Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/5rP8QjyLJA0_qFaP31S8oBZnyVM.roa
File: 5rP8QjyLJA0_qFaP31S8oBZnyVM.roa (raw, json)
Hash identifier: 5zC9jaZgGaptDTwT7ZlUsc3WHeWW3YVOZyZZT2uSM1g=
Subject key identifier: E6:B3:FC:42:3C:8B:24:0D:3F:A8:56:8F:DF:54:BC:A0:16:67:C9:53
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0B2C
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/5rP8QjyLJA0_qFaP31S8oBZnyVM.roa
Signing time: Thu 15 Dec 2022 02:11:49 +0000
ROA not before: Thu 15 Dec 2022 02:11:49 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18429
IP address blocks: 123.50.32.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2860 (0xb2c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Dec 15 02:11:49 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E6B3FC423C8B240D3FA8568FDF54BCA01667C953
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:0c:f1:6c:dc:db:1c:57:a5:fe:b7:ae:fa:19:
e2:26:9b:02:e1:3c:19:4c:f0:26:ac:69:ee:93:88:
57:98:d0:e3:8e:cc:77:a4:87:72:bc:49:f8:82:9e:
d2:cc:d0:6e:4d:c3:ba:b2:e9:5c:cf:94:36:3c:1b:
d3:9d:23:c9:ee:6b:79:2c:0c:d9:21:a4:36:a3:d4:
0c:ef:f6:38:b1:92:f6:4e:74:c2:5e:8b:10:ec:20:
72:14:29:5f:29:eb:4e:c6:8b:5c:45:ac:e5:11:e1:
51:6e:d0:5f:11:b1:db:22:c4:a5:ca:53:06:76:e1:
c5:e7:01:15:ed:5d:cb:ef:0d:78:ec:0e:36:27:08:
3a:aa:29:3f:81:0b:8d:02:e0:cf:8d:97:f7:b2:f3:
4e:de:c0:64:14:13:1c:2d:7c:48:c0:10:14:0c:cc:
d8:56:a8:63:aa:bd:06:67:2a:3c:69:cd:b2:1f:aa:
6e:55:0c:68:2a:fe:c1:2f:35:90:bd:a5:19:50:c4:
6a:ab:93:3a:e4:eb:bc:63:62:77:fe:ce:1a:58:e9:
46:a9:83:05:33:1c:4d:30:30:d0:76:4d:c0:05:24:
2c:60:63:57:8c:ef:be:ee:d0:7b:96:33:6b:f6:5f:
c8:bd:d9:c0:83:77:1e:94:d5:fe:43:ae:9a:0b:79:
f6:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:B3:FC:42:3C:8B:24:0D:3F:A8:56:8F:DF:54:BC:A0:16:67:C9:53
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/5rP8QjyLJA0_qFaP31S8oBZnyVM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.50.32.0/21
Signature Algorithm: sha256WithRSAEncryption
35:38:6b:f7:22:94:d3:7a:a7:9b:e8:d3:8f:2a:7b:98:dd:f0:
bd:17:b9:fb:75:3d:e5:cf:e9:aa:88:fb:ff:30:77:3a:35:f9:
1b:56:fc:f7:b1:02:e9:34:b4:20:46:cd:28:91:4a:db:c3:2d:
51:7f:bd:ca:50:40:d3:f6:1f:06:05:bc:8d:04:1e:8f:d6:ff:
97:9e:a5:09:46:bd:61:87:e6:87:ca:2f:92:ad:75:63:41:c1:
0d:d7:05:63:c3:92:04:d7:fd:05:bb:e0:26:e4:f2:b4:12:00:
dc:aa:84:c7:07:cc:a5:a9:b6:ef:f6:d4:f6:16:4d:4d:2b:69:
66:19:5f:a0:dc:57:4d:4e:37:c5:f6:1c:4a:fb:1d:fd:61:ce:
e1:2d:72:ea:f6:18:45:d5:88:c8:46:4d:17:74:b7:ae:87:65:
d7:38:77:03:a6:cc:6e:16:e2:e6:4c:34:2e:ae:34:fc:f2:07:
ff:9c:d8:c6:d2:ed:ab:79:c1:43:e0:d6:78:88:f6:c8:6b:fa:
4f:73:a2:5c:d6:17:7f:24:48:3f:6f:e7:ff:31:cb:b2:2a:0a:
57:19:a4:3d:b1:15:b6:3f:6f:bd:2c:50:e0:59:c8:37:56:ca:
ad:4a:21:4e:69:9d:f1:78:c3:40:67:7c:99:dd:ef:13:47:e1:
aa:ca:46:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org