Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/GM6NNbrjGvKwQl_Ifzq-wDJni7k.roa
File: GM6NNbrjGvKwQl_Ifzq-wDJni7k.roa (raw, json)
Hash identifier: Ler742d4PRGbtjW4ooaMzEBG9nrpPD0l9gm876lq7Go=
Subject key identifier: 18:CE:8D:35:BA:E3:1A:F2:B0:42:5F:C8:7F:3A:BE:C0:32:67:8B:B9
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 09D9
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/GM6NNbrjGvKwQl_Ifzq-wDJni7k.roa
Signing time: Wed 29 Sep 2021 02:52:03 +0000
ROA not before: Wed 29 Sep 2021 02:52:03 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18429
IP address blocks: 61.57.144.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2521 (0x9d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Sep 29 02:52:03 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=18CE8D35BAE31AF2B0425FC87F3ABEC032678BB9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:4c:8f:b7:bb:1c:8e:fb:9e:31:61:b5:44:85:
c2:d2:45:b1:89:ad:e0:c0:c8:f9:43:dd:74:0c:c8:
a1:76:86:b7:ee:07:0c:98:58:ee:c3:6e:35:4d:a6:
d5:8e:91:d8:f1:b6:b8:cf:99:7c:a9:35:aa:56:31:
25:5f:c6:fa:8b:18:3b:72:45:67:44:df:2e:ac:13:
b9:6a:4d:77:03:1e:63:df:3a:1f:77:cf:6f:87:d3:
0c:c6:4c:49:26:45:2e:94:75:a2:38:21:34:84:27:
b9:f5:90:ac:3c:1d:ae:a2:14:7b:da:4d:58:7e:cf:
3c:72:85:53:cc:8a:04:40:75:df:94:d7:e2:c0:2a:
f9:4b:9c:8e:7e:11:8f:4f:e6:38:74:43:db:2f:87:
2e:d6:91:58:74:88:e0:8e:bd:83:d1:87:10:af:2e:
f4:84:44:8e:af:82:48:f7:96:a6:d9:ec:92:17:47:
63:05:c0:3f:d0:aa:50:2b:50:ec:8f:2b:f0:64:56:
76:7f:e1:03:f5:4e:9e:c6:d9:14:d0:4f:46:09:ea:
c5:43:4b:c9:f0:33:ac:54:af:b3:16:80:38:8b:55:
44:c2:5c:43:10:b5:b3:a6:06:94:8a:2a:8d:a8:fd:
d7:f0:70:0e:34:e7:f6:c7:d1:02:6c:d3:aa:c7:cb:
8d:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:CE:8D:35:BA:E3:1A:F2:B0:42:5F:C8:7F:3A:BE:C0:32:67:8B:B9
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/GM6NNbrjGvKwQl_Ifzq-wDJni7k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.57.144.0/21
Signature Algorithm: sha256WithRSAEncryption
7d:89:1e:3c:c8:2f:15:1c:77:30:d8:43:b0:e3:f5:47:2f:fe:
30:16:ca:51:ba:d6:4d:a9:cd:59:1a:cb:ed:e3:75:83:fe:fc:
09:7e:e1:88:5f:02:65:ce:aa:7e:7f:7e:3e:cb:e8:29:92:32:
1d:61:71:b7:88:c2:50:12:eb:80:9d:58:bd:94:40:50:2c:ca:
e0:df:df:d4:77:82:e9:26:f9:24:40:4b:2b:97:c7:ae:4d:b1:
17:b5:1e:fd:93:05:f4:e3:16:03:a6:b5:f7:82:a7:de:93:98:
66:b0:f4:05:74:b3:6d:15:87:19:d8:9f:80:92:7d:28:a4:45:
36:3d:8c:5d:b6:55:b4:7e:5e:c4:a7:be:36:ef:e0:a9:89:38:
de:21:4a:10:93:bd:50:8e:ad:61:06:2a:0c:c5:5b:c7:18:6e:
50:a5:0f:c3:43:3c:0e:05:53:49:34:bf:bb:15:f8:71:09:98:
1b:b3:3d:00:27:7b:10:d8:85:54:ee:c4:88:30:e8:c3:b7:09:
e7:72:bb:12:9f:82:10:06:e7:3d:a5:1b:cd:b5:38:ef:9b:00:
de:98:90:a6:af:34:57:6a:c7:3e:49:19:f2:41:6d:25:da:83:
03:c0:44:a7:b5:08:37:c1:ba:0d:78:19:c3:0f:0e:cc:4d:3a:
4b:6e:bb:6b
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCdkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUQx
RTNGM0M4QkE4OURDMTMxMDQxMDM0NUY1MEMxMDA3NjE4MTI2MTAeFw0yMTA5Mjkw
MjUyMDNaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDE4Q0U4RDM1QkFFMzFB
RjJCMDQyNUZDODdGM0FCRUMwMzI2NzhCQjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDdTI+3uxyO+54xYbVEhcLSRbGJreDAyPlD3XQMyKF2hrfuBwyY
WO7DbjVNptWOkdjxtrjPmXypNapWMSVfxvqLGDtyRWdE3y6sE7lqTXcDHmPfOh93
z2+H0wzGTEkmRS6UdaI4ITSEJ7n1kKw8Ha6iFHvaTVh+zzxyhVPMigRAdd+U1+LA
KvlLnI5+EY9P5jh0Q9svhy7WkVh0iOCOvYPRhxCvLvSERI6vgkj3lqbZ7JIXR2MF
wD/QqlArUOyPK/BkVnZ/4QP1Tp7G2RTQT0YJ6sVDS8nwM6xUr7MWgDiLVUTCXEMQ
tbOmBpSKKo2o/dfwcA405/bH0QJs06rHy40fAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUGM6NNbrjGvKwQl/Ifzq+wDJni7kwHwYDVR0jBBgwFoAUXR4/PIuoncExBBA0
X1DBAHYYEmEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0dORVQv
WFI0X1BJdW9uY0V4QkJBMFgxREJBSFlZRW1FLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9YUjRfUEl1b25jRXhCQkEwWDFEQkFIWVlFbUUuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DR05FVC9HTTZOTmJyakd2S3dRbF9JZnpx
LXdESm5pN2sucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDPTmQ
MA0GCSqGSIb3DQEBCwUAA4IBAQB9iR48yC8VHHcw2EOw4/VHL/4wFspRutZNqc1Z
Gsvt43WD/vwJfuGIXwJlzqp+f34+y+gpkjIdYXG3iMJQEuuAnVi9lEBQLMrg39/U
d4LpJvkkQEsrl8euTbEXtR79kwX04xYDprX3gqfek5hmsPQFdLNtFYcZ2J+Akn0o
pEU2PYxdtlW0fl7Ep7427+CpiTjeIUoQk71Qjq1hBioMxVvHGG5QpQ/DQzwOBVNJ
NL+7FfhxCZgbsz0AJ3sQ2IVU7sSIMOjDtwnncrsSn4IQBuc9pRvNtTjvmwDemJCm
rzRXasc+SRnyQW0l2oMDwESntQg3wboNeBnDDw7MTTpLbrtr
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org