Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/sp2_rxzpxXphxxqS0cS27Rndfr0.roa
File: sp2_rxzpxXphxxqS0cS27Rndfr0.roa (raw, json)
Hash identifier: giD8do6PPgQ7Y5Jh1s2VFfbsFY8jqHramWSnKVgN65w=
Subject key identifier: B2:9D:BF:AF:1C:E9:C5:7A:61:C7:1A:92:D1:C4:B6:ED:19:DD:7E:BD
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 0AB1
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/sp2_rxzpxXphxxqS0cS27Rndfr0.roa
Signing time: Thu 15 Sep 2022 02:41:44 +0000
ROA not before: Thu 15 Sep 2022 02:41:44 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 103.234.204.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2737 (0xab1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Sep 15 02:41:44 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B29DBFAF1CE9C57A61C71A92D1C4B6ED19DD7EBD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:fe:6c:88:4d:fa:52:8e:7d:87:65:77:98:fc:
94:8e:0e:d1:09:e5:ad:1d:78:9f:0f:54:95:86:2a:
e8:7d:c8:cb:d1:1d:65:bc:4b:9d:8e:5a:72:3c:05:
16:32:6b:f3:13:22:03:e8:94:e1:b4:09:5d:db:77:
f0:35:3d:76:19:a3:55:43:46:ee:17:1d:a8:a0:dc:
f8:98:f5:0b:34:87:c6:5e:9e:3a:41:44:44:f8:4a:
a9:e8:f1:cc:1f:f0:dc:62:01:c9:3e:5b:c6:13:df:
3a:94:45:e3:55:55:b8:5c:9e:4b:52:82:da:bd:e0:
d7:cd:27:e5:04:0a:b0:ea:90:69:6b:df:28:28:9e:
0e:d2:68:b5:e8:bf:2d:00:5a:f1:ef:75:87:ae:c2:
00:c2:3e:9e:ea:bd:2f:6a:86:22:e9:6b:79:98:21:
22:e9:3c:31:1c:72:28:ce:1f:8b:9e:9c:d2:31:ca:
52:ce:d2:89:f1:b7:3a:29:58:5a:76:61:b7:e7:fb:
d2:3c:e7:52:8e:25:4a:ca:dd:7a:73:e5:da:8e:7c:
b7:b3:da:b9:b9:58:74:ff:1b:9c:04:b9:77:d1:e3:
2d:8e:5a:85:7c:28:54:16:35:b9:4d:bc:ca:30:ed:
f8:c9:05:46:b1:42:72:5a:79:c7:9e:64:ae:97:ee:
f7:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:9D:BF:AF:1C:E9:C5:7A:61:C7:1A:92:D1:C4:B6:ED:19:DD:7E:BD
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/sp2_rxzpxXphxxqS0cS27Rndfr0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.234.204.0/22
Signature Algorithm: sha256WithRSAEncryption
66:55:3a:c2:2e:24:c6:a2:58:b2:47:ae:e1:87:b8:bd:9d:87:
7e:09:09:9b:78:6d:d9:9f:6f:6a:03:36:ab:04:fb:1d:65:07:
be:0d:02:55:19:35:07:f7:a9:3b:58:5c:90:50:24:5c:d1:59:
8a:b6:63:b5:90:9b:5b:53:50:38:8a:cc:4f:4e:f3:e5:7b:d5:
c8:37:74:62:1e:58:d9:f4:a2:87:e6:49:04:3d:01:aa:39:39:
fe:5f:df:0a:6a:2e:9a:d9:45:e6:68:10:e3:41:d9:5d:36:c0:
80:5b:65:a3:9d:e1:03:de:79:fa:64:c2:33:b0:13:18:d4:ab:
95:58:a6:67:8e:2e:d0:c1:3c:85:e6:7b:05:9c:e1:dd:2a:cc:
0c:58:d6:ca:9d:ff:9f:a6:29:e2:3b:e3:12:36:cf:e2:b3:69:
90:2d:f8:1d:a2:34:e0:a1:08:72:aa:e0:1e:76:e2:ea:75:79:
a0:4e:49:2d:34:56:d0:ef:76:c7:f9:6c:b2:13:3f:7b:9e:bd:
4e:1a:5b:73:60:2a:63:cc:9d:ee:a1:e4:ec:fa:ff:9a:1f:d6:
a3:2b:51:da:89:ea:eb:57:42:f4:60:20:65:23:f8:13:3b:3a:
3e:e5:43:0d:2a:b0:19:e3:3a:7f:93:ca:ae:fd:35:f8:5f:f8:
24:45:be:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org