Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/I10OzRp_7xnU5cNu93mI1z2nXJQ.roa
File: I10OzRp_7xnU5cNu93mI1z2nXJQ.roa (raw, json)
Hash identifier: exaLPXZQ4v/7fhdeuFyoHY6FXZpGZ2ArPLagcvXCb2s=
Subject key identifier: 23:5D:0E:CD:1A:7F:EF:19:D4:E5:C3:6E:F7:79:88:D7:3D:A7:5C:94
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 078D
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/I10OzRp_7xnU5cNu93mI1z2nXJQ.roa
Signing time: Tue 29 Sep 2020 09:59:28 +0000
ROA not before: Tue 29 Sep 2020 09:59:28 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18429
IP address blocks: 45.64.232.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1933 (0x78d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Sep 29 09:59:28 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=235D0ECD1A7FEF19D4E5C36EF77988D73DA75C94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:69:2c:e9:2a:5e:1f:32:bf:c8:bc:a5:c1:15:
b8:6a:bf:61:b0:f5:ba:0d:09:8d:97:5b:41:3f:95:
d4:ff:24:27:56:cd:60:d2:d0:3a:6b:b5:69:26:5d:
a2:4f:7f:2d:02:e5:19:c4:4b:89:66:69:10:5b:78:
f7:0a:fd:74:9e:38:29:4d:c1:6d:3b:c2:11:cd:5a:
c0:c3:97:45:39:17:ce:06:70:1b:f3:0e:6a:05:42:
0b:fb:3a:13:9a:84:56:5b:3a:08:48:6b:4a:5f:00:
c4:61:75:56:d7:0e:02:02:4c:b0:dd:d2:17:65:61:
e3:e7:05:b4:1d:81:35:ae:ae:af:ba:a2:bc:46:89:
b2:69:f6:99:8c:34:23:81:68:06:23:76:0d:54:e7:
d9:9a:04:16:74:5e:13:b0:56:3f:21:85:0d:c6:4d:
b9:21:1f:2f:b2:30:de:19:23:ec:7a:7c:c6:1e:92:
8c:11:f8:28:19:44:f5:b7:67:c6:48:5a:f9:b9:0a:
87:14:b4:87:ad:7f:3d:66:5c:90:11:56:7b:d4:f9:
de:af:52:83:ee:0a:f6:d8:13:86:ac:61:dd:4a:dc:
e7:a9:48:32:c6:42:08:f3:bc:20:34:a6:a9:da:6a:
87:dc:42:f2:fa:9f:d1:ca:e2:bf:ad:63:7b:6d:78:
00:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:5D:0E:CD:1A:7F:EF:19:D4:E5:C3:6E:F7:79:88:D7:3D:A7:5C:94
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/I10OzRp_7xnU5cNu93mI1z2nXJQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
45.64.232.0/22
Signature Algorithm: sha256WithRSAEncryption
8b:6c:50:8e:8b:20:e9:55:bd:b5:da:8d:90:37:15:ad:18:bf:
5b:69:cc:07:72:2a:fa:36:46:ec:29:6c:b5:76:e2:66:26:1f:
13:d5:a9:ad:12:5e:6e:9c:bb:9f:7b:86:cb:4b:b0:8c:04:31:
fa:90:2e:94:45:74:a2:4c:ee:4a:0f:06:dd:f2:cf:7a:7d:02:
f0:c9:f7:7b:a8:f8:78:c3:7e:63:07:54:e4:c3:a9:47:81:7d:
e3:8f:87:0a:af:3a:44:48:a2:e3:19:39:3f:86:bd:b5:91:fc:
b0:7b:ef:b3:4b:46:f3:fd:e7:c3:fb:46:44:4a:72:07:78:33:
61:cb:6d:75:99:c1:d2:c2:aa:b9:28:02:1a:64:e8:da:38:8f:
e5:90:f3:a3:be:18:94:fc:c8:59:e3:10:a7:82:be:20:ac:b4:
b4:e9:cc:0c:e1:f9:93:6a:f8:7d:01:2e:4c:6b:ef:07:7b:ab:
8d:7f:53:f0:d2:7b:6b:f2:74:f9:3c:d1:f5:95:94:e5:f4:0b:
6c:4d:ef:a6:30:05:44:54:54:15:2c:66:84:ab:6a:78:b7:dc:
d4:5f:46:ed:de:15:3f:26:32:6a:82:5c:8e:0a:25:65:43:42:
35:e7:9d:9d:b3:66:bd:fe:fa:3a:5a:6f:a3:64:ea:c1:33:be:
8b:b9:ec:8d
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICB40wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUQx
RTNGM0M4QkE4OURDMTMxMDQxMDM0NUY1MEMxMDA3NjE4MTI2MTAeFw0yMDA5Mjkw
OTU5MjhaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDIzNUQwRUNEMUE3RkVG
MTlENEU1QzM2RUY3Nzk4OEQ3M0RBNzVDOTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC5aSzpKl4fMr/IvKXBFbhqv2Gw9boNCY2XW0E/ldT/JCdWzWDS
0DprtWkmXaJPfy0C5RnES4lmaRBbePcK/XSeOClNwW07whHNWsDDl0U5F84GcBvz
DmoFQgv7OhOahFZbOghIa0pfAMRhdVbXDgICTLDd0hdlYePnBbQdgTWurq+6orxG
ibJp9pmMNCOBaAYjdg1U59maBBZ0XhOwVj8hhQ3GTbkhHy+yMN4ZI+x6fMYekowR
+CgZRPW3Z8ZIWvm5CocUtIetfz1mXJARVnvU+d6vUoPuCvbYE4asYd1K3OepSDLG
QgjzvCA0pqnaaofcQvL6n9HK4r+tY3tteAAnAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUI10OzRp/7xnU5cNu93mI1z2nXJQwHwYDVR0jBBgwFoAUXR4/PIuoncExBBA0
X1DBAHYYEmEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0dORVQv
WFI0X1BJdW9uY0V4QkJBMFgxREJBSFlZRW1FLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9YUjRfUEl1b25jRXhCQkEwWDFEQkFIWVlFbUUuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DR05FVC9JMTBPelJwXzd4blU1Y051OTNt
STF6Mm5YSlEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLUDo
MA0GCSqGSIb3DQEBCwUAA4IBAQCLbFCOiyDpVb212o2QNxWtGL9bacwHcir6Nkbs
KWy1duJmJh8T1amtEl5unLufe4bLS7CMBDH6kC6URXSiTO5KDwbd8s96fQLwyfd7
qPh4w35jB1Tkw6lHgX3jj4cKrzpESKLjGTk/hr21kfywe++zS0bz/efD+0ZESnIH
eDNhy211mcHSwqq5KAIaZOjaOI/lkPOjvhiU/MhZ4xCngr4grLS06cwM4fmTavh9
AS5Ma+8He6uNf1Pw0ntr8nT5PNH1lZTl9AtsTe+mMAVEVFQVLGaEq2p4t9zUX0bt
3hU/JjJqglyOCiVlQ0I1552ds2a9/vo6Wm+jZOrBM76LueyN
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org