Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/nBPXrSKM5_19XFWboThp44gIq5A.roa
File: nBPXrSKM5_19XFWboThp44gIq5A.roa (raw, json)
Hash identifier: i/tBq9VFGEFXCfckypQyXYNi3RzpL3sUWxDgz4ZV8ak=
Subject key identifier: 9C:13:D7:AD:22:8C:E7:FD:7D:5C:55:9B:A1:38:69:E3:88:08:AB:90
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 0AB1
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/nBPXrSKM5_19XFWboThp44gIq5A.roa
Signing time: Thu 15 Sep 2022 02:41:43 +0000
ROA not before: Thu 15 Sep 2022 02:41:43 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 124.109.112.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2737 (0xab1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Sep 15 02:41:43 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=9C13D7AD228CE7FD7D5C559BA13869E38808AB90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:ba:f1:b8:20:e2:ac:23:85:d9:11:c2:f7:a2:
d1:09:6a:ca:71:db:00:55:47:b5:24:ac:04:eb:49:
b8:cc:91:c8:c4:6c:46:fe:12:36:8a:52:c7:c5:d0:
34:bc:2a:bb:57:14:49:67:73:08:f2:6e:4d:9b:67:
13:16:be:2f:30:9d:48:93:65:d9:be:57:4a:f4:a3:
f7:b3:41:1f:34:fc:c9:f8:fd:08:16:5c:7f:f2:67:
9f:97:15:00:90:e1:25:09:2f:c6:59:37:90:72:22:
38:bd:9f:00:93:09:5d:5b:3d:0f:02:5a:4a:db:b1:
b5:85:ed:88:8b:00:69:31:8f:64:62:b0:34:f7:6a:
c2:7d:42:fe:14:3a:dd:56:75:70:ad:ce:0f:83:01:
b0:df:59:7c:26:5b:d6:3e:6c:68:59:0a:cc:09:91:
1a:c8:03:d8:77:4f:65:53:16:8b:83:bb:86:5c:95:
77:c5:0a:c5:66:9c:38:30:50:88:a3:ed:ad:32:82:
7a:97:dc:6e:1d:8e:74:da:3e:48:a4:63:82:f7:f2:
d0:5a:27:4c:c2:62:e8:20:c2:9f:86:7f:ee:e8:fd:
63:85:0e:ee:13:fe:db:10:44:c4:85:18:3d:8f:59:
c9:cc:df:18:f3:cc:56:73:5c:ee:dc:6d:ba:af:32:
a4:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:13:D7:AD:22:8C:E7:FD:7D:5C:55:9B:A1:38:69:E3:88:08:AB:90
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/nBPXrSKM5_19XFWboThp44gIq5A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.109.112.0/20
Signature Algorithm: sha256WithRSAEncryption
b5:4e:78:d1:00:19:20:34:d8:75:1a:73:3f:c4:2a:d9:3a:9e:
50:2c:21:c6:db:ba:95:96:b2:f1:b0:e0:98:86:1f:93:cf:49:
dd:7c:af:74:6e:e6:d5:6d:c6:f7:ee:01:1b:62:09:31:28:c5:
96:51:e0:2a:09:6c:2c:fb:44:ac:8f:be:66:98:73:5d:48:73:
4e:ac:46:56:a2:8b:05:36:c0:4e:59:4d:d4:28:e2:0d:df:b8:
21:52:81:51:e7:fd:12:23:df:e2:11:c9:5e:c7:59:1f:d3:fe:
f4:f9:17:e7:c7:97:39:20:89:49:6e:c5:89:88:9e:19:dd:f8:
31:35:42:e9:3b:19:c8:c1:be:25:39:82:3b:be:12:4c:18:ce:
d4:a4:3f:b0:51:0b:2c:a9:2c:a4:d9:07:e0:68:bc:10:20:a1:
19:64:63:48:87:07:73:3d:32:e1:48:2c:63:35:f7:c2:3b:f6:
dd:46:70:36:8c:39:9b:34:19:7b:91:b8:ec:bc:79:94:62:b2:
26:12:27:62:f6:64:ab:98:97:36:b2:3c:98:52:5f:18:00:d9:
1d:da:25:c5:54:7b:f0:b5:10:fd:a7:54:89:4b:2f:f1:8a:3d:
16:cc:1f:ce:6d:07:13:58:9e:92:9f:8c:ba:d1:78:73:b6:ae:
b7:61:76:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org