Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/m5Rn6N5bbKlNOJlOkrRuE2QxhDY.roa
File: m5Rn6N5bbKlNOJlOkrRuE2QxhDY.roa (raw, json)
Hash identifier: vSYunaye5DSNbvNJAkGRsR2fwHLQvJopaOwjC0PcrH0=
Subject key identifier: 9B:94:67:E8:DE:5B:6C:A9:4D:38:99:4E:92:B4:6E:13:64:31:84:36
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 078D
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/m5Rn6N5bbKlNOJlOkrRuE2QxhDY.roa
Signing time: Tue 29 Sep 2020 10:06:03 +0000
ROA not before: Tue 29 Sep 2020 10:06:03 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 150.129.72.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1933 (0x78d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Sep 29 10:06:03 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9B9467E8DE5B6CA94D38994E92B46E1364318436
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:a7:b4:3a:50:e9:e0:fb:50:1b:16:2d:2e:a7:
7c:5b:7a:13:37:aa:9f:14:7b:5c:27:05:d4:1b:22:
89:9f:f0:29:d9:f7:5a:18:03:d1:c0:3d:5a:9a:68:
d0:95:df:67:30:63:3b:8f:17:ee:49:fa:50:7a:43:
92:18:9b:0c:fb:2a:1a:69:d9:da:50:97:a6:9b:89:
3b:29:a2:a2:3a:13:5e:29:a3:79:67:19:41:53:32:
10:13:dd:be:cd:52:95:fb:92:e7:90:28:17:ff:25:
43:a5:80:5f:6f:39:1e:c8:00:2f:39:b4:08:8b:42:
52:5b:2f:1c:c8:4a:2f:19:26:15:a0:43:f6:8f:ad:
24:1c:8a:40:82:bd:fc:91:5d:fe:a6:44:df:63:4b:
de:2c:36:31:95:a8:77:cf:1d:f7:3d:33:91:32:d1:
24:1a:aa:58:0a:70:b2:2c:28:01:12:91:0a:8b:81:
91:8b:14:fb:a7:13:20:3c:e7:f8:34:64:96:a5:40:
78:76:54:b7:57:b5:0a:f4:3b:da:b3:ac:27:87:60:
e9:3e:6d:84:8e:76:3d:ee:4f:27:fb:1f:93:ba:e7:
32:5a:37:1e:c0:eb:c6:0a:25:ca:e0:d7:a3:a8:2b:
42:9e:45:fb:75:07:1f:a0:0c:50:37:2b:86:4a:b2:
fe:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:94:67:E8:DE:5B:6C:A9:4D:38:99:4E:92:B4:6E:13:64:31:84:36
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/m5Rn6N5bbKlNOJlOkrRuE2QxhDY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.129.72.0/22
Signature Algorithm: sha256WithRSAEncryption
59:0f:9f:1e:68:85:20:fb:a2:ac:5c:74:64:6e:94:c6:46:f2:
c4:bb:b6:f2:50:17:50:38:d6:ca:f4:62:49:79:c0:70:0d:4d:
1e:c7:b6:66:1c:66:d0:6e:7b:5d:58:aa:37:b1:4f:f6:e5:13:
80:d4:e8:16:f1:5b:79:de:0c:21:49:13:28:7e:b8:5c:26:f8:
3a:00:7d:1a:89:a3:ee:e0:1e:f9:5d:ef:25:f2:9d:23:25:b5:
1e:f1:5f:2e:22:64:a8:ea:13:aa:ba:43:7b:32:16:6b:ed:d6:
53:41:51:67:51:ff:ad:64:d7:c9:ff:53:71:bf:fe:d1:83:c1:
30:60:64:74:4c:ee:4a:58:9c:7e:96:69:ba:6b:de:94:11:52:
15:18:4e:9c:c2:fa:bb:fb:e0:fb:13:48:59:ce:0c:8e:c1:a7:
e9:45:2d:02:13:cb:de:93:7b:1b:d1:dd:5a:2f:92:16:b8:63:
3d:5c:3b:52:6d:6e:a6:9e:31:82:1a:56:ee:73:32:7d:6a:fd:
05:93:17:60:30:c4:5b:da:38:eb:4b:2d:f9:00:46:6f:93:f0:
f1:bf:97:6b:50:e9:42:60:77:65:d4:be:df:7c:9e:c2:42:51:
9f:76:ec:08:69:6a:e4:28:05:bb:d6:5f:a3:51:7a:7a:76:53:
da:ef:2d:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:58:51 2025 by rpki-client