Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/p9on67RqnBffv1jmyt4WJAQRIFE.roa
File: p9on67RqnBffv1jmyt4WJAQRIFE.roa (raw, json)
Hash identifier: Zym4AfmT+H/3fcC8dZfFD0O5/beBW52KRUQtPMrXK9E=
Subject key identifier: A7:DA:27:EB:B4:6A:9C:17:DF:BF:58:E6:CA:DE:16:24:04:11:20:51
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 09B9
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/p9on67RqnBffv1jmyt4WJAQRIFE.roa
Signing time: Wed 29 Sep 2021 02:41:57 +0000
ROA not before: Wed 29 Sep 2021 02:41:57 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18419
IP address blocks: 61.60.192.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2489 (0x9b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Sep 29 02:41:57 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=A7DA27EBB46A9C17DFBF58E6CADE162404112051
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:5c:61:40:0a:89:6d:ee:9d:05:7f:eb:c7:d2:
71:1d:d7:09:27:d6:1e:89:37:b8:06:ba:d3:ce:27:
e0:f8:d4:7a:2e:97:8a:a3:26:ff:aa:b6:51:67:42:
07:f0:7c:23:58:c2:bd:22:12:d7:90:8b:3d:98:72:
f8:71:bc:6c:f8:83:b7:0e:f3:91:cc:d5:34:48:1a:
98:6f:b7:5d:b5:0f:bf:46:b8:fb:92:7c:e1:3c:23:
e5:39:8c:ff:01:30:42:05:51:94:dc:5d:f2:00:16:
d6:e7:6f:1e:8d:cb:73:88:d4:8f:e2:a1:bc:50:31:
1f:c0:cb:f0:93:db:34:8e:4f:0b:ce:1a:3f:f2:16:
ab:d9:27:70:08:cd:67:d5:f2:21:86:fc:cf:5e:9c:
86:11:3c:9c:7d:be:71:7f:2d:a9:e6:20:2a:a9:7b:
24:98:a6:ae:f2:5d:3a:71:71:1c:be:3f:65:bc:fc:
f6:77:38:92:d6:9e:1c:69:0d:62:4c:a8:d8:87:5d:
df:36:34:03:f8:e0:b3:ff:3a:93:ee:1e:99:2b:de:
13:10:6c:85:14:10:e3:21:60:9b:d5:e2:76:59:3e:
cf:dc:3b:44:a5:2a:35:75:2c:34:34:50:23:e9:5e:
a1:07:a6:09:23:e6:8a:be:99:9d:58:04:ed:16:aa:
97:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:DA:27:EB:B4:6A:9C:17:DF:BF:58:E6:CA:DE:16:24:04:11:20:51
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/p9on67RqnBffv1jmyt4WJAQRIFE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.60.192.0/20
Signature Algorithm: sha256WithRSAEncryption
5a:11:dd:7f:ae:71:a4:4b:89:55:9b:1c:4a:90:ce:3a:00:f0:
b7:31:fb:8d:5b:ec:5a:00:97:5d:a9:24:fc:f1:96:88:25:50:
ed:44:dc:35:53:1f:19:3c:18:fd:27:de:5c:88:df:21:58:53:
8d:7e:c6:41:86:88:ba:89:0a:71:cd:a1:a3:18:3a:24:8a:e6:
0e:e4:d9:ed:32:25:d5:79:82:69:3e:11:d4:4a:b2:62:ea:01:
2d:75:1b:2a:de:22:ab:d7:5b:e5:af:4a:f0:a9:20:40:c4:f6:
67:7f:5f:de:bf:42:ff:ac:03:e7:ca:8a:2e:d1:1c:07:97:86:
35:29:e3:7b:09:1d:1f:49:dc:63:47:2d:cb:70:25:c7:42:1c:
fe:e4:99:a9:83:a1:3c:47:24:66:fe:c5:b0:5c:e7:fe:a1:1d:
99:05:76:77:f0:b0:7e:21:de:fe:ed:a0:2e:71:c2:e4:36:f4:
3f:6f:aa:32:58:58:eb:51:4d:0d:45:96:e1:d9:16:0b:e1:5b:
22:c0:95:4f:33:48:ba:c1:62:65:f2:8f:8a:09:69:68:63:15:
90:31:a1:22:2f:82:26:86:58:3d:11:50:10:63:de:ab:59:a2:
cf:15:13:60:02:c3:f7:bc:b6:22:04:79:c0:da:8b:de:e8:6e:
d7:36:36:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org