Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/B1oZG6G5Hyoc-YOxT3Uh3kGCBeU.roa
File: B1oZG6G5Hyoc-YOxT3Uh3kGCBeU.roa (raw, json)
Hash identifier: n5ZDIcZEo7M/qGiY5WxoR69F+zDw4yOqSxZmsFPE0Lk=
Subject key identifier: 07:5A:19:1B:A1:B9:1F:2A:1C:F9:83:B1:4F:75:21:DE:41:82:05:E5
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0919
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/B1oZG6G5Hyoc-YOxT3Uh3kGCBeU.roa
Signing time: Sun 07 Feb 2021 12:45:22 +0000
ROA not before: Sun 07 Feb 2021 12:45:22 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18429
IP address blocks: 123.50.48.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2329 (0x919)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Feb 7 12:45:22 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=075A191BA1B91F2A1CF983B14F7521DE418205E5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:51:af:d9:66:46:9a:de:ff:96:fa:93:5d:77:
e4:33:7c:bd:ba:f5:ae:da:11:30:af:5e:00:6b:ab:
15:54:a8:9e:ac:fd:f7:1c:db:af:8c:84:c1:99:b5:
1c:52:57:3f:8e:ef:3a:b5:b6:4e:f5:53:15:e8:90:
1c:60:95:cc:79:55:b5:1a:98:fb:7f:d2:ea:f4:62:
38:26:56:80:75:cb:e9:a9:5f:24:ad:34:c9:96:4e:
e4:49:94:29:27:18:d5:43:66:c5:4e:11:27:02:6f:
d7:d6:86:e0:1c:ee:68:55:9b:a1:f2:59:92:f0:4a:
d6:76:4d:82:69:0d:a3:bb:cb:0c:12:95:21:fd:20:
c4:5a:35:5a:7c:c3:27:2d:34:ff:4d:29:9c:12:dd:
0a:86:f5:83:4c:66:dc:4a:ff:63:a9:fc:93:cc:36:
6e:92:f5:6f:7e:77:3f:db:4f:d6:ed:fd:0a:5d:d7:
a6:2b:70:d3:fd:16:ab:1e:63:32:8e:39:c7:f7:6b:
92:ae:9b:99:d9:57:f4:24:0a:09:82:40:8a:0f:b2:
11:f9:0b:27:d8:35:3c:ed:b0:d4:0f:fc:6c:87:50:
78:a6:31:aa:43:9f:4d:81:b3:28:36:91:83:35:b2:
93:bc:26:5c:59:3c:97:ed:e5:b5:05:3b:33:c1:7d:
82:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:5A:19:1B:A1:B9:1F:2A:1C:F9:83:B1:4F:75:21:DE:41:82:05:E5
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/B1oZG6G5Hyoc-YOxT3Uh3kGCBeU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.50.48.0/21
Signature Algorithm: sha256WithRSAEncryption
46:ea:5a:6e:3a:8b:b3:78:ce:75:06:91:97:9b:fb:ec:38:6f:
32:f1:a1:5d:af:9b:79:4e:ec:cc:d4:c1:96:fb:66:65:20:5e:
5f:df:36:72:2b:6e:a3:d5:27:ce:e1:04:c8:16:6a:bb:3c:62:
b4:83:73:73:73:a1:2c:f7:78:2d:36:1f:de:87:f7:5b:91:ce:
f7:a2:9f:fc:17:44:df:f4:3d:fb:85:49:b9:00:88:f5:1d:d3:
7f:92:ea:be:59:9f:a7:5c:a2:4d:7c:3b:63:fe:76:b5:61:ff:
3a:76:d0:d0:49:4f:0c:00:61:7f:4f:10:ca:bd:c8:f9:e8:1b:
12:0c:21:4b:99:38:3c:44:d1:57:7f:2c:b4:5c:92:e8:56:e2:
dd:d4:9a:12:95:b6:8c:61:15:17:cc:41:f5:de:a3:e5:92:20:
df:da:da:4a:78:6f:01:fa:b8:49:b2:e7:83:6a:96:38:19:86:
42:14:15:22:8d:ee:5f:61:69:19:6d:59:23:9f:83:f7:41:86:
55:74:17:8a:1f:0b:c4:33:d9:94:55:15:c9:09:43:59:66:f4:
02:d1:6b:54:61:af:ef:f2:db:c2:94:17:e3:b7:a2:de:9b:2f:
3c:91:1c:00:55:91:d3:7d:23:3f:06:fe:d3:78:63:cb:96:02:
b6:4a:4f:91
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCRkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUQx
RTNGM0M4QkE4OURDMTMxMDQxMDM0NUY1MEMxMDA3NjE4MTI2MTAeFw0yMTAyMDcx
MjQ1MjJaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDA3NUExOTFCQTFCOTFG
MkExQ0Y5ODNCMTRGNzUyMURFNDE4MjA1RTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDEUa/ZZkaa3v+W+pNdd+QzfL269a7aETCvXgBrqxVUqJ6s/fcc
26+MhMGZtRxSVz+O7zq1tk71UxXokBxglcx5VbUamPt/0ur0YjgmVoB1y+mpXySt
NMmWTuRJlCknGNVDZsVOEScCb9fWhuAc7mhVm6HyWZLwStZ2TYJpDaO7ywwSlSH9
IMRaNVp8wyctNP9NKZwS3QqG9YNMZtxK/2Op/JPMNm6S9W9+dz/bT9bt/Qpd16Yr
cNP9FqseYzKOOcf3a5Kum5nZV/QkCgmCQIoPshH5CyfYNTztsNQP/GyHUHimMapD
n02Bsyg2kYM1spO8JlxZPJft5bUFOzPBfYIDAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUB1oZG6G5Hyoc+YOxT3Uh3kGCBeUwHwYDVR0jBBgwFoAUXR4/PIuoncExBBA0
X1DBAHYYEmEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0dORVQv
WFI0X1BJdW9uY0V4QkJBMFgxREJBSFlZRW1FLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9YUjRfUEl1b25jRXhCQkEwWDFEQkFIWVlFbUUuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DR05FVC9CMW9aRzZHNUh5b2MtWU94VDNV
aDNrR0NCZVUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDezIw
MA0GCSqGSIb3DQEBCwUAA4IBAQBG6lpuOouzeM51BpGXm/vsOG8y8aFdr5t5TuzM
1MGW+2ZlIF5f3zZyK26j1SfO4QTIFmq7PGK0g3Nzc6Es93gtNh/eh/dbkc73op/8
F0Tf9D37hUm5AIj1HdN/kuq+WZ+nXKJNfDtj/na1Yf86dtDQSU8MAGF/TxDKvcj5
6BsSDCFLmTg8RNFXfyy0XJLoVuLd1JoSlbaMYRUXzEH13qPlkiDf2tpKeG8B+rhJ
sueDapY4GYZCFBUije5fYWkZbVkjn4P3QYZVdBeKHwvEM9mUVRXJCUNZZvQC0WtU
Ya/v8tvClBfjt6Lemy88kRwAVZHTfSM/Bv7TeGPLlgK2Sk+R
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:02 2024 by rpki-client on console-ams.rpki-client.org