Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/Ag-eFBaNfK3NXosgJM4HSZ2KZ2k.roa
File: Ag-eFBaNfK3NXosgJM4HSZ2KZ2k.roa (raw, json)
Hash identifier: 9RnVC/AiHh5EN5SuGMh9mqTrcaFbmj9za/r07R33WEg=
Subject key identifier: 02:0F:9E:14:16:8D:7C:AD:CD:5E:8B:20:24:CE:07:49:9D:8A:67:69
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0AEB
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/Ag-eFBaNfK3NXosgJM4HSZ2KZ2k.roa
Signing time: Thu 15 Sep 2022 02:49:26 +0000
ROA not before: Thu 15 Sep 2022 02:49:26 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18429
IP address blocks: 61.57.148.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2795 (0xaeb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Sep 15 02:49:26 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=020F9E14168D7CADCD5E8B2024CE07499D8A6769
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:ef:f1:19:e2:a7:f5:63:1d:bd:b5:cd:61:f8:
6b:f9:53:81:bf:cf:72:67:c6:5b:df:cb:81:f6:9a:
df:24:c3:81:9a:a7:b3:5c:96:ea:c8:f4:c9:03:e2:
db:a0:a5:fc:41:40:41:f8:55:52:7d:7b:a7:67:55:
52:4a:87:ab:d0:35:7b:a3:03:26:1d:81:59:ab:da:
5c:05:35:b8:55:f4:be:c2:6e:0d:cb:72:0d:c3:88:
d5:52:15:ca:c1:c1:94:66:fa:94:fd:25:ed:af:34:
41:2b:68:72:37:ee:16:f7:eb:7e:de:e7:48:5d:af:
4b:6b:d2:17:35:db:42:bc:5c:90:cf:3c:a7:95:89:
16:4f:c4:b2:8d:9c:29:ae:66:06:c2:da:67:59:ff:
13:17:0e:59:35:eb:39:ba:2e:d7:fc:50:20:52:13:
cb:45:bb:3b:f0:d7:06:2c:fb:2c:25:d0:a9:a6:ed:
2e:2c:24:d1:0e:8c:f0:37:07:41:32:f6:11:93:59:
5a:45:c5:dd:b8:6f:62:f6:4d:e5:b1:4e:37:26:1c:
e1:3b:bb:fa:d5:73:a0:e6:aa:44:76:5b:b2:e1:76:
b3:92:c3:b5:3a:5d:b4:f1:23:c6:b8:54:fb:29:e1:
3f:cc:79:0b:08:6f:38:4f:4e:4b:d7:e4:54:63:7b:
fc:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:0F:9E:14:16:8D:7C:AD:CD:5E:8B:20:24:CE:07:49:9D:8A:67:69
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/Ag-eFBaNfK3NXosgJM4HSZ2KZ2k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.57.148.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:39:8d:45:66:d0:68:bc:88:50:10:bf:51:44:1b:93:71:2c:
5e:ed:a2:82:6e:55:16:5f:d3:cc:e4:c6:12:bb:37:d1:39:54:
77:82:ef:65:31:ea:3b:0b:ee:b3:87:16:d9:07:ee:70:89:7a:
5c:1b:7a:58:a6:0a:bb:9d:e3:81:7d:64:79:1d:0d:24:a8:10:
87:1f:ea:bb:9f:d0:d9:bd:f7:0f:fa:eb:76:94:39:db:f5:81:
e8:16:0e:10:59:c1:84:c6:f3:38:2f:82:43:05:66:c1:ac:c5:
93:bf:34:9f:b2:aa:3f:dd:f7:27:19:03:ec:61:35:e4:ff:9c:
7c:e3:04:d1:e5:7b:e1:bb:88:3e:40:ea:76:9d:1f:1f:cc:a3:
22:53:56:9d:13:f5:a9:ea:c5:c3:a4:ec:99:76:17:df:32:8b:
e9:67:46:1c:07:f2:05:ed:4b:d5:cf:ba:01:67:87:64:6a:ec:
eb:7b:32:90:26:87:38:76:6a:c6:a2:8c:ee:73:52:a2:f9:b4:
07:90:56:69:40:d6:e7:41:36:80:88:ef:b2:f3:e7:56:7d:e4:
8a:90:51:3e:b4:ef:2f:89:1b:90:98:6a:87:ae:25:81:e9:5f:
81:b8:1b:a0:a5:a8:7d:b5:8b:29:19:e6:5a:49:76:e9:d6:3e:
ef:c5:e6:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org