Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/m_vTnIv1MZo4aHuklnrXuH7jxks.roa
File: m_vTnIv1MZo4aHuklnrXuH7jxks.roa (raw, json)
Hash identifier: Y7JLSruramUiz+SMeTlBBcEs3YKK9RF/P8Rto7BWSSA=
Subject key identifier: 9B:FB:D3:9C:8B:F5:31:9A:38:68:7B:A4:96:7A:D7:B8:7E:E3:C6:4B
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 08FC
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/m_vTnIv1MZo4aHuklnrXuH7jxks.roa
Signing time: Sun 07 Feb 2021 11:49:18 +0000
ROA not before: Sun 07 Feb 2021 11:49:18 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18419
IP address blocks: 150.129.72.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2300 (0x8fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Feb 7 11:49:18 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9BFBD39C8BF5319A38687BA4967AD7B87EE3C64B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c1:bd:8d:5c:07:5c:af:a3:1b:84:28:ba:08:
19:ce:32:84:3b:6e:c6:e7:34:41:08:85:55:1e:54:
c7:f2:1f:26:80:59:52:d2:da:e0:15:7d:0e:ac:45:
2d:80:7c:c2:65:f5:4d:12:7c:52:ad:4a:5d:69:52:
a5:2b:32:8d:f8:22:c4:13:a3:2c:2c:b0:23:38:6c:
d4:47:bb:3e:86:33:1b:64:54:c6:58:40:23:a5:e2:
38:bc:39:c0:d9:64:ac:4f:fe:34:a7:e8:97:c1:d9:
b8:2d:4f:77:17:22:b0:91:7a:62:bf:30:e2:4a:e7:
a6:11:1a:74:92:93:8a:3e:fb:db:9f:42:0d:de:de:
20:98:a5:2b:30:0c:f5:99:0a:24:33:b5:be:c1:67:
ac:fe:0e:9b:d7:cd:0e:0c:b4:6a:e4:49:7f:48:a5:
26:72:80:23:39:37:8a:2e:08:08:32:97:5a:ff:f6:
35:92:44:73:0c:9f:8c:df:aa:f1:64:8a:23:96:44:
4a:f7:02:c0:e4:c1:ba:b9:a6:d2:b8:e0:74:c9:28:
f8:bc:dd:ec:28:18:ac:cd:13:0f:c9:08:1c:ab:bb:
e9:fe:e8:4c:6c:3e:0f:40:98:43:8c:7e:8b:da:55:
2c:ee:0e:f3:4c:b0:35:3d:0c:29:06:bc:d5:98:4d:
9b:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:FB:D3:9C:8B:F5:31:9A:38:68:7B:A4:96:7A:D7:B8:7E:E3:C6:4B
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/m_vTnIv1MZo4aHuklnrXuH7jxks.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.129.72.0/22
Signature Algorithm: sha256WithRSAEncryption
a4:d5:95:e1:63:d0:b5:90:38:7a:2e:80:2b:7e:08:90:44:75:
94:62:75:13:14:2d:1f:e6:d7:05:90:0d:38:03:ae:00:87:c6:
bc:dd:62:ce:83:5f:43:65:07:c3:95:eb:25:a6:be:86:d2:42:
97:cd:24:02:5d:68:3d:ba:14:56:eb:03:47:9a:e0:f2:9d:a0:
58:b3:bd:fd:b0:61:fa:b0:36:78:3e:cb:b5:5e:ea:e5:d3:e1:
0a:8d:67:e3:43:a8:da:9b:9f:f2:f3:60:31:a3:54:ac:f8:e0:
20:95:ad:ae:f6:00:92:ff:a6:eb:ab:53:08:d4:ba:47:6a:f1:
b2:45:df:7c:ba:f2:15:8f:df:28:72:45:19:26:4a:fb:c8:06:
83:a9:86:79:e5:f1:fc:e1:b3:de:b2:84:a7:6a:a3:f2:aa:a8:
c4:7e:7c:21:4e:98:2c:b9:c7:65:4f:6a:a0:3a:6f:21:1a:f6:
08:aa:bf:45:f5:4c:71:1f:dc:25:27:3f:d5:dd:31:7d:92:42:
78:7b:8a:1a:3b:43:cc:d5:f5:fd:93:6f:db:dd:7d:5e:0d:14:
95:77:a7:bf:f8:ea:0c:10:42:af:bc:7f:c9:8e:2e:19:2b:0f:
e7:b4:a8:22:75:8e:e3:64:f4:52:cc:ad:65:f6:81:13:65:68:
e0:41:c1:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org