Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/9w0FWNmf_yNGsahavqY0mAiUp2A.roa
File: 9w0FWNmf_yNGsahavqY0mAiUp2A.roa (raw, json)
Hash identifier: +oYkr5LWQxM9m4t+NrSigH381Mhe+Cp/NPEJVRxmh9k=
Subject key identifier: F7:0D:05:58:D9:9F:FF:23:46:B1:A8:5A:BE:A6:34:98:08:94:A7:60
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 090F
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/9w0FWNmf_yNGsahavqY0mAiUp2A.roa
Signing time: Sun 07 Feb 2021 12:45:15 +0000
ROA not before: Sun 07 Feb 2021 12:45:15 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18429
IP address blocks: 61.57.144.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2319 (0x90f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Feb 7 12:45:15 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F70D0558D99FFF2346B1A85ABEA634980894A760
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:28:ab:f7:13:c0:61:ed:8c:22:60:c4:44:2e:
10:5d:10:96:5a:0f:34:15:f1:e2:fd:ff:8b:1f:36:
99:1d:92:89:3f:f4:b9:4f:4b:f5:9e:28:8e:6c:df:
4e:05:eb:7c:36:3a:77:c7:4f:e3:a3:a6:b1:b3:32:
5f:9d:91:9b:42:75:35:72:82:a8:be:02:67:a5:75:
3f:30:31:fc:b1:99:ff:67:88:6c:a1:04:5e:26:41:
2b:79:51:7a:38:ba:4f:ac:a0:b0:4c:28:e5:ff:83:
f0:5c:26:fc:8d:08:50:d3:58:5e:0a:e3:51:5a:c7:
54:5d:72:96:6d:a1:8c:94:cf:d5:78:1b:b0:2b:99:
06:bb:0f:2c:64:1b:fa:45:91:92:36:4d:6f:1d:05:
36:40:2a:64:b4:91:a5:27:92:88:91:6a:f6:e8:fa:
25:01:4a:1e:19:a4:dc:e5:c3:32:7c:36:90:d0:88:
be:56:f4:2e:cd:46:88:7f:1b:00:56:32:85:d4:ce:
97:18:77:93:65:a6:2d:94:31:86:e1:15:c3:9a:80:
0e:29:64:f9:80:92:88:65:f0:7a:89:1b:26:38:58:
c2:54:2b:c2:71:e6:60:68:6c:a0:c3:52:c2:70:58:
c4:e3:ff:a6:7f:94:e3:d3:89:ba:39:d6:39:de:ee:
29:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:0D:05:58:D9:9F:FF:23:46:B1:A8:5A:BE:A6:34:98:08:94:A7:60
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/9w0FWNmf_yNGsahavqY0mAiUp2A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.57.144.0/21
Signature Algorithm: sha256WithRSAEncryption
99:12:22:ab:5c:81:fb:97:91:a2:8d:da:76:e1:c6:67:e1:d6:
53:a7:a4:55:a0:0b:12:a0:ac:0c:2b:4a:28:ef:04:e8:8e:3f:
ab:80:53:5d:a0:4a:66:4f:2c:3c:59:93:85:ce:1f:47:34:95:
8a:36:8b:15:cf:e1:61:12:54:41:dc:0f:b6:c6:69:aa:56:d2:
2e:84:67:2f:b2:f3:8f:c0:5d:43:db:52:a3:d6:21:80:7d:d8:
7c:82:86:7b:9c:a3:5d:ba:37:69:14:19:e8:1a:b3:e4:dc:2c:
96:7f:b3:2e:34:64:63:89:f0:e9:54:fb:f8:74:4f:0d:a3:1e:
ef:40:d4:87:9f:c1:11:61:c4:2b:6d:e3:0d:67:7e:14:18:c7:
cc:d2:26:64:24:53:4c:1d:ad:41:73:3a:87:8d:77:c0:8f:a8:
8b:39:93:cd:5d:3f:a2:4e:05:ae:80:29:27:a8:fb:48:17:61:
37:57:ae:67:03:72:54:e7:9e:a0:76:1f:29:1e:61:6b:31:18:
ad:81:fd:d0:48:43:6f:0d:3b:33:76:8d:c5:90:b1:54:0d:1b:
b4:51:46:6d:3c:01:2f:d9:84:bd:84:80:ec:81:ce:a3:29:d3:
53:79:f7:74:2b:fc:bd:b8:8f:ab:e8:0a:fd:3a:86:9a:a0:a1:
00:98:b0:35
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCQ8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUQx
RTNGM0M4QkE4OURDMTMxMDQxMDM0NUY1MEMxMDA3NjE4MTI2MTAeFw0yMTAyMDcx
MjQ1MTVaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEY3MEQwNTU4RDk5RkZG
MjM0NkIxQTg1QUJFQTYzNDk4MDg5NEE3NjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDTKKv3E8Bh7YwiYMRELhBdEJZaDzQV8eL9/4sfNpkdkok/9LlP
S/WeKI5s304F63w2OnfHT+OjprGzMl+dkZtCdTVygqi+AmeldT8wMfyxmf9niGyh
BF4mQSt5UXo4uk+soLBMKOX/g/BcJvyNCFDTWF4K41Fax1RdcpZtoYyUz9V4G7Ar
mQa7DyxkG/pFkZI2TW8dBTZAKmS0kaUnkoiRavbo+iUBSh4ZpNzlwzJ8NpDQiL5W
9C7NRoh/GwBWMoXUzpcYd5Nlpi2UMYbhFcOagA4pZPmAkohl8HqJGyY4WMJUK8Jx
5mBobKDDUsJwWMTj/6Z/lOPTibo51jne7inxAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQU9w0FWNmf/yNGsahavqY0mAiUp2AwHwYDVR0jBBgwFoAUXR4/PIuoncExBBA0
X1DBAHYYEmEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0dORVQv
WFI0X1BJdW9uY0V4QkJBMFgxREJBSFlZRW1FLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9YUjRfUEl1b25jRXhCQkEwWDFEQkFIWVlFbUUuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DR05FVC85dzBGV05tZl95TkdzYWhhdnFZ
MG1BaVVwMkEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDPTmQ
MA0GCSqGSIb3DQEBCwUAA4IBAQCZEiKrXIH7l5Gijdp24cZn4dZTp6RVoAsSoKwM
K0oo7wTojj+rgFNdoEpmTyw8WZOFzh9HNJWKNosVz+FhElRB3A+2xmmqVtIuhGcv
svOPwF1D21Kj1iGAfdh8goZ7nKNdujdpFBnoGrPk3CyWf7MuNGRjifDpVPv4dE8N
ox7vQNSHn8ERYcQrbeMNZ34UGMfM0iZkJFNMHa1BczqHjXfAj6iLOZPNXT+iTgWu
gCknqPtIF2E3V65nA3JU556gdh8pHmFrMRitgf3QSENvDTszdo3FkLFUDRu0UUZt
PAEv2YS9hIDsgc6jKdNTefd0K/y9uI+r6Ar9OoaaoKEAmLA1
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org