Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/-o9xM7YYDEsONmoJJOUgP_GXakA.roa
File: -o9xM7YYDEsONmoJJOUgP_GXakA.roa (raw, json)
Hash identifier: jMPe5PDtsZCg4GLOBEqG2caxlPaasgPUc/1I2xlS3yI=
Subject key identifier: FA:8F:71:33:B6:18:0C:4B:0E:36:6A:09:24:E5:20:3F:F1:97:6A:40
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 09FF
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/-o9xM7YYDEsONmoJJOUgP_GXakA.roa
Signing time: Tue 02 Nov 2021 06:35:33 +0000
ROA not before: Tue 02 Nov 2021 06:35:33 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18429
IP address blocks: 124.155.168.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2559 (0x9ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Nov 2 06:35:33 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=FA8F7133B6180C4B0E366A0924E5203FF1976A40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:52:c4:60:d0:cb:ee:8d:02:93:12:c6:9f:1e:
cc:8e:ac:5a:22:d1:76:56:99:57:43:ce:8f:59:fa:
aa:35:ce:0f:be:82:75:46:65:3f:7f:8f:87:74:fb:
eb:f0:5a:20:53:7b:aa:5f:af:d1:e5:41:30:ae:36:
29:03:0e:e6:4c:32:f1:77:e2:77:6d:23:85:5d:b1:
df:ce:85:15:fa:3a:f1:6e:58:b3:1b:4d:8e:ae:c5:
06:1f:a7:1f:f9:62:9f:00:2a:59:88:10:fe:4d:f7:
38:d8:f7:8a:0c:3c:2a:5e:78:d8:34:df:ed:58:48:
b2:aa:ba:d3:29:f6:85:0b:97:2b:65:a7:05:87:3d:
53:51:ea:05:c7:3b:ef:57:0c:ed:9d:b1:23:2f:e8:
fc:30:26:8d:e0:bc:4f:62:f2:93:74:26:34:b7:44:
85:17:96:6a:c4:16:4a:32:2c:d6:87:0a:d2:ed:12:
ba:b9:4f:c8:d6:c6:99:a0:6d:18:c1:e4:00:b4:8e:
6f:82:3a:51:16:a3:f4:da:ca:95:43:17:e0:91:7e:
f3:06:e5:9f:6f:9c:2e:57:48:72:34:1e:7f:65:48:
40:99:91:83:66:10:18:c1:de:00:e0:01:91:45:a9:
2b:8d:5f:3e:f6:92:72:8d:b6:6b:b8:7a:22:13:94:
68:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:8F:71:33:B6:18:0C:4B:0E:36:6A:09:24:E5:20:3F:F1:97:6A:40
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/-o9xM7YYDEsONmoJJOUgP_GXakA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.155.168.0/23
Signature Algorithm: sha256WithRSAEncryption
19:dc:d8:6d:39:63:17:c7:03:48:c2:92:03:04:d5:58:9e:4a:
fd:bd:9f:88:8d:ff:6e:a4:22:05:63:f1:16:70:a0:7f:09:a9:
c5:9e:11:cb:11:79:37:d5:4e:0f:93:92:43:95:94:94:44:70:
d6:b0:fa:1b:1d:ee:57:7b:0a:da:40:bd:a4:f3:28:0d:5a:79:
3e:0d:6e:57:7b:7e:8b:0c:8e:4c:04:1e:f5:59:53:68:5e:8c:
97:11:f8:02:2e:5e:88:81:ef:ec:46:26:44:81:1f:40:58:44:
8d:b2:72:26:38:97:f3:c0:d3:8e:fd:a5:3a:34:f6:7e:a9:54:
a9:84:86:47:c1:d6:bb:98:9c:f4:f6:8a:61:ba:23:86:7a:dc:
07:98:b1:42:51:df:35:e4:82:1e:f1:a1:aa:60:da:74:07:75:
66:36:48:39:53:d3:d9:e1:4f:55:86:aa:f4:8d:48:b3:19:03:
e4:2b:29:64:36:3e:b5:82:c9:41:e0:8d:97:03:c2:bb:71:24:
2a:1b:22:1d:16:7f:77:4c:18:7e:7e:1c:4d:31:75:d6:9b:2d:
c5:33:88:00:2d:66:c6:27:a9:f3:93:c4:e4:62:a4:84:ae:16:
12:cc:ab:0a:59:57:95:9c:c9:67:cd:ad:9e:e2:10:76:73:67:
63:85:c7:ac
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCf8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUQx
RTNGM0M4QkE4OURDMTMxMDQxMDM0NUY1MEMxMDA3NjE4MTI2MTAeFw0yMTExMDIw
NjM1MzNaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEZBOEY3MTMzQjYxODBD
NEIwRTM2NkEwOTI0RTUyMDNGRjE5NzZBNDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDhUsRg0MvujQKTEsafHsyOrFoi0XZWmVdDzo9Z+qo1zg++gnVG
ZT9/j4d0++vwWiBTe6pfr9HlQTCuNikDDuZMMvF34ndtI4Vdsd/OhRX6OvFuWLMb
TY6uxQYfpx/5Yp8AKlmIEP5N9zjY94oMPCpeeNg03+1YSLKqutMp9oULlytlpwWH
PVNR6gXHO+9XDO2dsSMv6PwwJo3gvE9i8pN0JjS3RIUXlmrEFkoyLNaHCtLtErq5
T8jWxpmgbRjB5AC0jm+COlEWo/TaypVDF+CRfvMG5Z9vnC5XSHI0Hn9lSECZkYNm
EBjB3gDgAZFFqSuNXz72knKNtmu4eiITlGgLAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQU+o9xM7YYDEsONmoJJOUgP/GXakAwHwYDVR0jBBgwFoAUXR4/PIuoncExBBA0
X1DBAHYYEmEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0dORVQv
WFI0X1BJdW9uY0V4QkJBMFgxREJBSFlZRW1FLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9YUjRfUEl1b25jRXhCQkEwWDFEQkFIWVlFbUUuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DR05FVC8tbzl4TTdZWURFc09ObW9KSk9V
Z1BfR1hha0Eucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBfJuo
MA0GCSqGSIb3DQEBCwUAA4IBAQAZ3NhtOWMXxwNIwpIDBNVYnkr9vZ+Ijf9upCIF
Y/EWcKB/CanFnhHLEXk31U4Pk5JDlZSURHDWsPobHe5XewraQL2k8ygNWnk+DW5X
e36LDI5MBB71WVNoXoyXEfgCLl6Ige/sRiZEgR9AWESNsnImOJfzwNOO/aU6NPZ+
qVSphIZHwda7mJz09ophuiOGetwHmLFCUd815IIe8aGqYNp0B3VmNkg5U9PZ4U9V
hqr0jUizGQPkKylkNj61gslB4I2XA8K7cSQqGyIdFn93TBh+fhxNMXXWmy3FM4gA
LWbGJ6nzk8TkYqSErhYSzKsKWVeVnMlnza2e4hB2c2djhces
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:57 2023 by rpki-client on console-fra.rpki-client.org