Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/uJ4HVTQa-k2woxL3ZNGTOSoVHiA.roa
File: uJ4HVTQa-k2woxL3ZNGTOSoVHiA.roa (raw, json)
Hash identifier: +0eO8ShVr96JqoKrcrkxUa+FfDoDPruDrHG+5nePGSw=
Subject key identifier: B8:9E:07:55:34:1A:FA:4D:B0:A3:12:F7:64:D1:93:39:2A:15:1E:20
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 0795
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/uJ4HVTQa-k2woxL3ZNGTOSoVHiA.roa
Signing time: Tue 29 Sep 2020 10:06:06 +0000
ROA not before: Tue 29 Sep 2020 10:06:06 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18419
IP address blocks: 124.109.112.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1941 (0x795)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Sep 29 10:06:06 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B89E0755341AFA4DB0A312F764D193392A151E20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:14:02:d9:ea:fc:64:d3:93:29:f2:a5:05:23:
bb:78:4e:77:44:f0:02:17:11:ca:d3:7b:f8:41:a4:
bc:91:53:ec:a1:7c:19:1d:0d:41:d8:c0:17:67:4a:
f7:40:f5:db:b5:cf:23:0e:01:11:01:92:c1:40:53:
68:8f:67:24:d9:ff:9b:10:df:b3:ff:12:76:c9:08:
f8:6f:f6:84:93:a9:4f:37:7e:2a:15:69:c0:0c:c3:
85:ec:82:22:46:7a:20:a6:a9:cf:04:e7:00:f0:72:
fa:8e:76:c2:99:65:b2:14:34:0a:8f:af:fd:49:33:
d9:2f:83:7b:ee:ce:d7:03:61:f5:dc:77:98:05:a4:
fa:d2:3d:1a:70:13:c1:97:8e:63:58:7d:c9:f4:8f:
c5:ae:e5:5c:f0:74:ce:1f:d8:f3:e6:4f:63:a9:7f:
d4:5f:3a:52:50:a2:14:5e:55:fc:05:60:6d:6b:e7:
0e:c6:4f:35:03:df:64:cc:53:01:28:73:2f:2d:47:
f4:c7:50:e9:b6:1a:9c:9e:1b:f6:a3:1c:9c:2a:4c:
8b:e9:5b:2e:37:fc:78:74:f2:15:a5:1c:18:43:90:
40:b8:ba:d7:b0:39:63:cf:bd:e2:7e:70:ba:49:46:
1f:10:f5:b0:d8:f0:ac:85:01:72:27:f9:f7:9a:f2:
e3:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:9E:07:55:34:1A:FA:4D:B0:A3:12:F7:64:D1:93:39:2A:15:1E:20
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/uJ4HVTQa-k2woxL3ZNGTOSoVHiA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.109.112.0/20
Signature Algorithm: sha256WithRSAEncryption
29:e9:7e:0e:3b:ed:bc:95:3a:04:d3:49:5c:fb:de:2b:fe:20:
ab:bc:b7:1e:ae:00:ae:6a:2a:01:01:aa:f3:b6:16:4a:04:74:
49:1b:9f:c3:20:79:80:22:08:9e:2b:83:30:c7:d9:cd:0a:64:
32:eb:d1:00:d0:b3:25:af:74:b3:7a:26:ae:8f:b2:38:2b:0e:
f3:f3:6f:7d:19:5c:74:25:5b:15:74:04:1d:93:30:50:db:4e:
5b:f5:c5:d2:a8:cc:bb:c6:41:b2:02:c5:92:7e:f8:49:45:95:
41:5d:cf:d9:36:6a:9f:6f:e0:28:dd:92:12:d9:69:46:1b:d9:
39:f9:8b:e6:18:ec:1b:cd:4f:b9:77:d9:e2:44:61:3b:7e:9a:
a5:fa:3f:5f:70:47:43:a9:2b:c9:18:60:7c:40:b1:c3:b0:89:
e7:7f:d7:48:c1:d9:26:3f:06:1a:50:b7:86:d3:14:95:f7:e9:
2e:54:d2:65:c3:29:84:8c:c4:c1:a1:26:5f:4b:6b:4e:9d:d1:
8c:eb:d1:4a:00:6d:b7:1a:d5:63:b8:36:54:4c:5a:d2:f9:c8:
f6:c1:11:69:5e:ff:19:3d:ba:42:3e:a6:da:0f:7b:6b:f9:50:
52:6c:da:1f:c1:56:ed:2d:d1:05:42:a2:8c:a4:3b:1d:1e:93:
12:e8:22:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org