Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/mvsM4D6a1T_bvBi43kW9F-W28F0.roa
File: mvsM4D6a1T_bvBi43kW9F-W28F0.roa (raw, json)
Hash identifier: sfkRzxIC9diZZANmwfGd59p10BMoHBZ42QcqrWP8Y38=
Subject key identifier: 9A:FB:0C:E0:3E:9A:D5:3F:DB:BC:18:B8:DE:45:BD:17:E5:B6:F0:5D
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 0AB1
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/mvsM4D6a1T_bvBi43kW9F-W28F0.roa
Signing time: Thu 15 Sep 2022 02:41:46 +0000
ROA not before: Thu 15 Sep 2022 02:41:46 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 203.121.240.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2737 (0xab1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Sep 15 02:41:46 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=9AFB0CE03E9AD53FDBBC18B8DE45BD17E5B6F05D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:b8:bf:be:b9:54:c6:1f:89:3b:11:98:ad:bb:
58:01:61:2e:2c:55:6e:5f:9d:76:37:8f:61:e5:9c:
54:74:4f:37:6d:ae:92:87:c7:8d:86:87:a6:29:92:
13:7b:b2:42:a1:75:87:ff:ec:ac:6d:f7:f7:0b:d3:
32:ba:11:4d:ee:ed:a3:a4:21:c3:17:91:ed:32:62:
db:ec:ee:b1:e9:42:4f:a4:6d:1d:d4:0c:3b:6d:ee:
9e:fe:01:9e:87:8b:fd:a0:b9:de:ec:c9:2a:57:aa:
d9:26:69:e4:69:b7:d9:d8:44:df:6b:dc:12:ac:a6:
1d:25:2f:c2:ad:51:ba:4e:06:6b:ce:0f:8b:91:dc:
80:8a:62:57:c0:4a:09:ba:36:40:9c:4f:91:a0:73:
6e:ce:ac:c3:d4:6c:52:4b:f9:b3:e5:19:bc:60:fc:
a2:fd:9b:26:5c:bd:06:f3:4b:43:c0:8b:d8:7f:d2:
1f:e5:fc:19:14:3e:a5:f0:bc:b2:9e:08:d5:33:4d:
d0:8a:1a:ab:54:27:84:b3:f1:76:cf:59:3e:9e:27:
24:96:46:b2:f9:1d:3c:ff:83:2d:54:34:4b:d4:44:
f7:f7:c4:cb:75:ba:a2:25:62:ff:d7:ab:d8:70:b3:
36:6d:b9:16:74:0e:7b:cb:33:30:92:cc:03:b5:64:
48:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:FB:0C:E0:3E:9A:D5:3F:DB:BC:18:B8:DE:45:BD:17:E5:B6:F0:5D
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/mvsM4D6a1T_bvBi43kW9F-W28F0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.121.240.0/20
Signature Algorithm: sha256WithRSAEncryption
0f:d2:ba:1d:7c:fc:36:ff:4c:79:69:fe:d5:33:96:78:87:bd:
68:ba:95:52:b6:25:47:a3:6d:cb:d0:fa:c2:b1:e5:19:6b:f5:
38:a0:a5:db:cd:bc:ed:00:de:04:32:a4:45:f8:58:7a:cf:18:
1b:d5:61:b1:85:4a:a1:45:de:0c:25:21:b0:d6:ad:ca:ef:4b:
ae:d2:e9:fe:0a:88:99:73:0c:fa:eb:7d:c7:4c:c3:c7:b3:2a:
95:40:95:a5:71:55:d2:16:84:d7:77:cb:27:67:75:8a:71:cd:
74:92:94:74:3e:45:9d:8f:e7:df:0e:19:8b:7e:ae:96:97:4e:
15:de:2f:67:fc:34:7e:c3:e8:4a:b7:d1:f9:ce:86:39:a6:3d:
11:82:dd:0b:7b:ab:c8:7a:da:01:be:cb:d8:02:ca:32:a8:1b:
24:b5:c3:79:ab:50:df:a1:43:a3:9b:ff:d8:3a:c8:86:a1:39:
93:d3:c9:4f:0c:b4:cd:fd:67:ea:ac:99:11:c1:ce:86:58:fd:
6e:ea:c2:41:72:ac:5d:47:37:8c:46:67:85:2d:cf:e9:9c:09:
17:0d:a6:0b:19:55:82:54:d5:10:ea:f0:35:1a:23:23:4d:c9:
57:1a:c3:c3:94:88:a9:0a:ff:27:4d:bf:66:27:9e:aa:c7:2e:
78:29:cd:e9
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCrEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0JF
NkM2NTEzNTBFOEZBMUZDN0QwQTNFQUJDRjk4RjgxQjMxMTlEMzAeFw0yMjA5MTUw
MjQxNDZaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDlBRkIwQ0UwM0U5QUQ1
M0ZEQkJDMThCOERFNDVCRDE3RTVCNkYwNUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC6uL++uVTGH4k7EZitu1gBYS4sVW5fnXY3j2HlnFR0TzdtrpKH
x42Gh6YpkhN7skKhdYf/7Kxt9/cL0zK6EU3u7aOkIcMXke0yYtvs7rHpQk+kbR3U
DDtt7p7+AZ6Hi/2gud7sySpXqtkmaeRpt9nYRN9r3BKsph0lL8KtUbpOBmvOD4uR
3ICKYlfASgm6NkCcT5Ggc27OrMPUbFJL+bPlGbxg/KL9myZcvQbzS0PAi9h/0h/l
/BkUPqXwvLKeCNUzTdCKGqtUJ4Sz8XbPWT6eJySWRrL5HTz/gy1UNEvURPf3xMt1
uqIlYv/Xq9hwszZtuRZ0DnvLMzCSzAO1ZEj5AgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUmvsM4D6a1T/bvBi43kW9F+W28F0wHwYDVR0jBBgwFoAUO+bGUTUOj6H8fQo+
q8+Y+BsxGdMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0lHTUEv
Ty1iR1VUVU9qNkg4ZlFvLXE4LVktQnN4R2RNLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9PLWJHVVRVT2o2SDhmUW8tcTgtWS1Cc3hHZE0uY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSUdNQS9tdnNNNEQ2YTFUX2J2Qmk0M2tX
OUYtVzI4RjAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEy3nw
MA0GCSqGSIb3DQEBCwUAA4IBAQAP0rodfPw2/0x5af7VM5Z4h71oupVStiVHo23L
0PrCseUZa/U4oKXbzbztAN4EMqRF+Fh6zxgb1WGxhUqhRd4MJSGw1q3K70uu0un+
CoiZcwz6633HTMPHsyqVQJWlcVXSFoTXd8snZ3WKcc10kpR0PkWdj+ffDhmLfq6W
l04V3i9n/DR+w+hKt9H5zoY5pj0Rgt0Le6vIetoBvsvYAsoyqBsktcN5q1DfoUOj
m//YOsiGoTmT08lPDLTN/WfqrJkRwc6GWP1u6sJBcqxdRzeMRmeFLc/pnAkXDaYL
GVWCVNUQ6vA1GiMjTclXGsPDlIipCv8nTb9mJ56qxy54Kc3p
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org