Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/4pckP25VePC_RNSeOdoOYYLme-8.roa
File: 4pckP25VePC_RNSeOdoOYYLme-8.roa (raw, json)
Hash identifier: og1z1FHkSt7T8C6ssp+vKOIEbzgLDcdS0491MCUJzRs=
Subject key identifier: E2:97:24:3F:6E:55:78:F0:BF:44:D4:9E:39:DA:0E:61:82:E6:7B:EF
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0794
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/4pckP25VePC_RNSeOdoOYYLme-8.roa
Signing time: Tue 29 Sep 2020 09:59:29 +0000
ROA not before: Tue 29 Sep 2020 09:59:29 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18429
IP address blocks: 123.50.40.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1940 (0x794)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Sep 29 09:59:29 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E297243F6E5578F0BF44D49E39DA0E6182E67BEF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:b3:a0:fa:bc:f6:0a:e9:dd:4e:16:a0:ff:7d:
01:46:78:5f:0c:ab:d6:f2:ce:a6:57:1e:b6:fe:cb:
9d:e5:31:b9:54:74:89:63:e8:67:89:46:8d:51:c5:
3a:ad:00:11:d5:ff:f6:87:71:e3:b9:a5:74:d9:b4:
8e:6e:33:21:cc:14:6b:7c:ec:fa:33:71:10:e4:e7:
57:a6:17:4e:f8:d1:eb:e5:52:1e:13:47:9b:80:f0:
6c:99:25:dd:ce:c8:89:d1:6c:35:d6:40:c4:08:af:
fc:3c:3e:89:84:27:3d:1c:d5:79:9b:a7:30:62:ca:
2c:d0:d1:0d:8c:91:45:9f:f3:f1:43:0e:f8:56:35:
58:19:bd:50:8f:44:3b:a5:b3:38:29:91:3d:ba:af:
f3:47:df:c1:92:89:85:33:7b:38:d0:cd:6b:83:e1:
ed:e1:4e:45:b7:90:53:92:6a:42:91:b1:72:db:13:
3c:5d:af:2e:38:68:c0:34:e1:f4:45:48:82:08:84:
f9:12:74:bc:e2:04:c2:83:32:24:74:1e:36:b7:50:
af:4e:8f:06:55:81:69:0f:14:e6:4c:51:15:92:76:
2f:75:60:1c:ea:d0:53:b9:79:3d:35:43:ef:4d:4b:
2c:8b:00:fc:33:c0:7d:58:ac:83:ef:af:3f:2f:29:
2b:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:97:24:3F:6E:55:78:F0:BF:44:D4:9E:39:DA:0E:61:82:E6:7B:EF
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/4pckP25VePC_RNSeOdoOYYLme-8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.50.40.0/21
Signature Algorithm: sha256WithRSAEncryption
1a:33:d0:a5:4f:3e:57:1f:22:6e:79:35:7c:ea:32:d9:3a:ce:
95:d2:10:8b:41:fd:8a:25:b9:e8:fe:3e:22:c6:59:88:62:69:
6f:9a:37:e3:16:72:40:7c:de:76:85:26:95:b1:5e:91:10:4e:
84:b6:a9:f9:c8:66:bc:bc:4e:dc:f3:b1:ff:56:5a:3e:bd:66:
22:3e:51:74:3e:98:8e:49:00:62:d1:9b:c8:75:44:d2:32:57:
6f:1d:fe:0b:67:1f:87:23:90:3b:a9:d9:1d:68:d0:8a:4d:0a:
a4:a6:f6:a4:ec:e5:b3:36:ff:20:55:b6:57:54:59:8b:9f:f9:
3d:f0:ac:ff:77:b0:d5:ba:7d:66:7a:75:e6:13:82:3d:02:f2:
d8:1d:f8:c4:c9:51:43:73:37:49:d0:72:71:f9:bb:ce:dc:07:
6e:d3:90:17:2b:14:0a:54:2e:e3:b1:cf:47:56:07:62:92:d0:
17:84:54:9b:fb:e8:78:0a:97:71:a5:8a:e4:8e:c4:01:f0:3a:
14:6c:2f:56:65:57:36:77:ca:6d:c7:b8:00:62:b7:5d:52:65:
40:68:68:8c:49:10:42:21:88:c0:b3:2e:18:45:9d:5a:79:42:
44:3d:cf:8c:9a:5b:d1:0e:b6:45:6a:f5:2d:35:2d:79:20:b4:
41:a9:35:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:47 2023 by rpki-client on console-ams.rpki-client.org