Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/4o4cJUylXUXgvnYOfBZAik1qVUY.roa
File: 4o4cJUylXUXgvnYOfBZAik1qVUY.roa (raw, json)
Hash identifier: 4MoDTJWBPrTXKPlUOvD4A7jeaHqSX/PLx7dLfOLtTHY=
Subject key identifier: E2:8E:1C:25:4C:A5:5D:45:E0:BE:76:0E:7C:16:40:8A:4D:6A:55:46
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0A01
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/4o4cJUylXUXgvnYOfBZAik1qVUY.roa
Signing time: Tue 02 Nov 2021 06:36:06 +0000
ROA not before: Tue 02 Nov 2021 06:36:06 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18429
IP address blocks: 124.155.172.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2561 (0xa01)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Nov 2 06:36:06 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=E28E1C254CA55D45E0BE760E7C16408A4D6A5546
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:1a:3d:d9:ed:dc:bd:d6:dd:ab:65:5c:00:19:
41:6c:dd:22:87:0a:fc:f9:7a:6b:ec:5f:f2:be:16:
9f:d1:2e:82:04:99:26:e5:b7:4c:da:3e:57:be:da:
08:cb:17:16:9e:8c:8a:13:bf:fd:a5:c2:63:3b:a5:
98:d4:fd:e0:69:2c:0e:9b:0b:0c:79:a2:94:48:79:
08:a5:74:16:2a:80:23:19:c4:df:74:ae:ac:5d:db:
31:c9:cf:1d:84:09:b7:ab:af:e7:78:a9:62:2b:6c:
96:0a:4f:36:66:93:b3:ec:6e:87:d8:45:3d:fd:f2:
d5:5a:3d:9e:e0:39:ef:78:cd:36:66:ea:fb:bc:67:
c2:a3:84:d8:bd:8a:4d:57:36:c4:06:a5:88:38:b4:
2b:da:8c:de:b4:20:fa:88:be:6e:ec:ab:f0:a2:f8:
4c:13:f9:7b:9d:89:49:5b:db:f2:e5:d3:69:54:69:
7e:95:90:ce:58:81:c4:74:24:6f:07:2d:ac:0f:ea:
69:fb:9e:29:09:a5:eb:38:32:31:56:81:2f:c0:20:
5c:ce:14:ad:e4:0e:b7:73:13:96:54:c3:a7:96:c3:
5f:25:34:9c:4d:b9:ce:47:7d:ed:ae:b2:03:96:ed:
2f:3e:9b:e3:59:40:f8:99:59:fb:ff:57:17:d0:15:
30:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:8E:1C:25:4C:A5:5D:45:E0:BE:76:0E:7C:16:40:8A:4D:6A:55:46
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/4o4cJUylXUXgvnYOfBZAik1qVUY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.155.172.0/23
Signature Algorithm: sha256WithRSAEncryption
47:31:dd:e9:59:ed:15:68:80:e2:de:6a:9a:11:c6:f0:90:21:
fa:b3:c1:19:32:07:73:be:d9:ab:53:83:b9:b7:5c:85:3e:c4:
b0:af:cc:a6:cb:00:df:56:ef:4b:e2:78:85:ba:9c:96:29:ea:
3e:37:7d:f6:a5:0e:c0:ff:88:4a:bf:e7:ce:3f:b9:4d:25:7c:
e3:ea:00:b2:c0:cd:04:e9:92:9a:0e:a2:59:22:43:75:1a:9a:
e1:29:ab:dc:af:57:b4:0f:a9:a6:e6:3f:c7:87:f1:17:2e:93:
3e:2f:db:f5:e6:fe:fa:de:f5:d8:81:bc:5e:6c:65:d4:81:1f:
78:56:70:4a:4a:d6:fe:e5:f4:37:e2:b6:37:3f:e2:15:24:6b:
e0:9c:46:63:51:b7:ef:6e:01:3d:e2:3d:03:b8:0a:e0:b0:61:
20:49:99:d5:de:a8:37:fb:a2:51:80:db:27:85:0d:7e:2d:7e:
33:17:84:54:ba:a4:23:07:3c:43:72:89:0a:88:2e:b3:2f:ee:
43:1f:47:16:24:e8:2b:ae:d0:e2:9d:07:af:f0:c2:84:5d:c6:
fc:35:37:07:3c:b0:f6:a6:a2:11:54:0e:d9:a6:f2:d8:fa:0f:
39:ed:65:19:29:58:17:4c:0c:d3:76:75:ea:fd:9f:8a:2e:f0:
bb:64:a3:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org