Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/7j_r6atGoXOB33BMFqA3ml4CdPY.roa
File: 7j_r6atGoXOB33BMFqA3ml4CdPY.roa (raw, json)
Hash identifier: TpuLfIGPN7z15fQfWXR+9eIWaS0+xXi5fVvLF9OJSAY=
Subject key identifier: EE:3F:EB:E9:AB:46:A1:73:81:DF:70:4C:16:A0:37:9A:5E:02:74:F6
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 09C9
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/7j_r6atGoXOB33BMFqA3ml4CdPY.roa
Signing time: Wed 29 Sep 2021 02:51:59 +0000
ROA not before: Wed 29 Sep 2021 02:51:59 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18429
IP address blocks: 61.57.152.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2505 (0x9c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Sep 29 02:51:59 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=EE3FEBE9AB46A17381DF704C16A0379A5E0274F6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:78:a1:2a:31:a2:9b:eb:d0:86:b6:7b:57:85:
02:44:48:96:15:6f:2c:31:53:b5:c6:43:ba:ed:52:
53:06:90:d9:9f:cd:45:b7:73:e8:f0:e5:9a:cc:a4:
40:bd:42:93:4e:10:14:b8:76:0a:e7:ed:a2:66:4c:
d5:7a:c6:b4:d7:9e:38:14:69:38:3e:89:8b:a5:56:
75:19:cf:ac:d6:59:1e:74:22:dc:c7:30:5b:ad:c7:
60:3e:0d:56:b0:dd:6d:f1:1d:73:0c:51:24:40:e5:
db:5b:09:61:8d:22:42:12:a6:84:29:34:be:62:da:
58:06:e9:ec:8c:ef:ff:a9:fa:3b:f3:ea:06:0b:19:
cc:a0:61:a1:24:f0:68:e3:27:e2:c6:9d:b2:3a:1e:
ca:4d:e9:65:cc:cc:49:67:9f:57:05:13:88:0d:94:
67:21:87:06:a8:bf:c0:43:35:7f:df:5f:4f:e4:33:
fd:24:24:e7:93:97:fb:ad:d2:42:53:45:70:93:cb:
c2:7f:71:d0:22:35:e0:19:c4:fd:34:12:29:0a:fc:
85:9a:89:a0:92:d1:ac:c6:7e:cb:6d:3a:ab:98:3f:
72:74:53:bc:d5:2d:e6:01:ea:03:e7:66:db:11:5e:
18:4d:55:93:be:02:22:5f:c5:d7:70:b5:0d:cf:52:
2e:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:3F:EB:E9:AB:46:A1:73:81:DF:70:4C:16:A0:37:9A:5E:02:74:F6
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/7j_r6atGoXOB33BMFqA3ml4CdPY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.57.152.0/22
Signature Algorithm: sha256WithRSAEncryption
07:0d:3b:bc:12:6c:84:59:89:04:df:ba:20:65:17:69:04:58:
e7:33:69:f8:c6:63:b7:f8:40:9e:4d:af:d4:b7:cf:90:56:bb:
e4:78:8c:0d:42:75:0c:a0:a4:d3:d9:60:98:4e:37:a8:8d:fd:
de:a4:8a:a2:f5:db:6a:e9:32:7a:37:a3:d7:71:02:fd:0a:9b:
56:cf:2f:7d:e3:2f:6d:3f:17:43:c1:b8:43:30:3e:02:2c:56:
80:c6:a6:3e:41:74:ce:01:b8:54:03:65:f6:ab:f2:21:e8:f9:
1b:9f:f9:ed:0c:a9:ed:36:82:85:37:56:48:23:f6:93:03:35:
58:c1:be:47:d0:23:e3:a5:63:dc:02:cf:36:3e:fb:15:e8:1c:
01:52:54:8c:fe:ff:09:e3:f2:fc:4a:ae:ee:b1:80:c3:d5:c4:
de:cb:78:4b:37:85:03:cf:2c:70:ec:85:47:17:4b:1d:8e:da:
80:29:e2:0f:fe:fe:34:d6:8a:19:e5:07:f7:0d:27:e1:79:e9:
6d:92:df:0a:60:2f:07:b3:36:4f:76:16:f9:af:48:25:56:b7:
0e:d4:6a:8d:64:00:40:62:c9:9a:38:97:f9:b7:a8:e8:fa:1b:
3f:ef:39:3a:24:8a:f3:ae:b2:ca:45:ab:bd:90:6d:27:8b:47:
26:be:7f:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:57 2023 by rpki-client on console-fra.rpki-client.org