Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/8e8G-8YMtc_GxvfcNN1wctYdQvg.roa
File: 8e8G-8YMtc_GxvfcNN1wctYdQvg.roa (raw, json)
Hash identifier: shGYqq7sAFb0V/jhBZbcpPasP8+TD+lowb9pVqMWuRA=
Subject key identifier: F1:EF:06:FB:C6:0C:B5:CF:C6:C6:F7:DC:34:DD:70:72:D6:1D:42:F8
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0AEB
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/8e8G-8YMtc_GxvfcNN1wctYdQvg.roa
Signing time: Thu 15 Sep 2022 02:49:33 +0000
ROA not before: Thu 15 Sep 2022 02:49:33 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18429
IP address blocks: 61.57.144.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2795 (0xaeb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Sep 15 02:49:33 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=F1EF06FBC60CB5CFC6C6F7DC34DD7072D61D42F8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ac:1f:ee:da:a8:bf:1a:95:0d:83:94:ee:41:
1a:3f:34:4a:42:e1:fe:e9:7c:cc:70:5f:55:84:43:
34:55:ce:06:ce:cc:34:26:bd:04:c2:53:7b:88:f1:
b1:7a:04:62:f5:e4:b4:34:86:ef:85:fe:0f:80:97:
7c:0b:48:23:ec:95:56:b9:30:34:0f:58:36:a2:d7:
02:04:3d:62:be:ee:29:58:a9:b0:87:aa:ca:c1:3d:
73:8b:84:11:c6:62:98:7d:00:4b:5c:50:a0:1b:bd:
3c:51:59:d0:a8:e7:52:1f:7e:76:8b:74:1e:80:bb:
19:2e:f7:90:68:32:4e:b0:1a:10:7e:18:ce:45:23:
3e:8e:b5:f2:2c:89:35:7a:a4:5f:f8:38:84:dc:c6:
4e:6e:7e:ef:7c:8b:9a:d5:41:40:cc:f4:84:1d:d8:
cc:b0:90:d9:33:03:b4:4f:13:f7:c1:da:36:e5:7b:
80:e2:1d:1f:d3:97:d6:bb:b9:8c:ce:6f:14:c5:ca:
c7:23:b0:e0:90:09:71:b4:72:7d:f1:d7:91:d2:34:
25:85:a9:ad:96:a9:86:40:65:ad:87:8c:85:d3:de:
cb:a8:dd:4f:59:f7:ec:d3:ef:2b:95:a5:22:60:1d:
83:ee:05:6c:73:43:80:77:67:17:c9:07:9f:ad:44:
c1:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:EF:06:FB:C6:0C:B5:CF:C6:C6:F7:DC:34:DD:70:72:D6:1D:42:F8
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/8e8G-8YMtc_GxvfcNN1wctYdQvg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.57.144.0/22
Signature Algorithm: sha256WithRSAEncryption
38:fc:64:c4:1b:77:e5:b3:20:b7:2d:f8:2b:2e:d7:32:8e:a9:
6d:3a:1b:07:d8:a7:da:a5:0a:84:97:13:01:a0:9e:db:71:b8:
73:4c:c0:45:68:3a:44:ea:ad:bf:3d:50:fc:4c:8e:2d:31:fd:
6f:22:3b:3b:08:8e:b9:7e:f6:b6:4d:62:3e:1c:4d:9e:97:b5:
2b:a2:17:61:35:55:47:6a:44:97:02:9a:4f:67:a9:98:92:19:
66:29:8e:55:b7:87:34:c3:a6:22:00:9f:55:9d:b3:66:cd:f6:
f4:a6:b1:bf:fc:06:ee:43:2d:48:b3:74:2f:5c:20:30:ea:7c:
65:c8:59:dc:1d:d1:a1:a7:48:c0:c6:43:09:1f:3a:4f:0c:40:
87:8b:b0:78:8c:07:cc:2f:4a:e6:2d:f8:a4:a5:e0:ca:b6:16:
40:09:a4:22:ab:2c:60:bd:49:24:81:c9:b1:ec:57:f1:0f:dc:
15:6f:00:98:78:d0:28:6c:4a:e8:8e:a8:2b:fd:cc:36:45:aa:
a6:57:98:2c:ef:e1:cf:53:ad:92:fb:ab:6f:1e:e3:64:a4:0a:
c4:bb:48:cf:30:b6:6c:dd:2a:66:96:38:d9:32:eb:6b:59:0f:
4b:2c:03:a7:18:d2:24:06:72:c9:43:a1:ee:7c:1a:b5:91:44:
ba:d4:3c:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:02 2024 by rpki-client on console-ams.rpki-client.org