Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/-M_GJbBoF0yrrUT44OZkn5ed2l8.roa
File: -M_GJbBoF0yrrUT44OZkn5ed2l8.roa (raw, json)
Hash identifier: Dkq7hZkU98rFMB/vQ9M7uBb9cw8icxUWw9vJ+pp8nZ8=
Subject key identifier: F8:CF:C6:25:B0:68:17:4C:AB:AD:44:F8:E0:E6:64:9F:97:9D:DA:5F
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0B51
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/-M_GJbBoF0yrrUT44OZkn5ed2l8.roa
Signing time: Thu 15 Dec 2022 02:56:58 +0000
ROA not before: Thu 15 Dec 2022 02:56:58 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18429
IP address blocks: 45.64.232.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2897 (0xb51)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Dec 15 02:56:58 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=F8CFC625B068174CABAD44F8E0E6649F979DDA5F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:2e:1b:c3:3b:e6:2f:21:a1:45:72:6e:ad:0f:
3e:e7:78:cf:f5:e3:47:f5:35:a0:e7:5b:90:0d:f7:
6a:7c:1f:ee:2a:59:b5:53:1c:78:06:80:b8:4d:2f:
d6:51:e8:57:c5:8a:49:17:81:15:dc:17:ca:ef:60:
16:04:e4:b5:06:f1:11:c2:4e:a5:8c:cb:c5:62:b0:
2e:81:a7:a4:ff:91:44:82:b2:cb:3f:a7:22:aa:9a:
88:51:2c:1b:0c:c6:1d:30:24:2e:aa:b5:47:b0:f9:
ed:d7:51:f7:09:9e:28:4c:50:1d:28:33:af:80:3f:
87:48:65:84:24:be:ee:12:7e:5e:4e:46:97:dc:46:
13:72:a2:a9:fb:a7:0c:1c:1f:c4:8c:26:ab:68:e3:
64:3e:4f:c6:b5:47:bf:9d:e6:ab:32:d8:2d:fd:67:
3a:c9:a9:a1:0d:aa:f3:b8:ac:95:dc:44:e1:92:19:
6c:de:bb:ab:2d:f8:df:ef:11:c6:c7:cf:3e:2f:62:
8d:0f:04:46:eb:36:20:c0:79:bf:9b:5a:60:1b:ec:
2a:9b:13:91:5a:c0:48:2e:fc:7f:a8:d8:f8:e0:58:
da:87:71:54:1e:5e:11:98:b7:89:0c:53:41:94:22:
c3:9c:61:7e:3e:16:5b:ec:3a:04:1b:dd:8a:57:22:
ed:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:CF:C6:25:B0:68:17:4C:AB:AD:44:F8:E0:E6:64:9F:97:9D:DA:5F
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/-M_GJbBoF0yrrUT44OZkn5ed2l8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
45.64.232.0/22
Signature Algorithm: sha256WithRSAEncryption
10:ea:41:74:5a:2d:c5:eb:41:d9:20:9e:7e:01:9e:05:43:90:
a9:45:13:e7:ab:2e:63:d9:86:d1:3d:7f:73:a2:80:0c:d9:27:
ea:f8:44:46:e3:31:d3:21:72:54:3e:be:0b:0f:d0:06:fa:b0:
be:e0:2d:42:12:b6:8b:05:ff:e4:0c:a7:8e:f5:4b:7b:07:d3:
2b:2f:ce:e7:2e:68:3b:85:9d:39:7c:7d:55:be:90:da:3f:f3:
37:81:7a:04:01:ef:6c:60:2d:15:50:81:67:83:ef:fe:a7:66:
22:4c:eb:18:66:ab:c6:fc:d1:e5:23:72:55:a7:72:53:a1:25:
a6:0a:16:df:a5:f7:f3:83:ee:b1:ae:74:a9:91:1b:d3:78:cf:
25:a5:44:57:81:5c:a3:f3:63:13:42:4e:c0:de:05:7a:c3:80:
c5:86:da:8b:b0:06:1b:ba:92:3e:dc:fa:5b:7c:30:f1:8c:a1:
a0:0d:f1:dd:30:1f:bc:57:4d:d9:5c:28:29:eb:83:88:5e:5e:
8f:95:af:b7:78:03:08:fe:b1:69:9f:b1:42:a7:04:7b:a6:ee:
2b:2e:95:0d:bd:f7:32:e8:6b:c5:9e:16:f3:ea:b9:a9:c0:d8:
17:88:e7:d3:7d:ec:18:5e:c5:e7:d1:2f:3d:cc:63:a1:d7:41:
ef:32:b2:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:02 2024 by rpki-client on console-ams.rpki-client.org