Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/H2HHmpI9x70Xxxb2BYPWQdoxr7I.roa
File: H2HHmpI9x70Xxxb2BYPWQdoxr7I.roa (raw, json)
Hash identifier: DimKWqqv5f/1Lh7ip8x8ntp5LJELspiZQeMNesIASEE=
Subject key identifier: 1F:61:C7:9A:92:3D:C7:BD:17:C7:16:F6:05:83:D6:41:DA:31:AF:B2
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0AEB
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/H2HHmpI9x70Xxxb2BYPWQdoxr7I.roa
Signing time: Thu 15 Sep 2022 02:49:30 +0000
ROA not before: Thu 15 Sep 2022 02:49:30 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18429
IP address blocks: 124.155.176.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2795 (0xaeb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Sep 15 02:49:30 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=1F61C79A923DC7BD17C716F60583D641DA31AFB2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:d6:5e:71:6c:77:69:25:6c:0b:f4:5c:3b:da:
01:2c:f2:a3:de:fd:7e:cf:f1:c6:e6:1c:e5:7b:30:
a9:31:31:dc:86:d8:a0:ac:60:e0:45:0e:bf:c9:1d:
d6:c5:ec:fb:0f:c7:ae:90:2a:08:f9:f2:7a:48:76:
d7:c9:b5:72:56:60:2d:1d:d4:3f:20:7b:45:8f:c3:
01:f9:3c:dd:99:93:53:c5:4c:50:7c:85:d2:65:7a:
21:90:54:16:5e:35:b2:95:35:bd:d0:f5:87:2c:20:
6b:b4:5c:70:40:60:e5:3a:cf:43:59:9c:aa:35:2c:
59:7f:0b:eb:48:56:4a:9f:f4:b6:0e:69:78:27:0a:
db:ef:60:4d:31:8b:91:30:44:eb:69:c4:54:32:66:
34:e8:6d:91:17:30:33:9f:09:4c:c6:b3:22:4d:1f:
9e:17:e4:cb:cb:a5:53:7e:46:ad:08:5d:9e:ca:dd:
ea:89:28:4a:25:1b:c4:63:2e:5b:53:9a:81:83:c7:
c3:6d:21:44:54:40:ef:c7:f8:ef:eb:2f:08:26:eb:
34:71:7a:13:21:88:dc:15:a9:cc:35:6c:f5:1f:ef:
cf:7e:57:61:01:7d:79:93:88:58:b5:f4:d8:b3:86:
0f:71:88:bd:03:d0:ee:82:13:8d:67:9f:3c:33:00:
1d:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:61:C7:9A:92:3D:C7:BD:17:C7:16:F6:05:83:D6:41:DA:31:AF:B2
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/H2HHmpI9x70Xxxb2BYPWQdoxr7I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.155.176.0/21
Signature Algorithm: sha256WithRSAEncryption
69:53:41:fa:8b:38:97:aa:8b:99:96:f2:8b:d6:bf:3c:a9:88:
eb:cd:86:ea:4c:f4:be:e2:6a:22:3a:f5:e1:5c:0d:72:65:c7:
e2:05:90:7f:6f:d0:29:1b:06:fc:5f:62:1f:bc:85:b6:ee:5f:
5a:6c:bb:e3:f6:fa:72:14:96:9e:a3:90:2f:8a:a5:cb:74:03:
c6:8c:59:52:36:e8:e5:8b:58:96:58:81:8d:4c:9a:94:0e:6c:
fc:5b:37:8c:77:10:18:72:63:9f:79:ac:54:b2:00:0a:f3:63:
7e:91:02:9f:98:a4:57:eb:e2:76:7a:e2:16:25:50:f6:64:fc:
4f:09:0b:52:d7:c2:61:4c:59:5a:ee:e8:01:87:02:64:18:05:
7e:8d:1f:94:cd:dc:00:bb:15:26:57:41:95:cd:77:d2:d7:d4:
d2:cd:cc:94:5b:4c:45:2e:1b:ed:8d:2f:f6:25:7d:a8:ef:8c:
a5:f7:3a:b0:c4:98:80:39:3b:5b:cb:ca:7a:e3:f7:00:f4:5c:
52:32:7e:10:80:7d:8a:76:1b:af:70:8f:19:54:49:73:10:7e:
29:b7:c0:75:d3:ef:13:fe:69:d7:b2:2d:58:d2:48:e2:de:56:
fc:ad:62:2a:c3:a4:dc:dc:06:72:7b:11:b2:ac:ca:d8:c2:90:
19:58:f3:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:02 2024 by rpki-client on console-ams.rpki-client.org