Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/-Shj0ZTZq0xCQTKjynl1cPhDN7I.roa
File: -Shj0ZTZq0xCQTKjynl1cPhDN7I.roa (raw, json)
Hash identifier: 9pio0f4L7kDVDTYe9RJkXFzTUlFDKnJ1IzoHG9qPWJE=
Subject key identifier: F9:28:63:D1:94:D9:AB:4C:42:41:32:A3:CA:79:75:70:F8:43:37:B2
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0799
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/-Shj0ZTZq0xCQTKjynl1cPhDN7I.roa
Signing time: Tue 29 Sep 2020 09:59:31 +0000
ROA not before: Tue 29 Sep 2020 09:59:31 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18429
IP address blocks: 124.155.168.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1945 (0x799)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Sep 29 09:59:31 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F92863D194D9AB4C424132A3CA797570F84337B2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:11:4a:15:3a:04:24:a8:ca:52:d9:a1:95:52:
14:a0:5a:c8:f3:8f:0f:4e:fb:26:83:2f:88:fa:ee:
f5:e7:6b:58:32:26:7a:15:e7:af:b8:59:ce:83:26:
d0:da:8e:8e:65:60:41:d8:50:a0:58:1f:6f:56:fc:
c9:65:49:0a:1b:f4:48:44:3a:df:68:b6:36:f0:0b:
8b:b7:17:b3:d0:da:de:50:64:34:61:90:62:73:71:
bd:cb:35:4e:b7:63:08:9d:3c:da:0a:89:ec:6f:87:
b7:5b:72:b3:fd:38:c6:15:21:95:b6:71:e1:d0:65:
2f:cd:57:ae:37:95:16:61:c8:95:56:96:8e:72:68:
b2:85:14:bd:c0:b1:87:8c:c6:7c:8d:3e:f8:23:82:
48:06:c9:07:64:4e:61:d4:02:c6:0a:a7:32:85:7b:
36:e7:38:36:bf:78:f4:41:61:ee:aa:34:75:0a:f0:
87:79:7d:79:63:8a:9d:d9:2e:5b:95:b7:a1:99:a5:
a1:93:7a:c0:83:73:ac:7b:fc:98:93:e8:bf:64:a8:
07:cd:70:e8:14:7c:b3:58:ea:80:d9:2c:da:f2:fd:
e5:d0:ff:81:b3:fa:c6:5e:9d:d1:59:cc:cc:ec:22:
4a:f1:d4:09:ab:82:80:02:12:3d:11:88:1d:7f:d1:
8e:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:28:63:D1:94:D9:AB:4C:42:41:32:A3:CA:79:75:70:F8:43:37:B2
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/-Shj0ZTZq0xCQTKjynl1cPhDN7I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.155.168.0/21
Signature Algorithm: sha256WithRSAEncryption
38:75:7f:99:3e:7c:e7:c1:48:5c:4d:9a:b4:64:8e:67:b2:6d:
4e:06:0a:b0:af:db:f9:51:d3:be:ae:cf:53:a5:43:ce:1c:da:
22:2d:13:e0:24:8d:a4:ae:bb:e6:aa:1d:5b:e0:b5:99:63:57:
5c:90:b3:79:2d:9d:e2:48:a8:a3:a3:89:94:05:48:76:33:78:
fb:4a:8d:91:ec:bf:f8:26:9d:7b:b6:6d:f2:4e:8f:9c:b1:0a:
cd:c1:76:2a:6b:db:ef:1b:a4:fc:1d:b9:c4:eb:2f:a0:bd:91:
f3:d3:ff:73:e6:e5:c8:6d:43:95:96:a7:35:b2:ab:a2:12:39:
eb:cb:89:56:4a:03:59:27:6f:c0:9c:a7:f6:c1:8c:b5:8d:ca:
43:f2:04:56:09:3d:7c:56:60:ea:7d:a7:7a:78:b6:c7:b7:22:
b2:3a:60:a0:8e:47:9b:52:c5:36:c5:3f:3d:2f:ad:cb:9a:31:
2c:18:41:4b:31:4b:96:50:03:f8:4e:90:23:68:08:b4:51:f4:
92:76:78:35:c1:74:0b:ee:38:d9:09:cb:8e:b4:c4:48:28:72:
cf:ea:57:72:e6:56:c4:d4:fb:f1:79:64:7e:51:5c:46:3e:55:
05:3e:60:99:22:a2:cb:4a:51:75:68:62:0a:0f:72:49:29:b7:
ba:7b:0d:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:57 2023 by rpki-client on console-fra.rpki-client.org