:2b:61:1a:8c:
16:df:0b:4b:4c:1b:e6:21:32:a4:70:b1:59:4e:8f:6d:e4:68:
fc:1b:7f:83:66:0e:bf:d9:9e:67:f0:82:aa:aa:91:96:28:54:
d2:67:e1:17:ea:c8:4e:99:2e:54:69:cb:67:8b:32:9d:24:b1:
8b:10:8a:3e:dc:36:16:a6:e8:6a:3b:7d:4c:08:48:52:1f:2d:
01:22:4e:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org