Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/wwq4Owar17MhblDNbxhWRKEQahE.roa
File: wwq4Owar17MhblDNbxhWRKEQahE.roa (raw, json)
Hash identifier: us+LuZ6OIb6NpWzxLUTPULmAIr5xmlMDjaP5T6Ppb8g=
Subject key identifier: C3:0A:B8:3B:06:AB:D7:B3:21:6E:50:CD:6F:18:56:44:A1:10:6A:11
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 08F4
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/wwq4Owar17MhblDNbxhWRKEQahE.roa
Signing time: Sun 07 Feb 2021 11:49:12 +0000
ROA not before: Sun 07 Feb 2021 11:49:12 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18419
IP address blocks: 103.234.228.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2292 (0x8f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Feb 7 11:49:12 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C30AB83B06ABD7B3216E50CD6F185644A1106A11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:d4:a6:1a:e0:e1:c2:6e:20:09:9c:1e:d9:ae:
37:e1:92:f3:17:85:2d:f0:47:ce:a4:9d:5c:e4:2e:
f4:d0:ce:c8:07:a3:e1:c8:03:ab:34:ca:7a:d8:f7:
28:35:50:cc:b8:96:42:44:6d:33:a9:64:6d:c0:f6:
51:72:3b:32:93:20:aa:06:1f:ad:d2:39:93:49:1d:
25:b4:ab:bc:ed:df:20:2e:35:96:fc:13:40:c9:45:
20:5d:78:30:39:84:9c:68:17:98:e1:a3:6a:ab:cd:
17:bd:3b:a5:62:27:da:b5:54:3e:a5:a8:16:cd:4c:
b6:d9:96:e5:74:d5:c8:21:c5:1d:1b:74:11:cf:d4:
6a:d0:c7:f7:01:01:69:5f:4f:b1:30:0b:3b:98:2d:
9b:52:4b:fe:ec:fd:bd:f4:5e:41:54:6b:c2:a3:de:
6a:5e:74:60:81:af:67:4e:82:00:37:0e:74:9b:b7:
c1:a6:7e:e4:a2:89:e0:d1:08:51:50:f9:95:b5:39:
be:ef:90:f6:e0:24:1b:c2:3f:d3:6c:0a:c6:5b:85:
65:ef:3e:b2:38:76:6e:9f:98:02:b5:f5:53:8b:21:
5b:37:3a:85:ff:ad:ce:ee:81:fe:19:b3:a3:82:39:
1f:85:2a:db:0c:ab:1f:7b:50:01:db:16:2b:82:dd:
65:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:0A:B8:3B:06:AB:D7:B3:21:6E:50:CD:6F:18:56:44:A1:10:6A:11
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/wwq4Owar17MhblDNbxhWRKEQahE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.234.228.0/22
Signature Algorithm: sha256WithRSAEncryption
05:d0:01:f1:0a:58:1b:ef:2f:31:b7:ed:05:b7:63:7a:2e:42:
58:2d:c4:cd:6c:78:ee:e5:bf:c8:c9:ee:b7:09:ca:81:f7:0e:
fb:1b:ad:6d:e1:55:84:8d:1d:27:d4:99:c2:98:9d:23:94:a2:
12:a9:a9:48:10:da:fc:c6:78:9e:be:0c:92:6b:bc:61:4e:61:
16:31:66:8e:e1:f8:82:6c:bf:f8:16:b8:71:0e:72:51:b2:86:
78:72:18:7e:fc:44:36:bb:12:36:de:47:3d:9b:9c:0b:d1:8d:
49:2a:86:24:f9:10:90:58:c2:16:7c:b3:49:c8:68:23:5f:fe:
9e:d3:35:bf:26:c3:d5:50:21:d5:8a:26:a5:1c:28:3e:74:4c:
28:aa:8c:87:44:e6:85:7a:f9:a0:ff:13:4c:3c:5b:26:8a:cb:
71:a7:2a:62:46:e7:6e:3f:5e:86:8b:dc:d2:d2:92:02:72:4b:
11:6a:92:0e:e4:74:c3:8a:ef:2d:95:9b:e6:5a:81:0c:3e:8c:
58:fe:fc:62:0b:03:a8:4e:34:56:a5:ea:c0:0a:f4:3c:62:7f:
e1:6f:c3:51:68:ba:c3:38:61:c8:2b:85:58:fe:35:ff:74:4c:
76:de:3e:9f:c5:78:2f:54:ff:95:3b:4f:16:b6:c8:7a:01:12:
40:d3:4e:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org