Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/vhVwwM9ftW5NGyWpdqGqLm-wyS0.roa
File: vhVwwM9ftW5NGyWpdqGqLm-wyS0.roa (raw, json)
Hash identifier: DhGaQ8mIOc5kAUAWoQCEJxiO9zwXMIyTWn9BWblgxw4=
Subject key identifier: BE:15:70:C0:CF:5F:B5:6E:4D:1B:25:A9:76:A1:AA:2E:6F:B0:C9:2D
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 07A2
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/vhVwwM9ftW5NGyWpdqGqLm-wyS0.roa
Signing time: Tue 29 Sep 2020 10:06:10 +0000
ROA not before: Tue 29 Sep 2020 10:06:10 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 150.129.228.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1954 (0x7a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Sep 29 10:06:10 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=BE1570C0CF5FB56E4D1B25A976A1AA2E6FB0C92D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:75:fe:90:d4:2f:36:f1:c9:fa:d5:2b:52:bd:
27:28:fb:c0:00:c8:e6:d0:88:2c:d2:1d:67:e1:80:
15:a9:d3:fd:45:77:14:65:b6:34:7a:13:b1:1e:2f:
5c:43:58:57:cc:44:11:8d:88:71:01:d5:b5:86:88:
c6:b5:6e:4d:a4:75:ce:bc:1d:22:86:8f:39:68:b5:
c8:80:3c:96:86:56:00:0b:c0:11:7e:9e:52:7a:7b:
06:fa:ba:a2:ad:3a:79:6a:8e:ce:f2:80:fd:85:ce:
81:a8:56:5d:42:85:d5:16:69:f9:ca:44:c6:8a:1e:
55:37:99:81:78:9c:e9:cf:a9:b2:dd:f0:b1:a9:60:
4d:c3:42:b3:61:3f:5f:2b:95:31:5b:a6:20:43:29:
ba:37:14:f6:47:cc:e9:4f:b0:ea:49:2c:cd:ea:90:
07:4e:13:e7:a4:8d:24:31:5a:40:1f:ae:06:ab:b4:
b8:a3:d7:13:47:55:6d:75:75:52:87:15:46:d7:af:
62:f3:4b:e7:b5:1b:79:dc:7a:d2:c7:42:7d:e8:ff:
18:fe:f3:5e:dd:b4:c7:8d:5d:8e:39:b3:37:a7:f8:
1e:6b:37:78:89:38:bf:e5:33:a0:b7:8d:8b:77:81:
fc:1b:86:4d:8b:0d:32:f9:4d:49:24:2d:65:74:4b:
74:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:15:70:C0:CF:5F:B5:6E:4D:1B:25:A9:76:A1:AA:2E:6F:B0:C9:2D
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/vhVwwM9ftW5NGyWpdqGqLm-wyS0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.129.228.0/22
Signature Algorithm: sha256WithRSAEncryption
b8:02:f3:d7:cb:c8:6f:79:08:d4:3e:3b:93:2a:0e:d9:36:a1:
71:7f:0a:35:18:ad:4d:0d:dd:09:4a:b0:a1:3b:0f:b2:89:d2:
d8:ed:14:2c:57:47:c2:40:8f:aa:08:d8:d2:7a:82:1d:a2:b8:
bf:84:ac:7f:41:7f:b0:d3:cc:f3:c7:9f:a7:82:15:f6:79:6b:
80:81:11:ba:66:29:f6:99:20:1c:e4:bd:ed:29:7c:3f:a5:39:
7b:c6:d3:31:4d:77:67:98:5f:10:a6:5e:0d:eb:40:c7:a5:72:
60:9c:96:2b:1a:7e:80:53:74:f7:bc:87:b8:d4:ef:fc:8a:d9:
9f:68:3a:9f:67:79:f1:75:b9:2c:e0:7b:67:48:53:cf:1d:1e:
60:bc:27:e3:4c:5d:11:05:21:75:de:9d:82:1a:2f:56:fb:c4:
78:54:af:73:ec:46:3b:13:54:e9:6f:53:74:e8:d1:ea:88:55:
7f:c4:c1:e1:0d:1b:0d:86:0b:c9:ed:cf:cd:49:4d:e6:ff:d0:
b3:ea:60:a7:e5:58:11:fa:19:40:3c:0b:d7:91:11:7a:4e:ab:
cb:44:22:f5:fa:dc:3a:e8:bf:79:72:68:31:d7:0a:cb:ee:0e:
ed:0e:67:ca:e7:60:87:10:97:d9:01:6a:9f:d0:7e:f2:40:ef:
dd:a2:d3:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org