Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/8gVhcMA6OT0S_v8NOxK0_r2xcMU.roa
File: 8gVhcMA6OT0S_v8NOxK0_r2xcMU.roa (raw, json)
Hash identifier: //9V2EIYKdcQTdDpRb/fOBuMDgtp6Xb1DLpoGbiVAfg=
Subject key identifier: F2:05:61:70:C0:3A:39:3D:12:FE:FF:0D:3B:12:B4:FE:BD:B1:70:C5
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 090D
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/8gVhcMA6OT0S_v8NOxK0_r2xcMU.roa
Signing time: Sun 07 Feb 2021 12:45:13 +0000
ROA not before: Sun 07 Feb 2021 12:45:13 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18429
IP address blocks: 61.57.136.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2317 (0x90d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Feb 7 12:45:13 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F2056170C03A393D12FEFF0D3B12B4FEBDB170C5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:67:68:6a:0b:b4:e4:05:e8:13:50:dc:c7:89:
08:f8:ee:88:33:67:88:54:03:56:31:3b:3d:df:26:
bd:9f:77:b9:b1:52:d6:4f:35:d3:2f:14:1d:3e:15:
38:d2:1d:94:c2:cc:ab:17:e5:16:9b:7d:5b:7a:f7:
02:60:70:93:b2:13:f8:3a:08:32:ae:d4:2f:b0:f1:
a2:1d:8c:4d:bd:e5:71:4b:3c:34:ff:c6:9f:f6:4b:
87:2d:d1:1d:f4:a8:b2:32:47:03:f6:3a:ec:a9:b8:
f1:e3:b5:33:71:35:93:d2:89:74:91:1d:51:b0:9d:
50:16:d3:fd:9b:ec:45:4d:e7:e7:6f:20:7d:9d:e8:
32:a7:9f:24:1f:8f:0b:0a:02:11:06:53:f1:c4:30:
fd:7a:c7:26:11:2e:a6:7e:c4:d3:cb:09:e1:7e:23:
59:8a:47:b3:8d:e7:67:f2:54:68:b0:bb:f5:7a:01:
22:90:5f:bc:c6:11:98:81:0e:f4:24:45:59:5e:8e:
29:c7:7d:34:15:65:6c:d1:1c:da:a4:09:6a:cb:bc:
07:f7:bf:64:d3:ff:4d:94:de:0c:b3:a7:87:f7:8a:
81:2e:0b:2e:dc:63:d4:14:55:cd:3c:41:93:0e:42:
a8:85:ef:37:19:5a:8b:e0:5c:6f:13:dd:79:42:95:
9b:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:05:61:70:C0:3A:39:3D:12:FE:FF:0D:3B:12:B4:FE:BD:B1:70:C5
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/8gVhcMA6OT0S_v8NOxK0_r2xcMU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.57.136.0/21
Signature Algorithm: sha256WithRSAEncryption
a2:18:7b:e4:f6:b1:2a:19:d7:7d:50:0a:f4:43:e4:a0:55:b5:
c9:a4:e5:01:f8:80:45:ef:46:cb:79:f1:18:95:73:77:ab:a8:
01:03:33:ab:46:f6:b1:df:24:cf:e1:53:c9:8b:30:29:66:5d:
3b:f9:e6:e2:e8:8d:07:d6:1a:85:32:eb:4e:3d:aa:f8:b0:b7:
7d:63:e6:a0:4a:8e:d1:2f:0d:82:5c:e6:37:d7:d8:b5:83:af:
37:fe:8c:62:48:63:ca:a9:89:0b:66:cc:05:77:01:17:1c:30:
f1:3f:c1:53:c9:cb:da:8e:d4:b5:6b:04:44:70:cf:46:a4:19:
c4:99:80:a7:68:bf:02:00:44:30:d3:92:25:ab:46:62:04:50:
6a:c5:8b:35:c7:27:a6:91:e4:2d:ac:9d:e2:8a:a7:0d:6f:30:
f5:5a:64:d5:a6:af:fe:fe:e8:19:f9:89:36:b9:24:2c:bb:6d:
a4:d0:c3:08:9d:d6:d1:9f:ab:66:76:bf:94:8f:5f:f6:d5:7a:
64:1c:02:be:d6:05:a2:3e:96:bf:5e:67:28:af:92:d4:63:07:
c6:b5:82:42:5c:27:1b:e3:2d:29:3e:95:9a:be:5f:75:56:b3:
8e:f8:72:10:02:4b:29:ad:4f:81:4d:7f:bb:39:0d:9b:62:cc:
0d:4f:0c:34
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCQ0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUQx
RTNGM0M4QkE4OURDMTMxMDQxMDM0NUY1MEMxMDA3NjE4MTI2MTAeFw0yMTAyMDcx
MjQ1MTNaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEYyMDU2MTcwQzAzQTM5
M0QxMkZFRkYwRDNCMTJCNEZFQkRCMTcwQzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCzZ2hqC7TkBegTUNzHiQj47ogzZ4hUA1YxOz3fJr2fd7mxUtZP
NdMvFB0+FTjSHZTCzKsX5RabfVt69wJgcJOyE/g6CDKu1C+w8aIdjE295XFLPDT/
xp/2S4ct0R30qLIyRwP2OuypuPHjtTNxNZPSiXSRHVGwnVAW0/2b7EVN5+dvIH2d
6DKnnyQfjwsKAhEGU/HEMP16xyYRLqZ+xNPLCeF+I1mKR7ON52fyVGiwu/V6ASKQ
X7zGEZiBDvQkRVlejinHfTQVZWzRHNqkCWrLvAf3v2TT/02U3gyzp4f3ioEuCy7c
Y9QUVc08QZMOQqiF7zcZWovgXG8T3XlClZvvAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQU8gVhcMA6OT0S/v8NOxK0/r2xcMUwHwYDVR0jBBgwFoAUXR4/PIuoncExBBA0
X1DBAHYYEmEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0dORVQv
WFI0X1BJdW9uY0V4QkJBMFgxREJBSFlZRW1FLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9YUjRfUEl1b25jRXhCQkEwWDFEQkFIWVlFbUUuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DR05FVC84Z1ZoY01BNk9UMFNfdjhOT3hL
MF9yMnhjTVUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDPTmI
MA0GCSqGSIb3DQEBCwUAA4IBAQCiGHvk9rEqGdd9UAr0Q+SgVbXJpOUB+IBF70bL
efEYlXN3q6gBAzOrRvax3yTP4VPJizApZl07+ebi6I0H1hqFMutOPar4sLd9Y+ag
So7RLw2CXOY319i1g683/oxiSGPKqYkLZswFdwEXHDDxP8FTycvajtS1awREcM9G
pBnEmYCnaL8CAEQw05Ilq0ZiBFBqxYs1xyemkeQtrJ3iiqcNbzD1WmTVpq/+/ugZ
+Yk2uSQsu22k0MMIndbRn6tmdr+Uj1/21XpkHAK+1gWiPpa/Xmcor5LUYwfGtYJC
XCcb4y0pPpWavl91VrOO+HIQAksprU+BTX+7OQ2bYswNTww0
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org