Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/LOiPbr4cP0p9rwq8WGeKeMiH2z4.roa
File: LOiPbr4cP0p9rwq8WGeKeMiH2z4.roa (raw, json)
Hash identifier: 3mZ6rGrBAPyARMEIfDH7IqqW+6E67dqvEzzXX2PU8Ew=
Subject key identifier: 2C:E8:8F:6E:BE:1C:3F:4A:7D:AF:0A:BC:58:67:8A:78:C8:87:DB:3E
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 08AA
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/LOiPbr4cP0p9rwq8WGeKeMiH2z4.roa
Signing time: Tue 08 Dec 2020 09:02:50 +0000
ROA not before: Tue 08 Dec 2020 09:02:50 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18429
IP address blocks: 61.57.148.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2218 (0x8aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Dec 8 09:02:50 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2CE88F6EBE1C3F4A7DAF0ABC58678A78C887DB3E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:ba:a1:66:35:61:4b:c6:68:1f:0e:70:52:ca:
7b:f4:d1:ec:0a:58:04:f8:9a:7b:65:2b:21:f6:1a:
9b:7c:21:34:40:57:0e:ab:a6:41:4b:d3:7c:60:fb:
fa:30:53:3d:9c:75:7f:13:f8:a4:0f:29:fe:6d:b2:
69:e6:3c:cb:cd:0c:68:3c:84:85:8b:ed:e6:71:51:
c5:89:88:4f:f9:89:d0:c1:1c:9f:2c:c9:12:34:f8:
c1:84:88:6e:45:0f:5e:06:1f:38:90:0e:87:89:44:
a4:27:4d:27:7f:9d:e9:6b:10:32:f6:62:22:2d:8d:
6e:f6:35:9d:95:67:dc:8e:2f:d2:2c:4d:14:44:15:
f6:be:37:1c:ba:86:8b:3a:ba:43:74:5d:fa:f4:5f:
1f:4d:d4:98:78:2b:af:cf:5a:f8:b1:b6:4c:16:0e:
55:b0:ac:24:ec:84:c4:a9:67:a8:db:d1:77:f4:d1:
af:f2:fe:69:c2:f5:5c:37:8c:16:42:73:13:dc:76:
09:ca:52:3e:7c:48:4a:56:19:34:f9:6e:f7:74:66:
9b:1d:aa:37:ed:b0:f5:82:3e:44:03:af:93:3a:e6:
27:44:82:ec:30:ba:bb:e7:f3:50:e1:0e:88:47:eb:
7d:16:7d:d9:21:21:98:57:0c:7f:d7:e5:43:59:fa:
ac:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:E8:8F:6E:BE:1C:3F:4A:7D:AF:0A:BC:58:67:8A:78:C8:87:DB:3E
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/LOiPbr4cP0p9rwq8WGeKeMiH2z4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.57.148.0/24
Signature Algorithm: sha256WithRSAEncryption
88:4e:91:5a:dc:75:8e:9e:4d:fb:31:55:55:bd:4e:0d:5b:16:
52:2e:a6:a3:ba:85:1b:b2:14:6c:90:f7:2b:1a:5e:d0:69:a3:
a0:df:34:e2:8d:dd:c2:50:da:08:9b:c7:73:46:d7:fb:34:ce:
79:dd:16:03:ea:6a:3b:d3:2a:70:cc:63:d1:68:45:15:a8:25:
14:4e:d1:c7:43:46:f0:8a:15:4f:c2:2e:1a:a5:72:a4:b2:5c:
5c:ce:5c:64:c3:9c:c2:e6:4e:f2:9a:17:dc:66:46:6d:2b:0a:
c8:4e:54:71:8f:c3:26:20:65:c9:2e:27:b1:97:48:b0:9d:f9:
a9:83:54:f8:33:16:e0:c2:4f:90:1d:3f:59:eb:fe:6d:46:c8:
6c:bd:c2:db:33:c6:8d:2f:7f:8d:f7:2f:bf:84:2c:bd:1a:d7:
04:ae:6c:d4:53:01:fc:d2:43:e7:b6:fb:a8:ed:4f:9d:4a:86:
b6:46:c3:dd:a5:a2:d9:88:03:bc:20:cb:2a:61:e0:df:eb:82:
06:32:33:64:e3:dd:27:78:02:df:6d:06:9b:2e:55:34:6a:36:
ca:4d:52:23:51:81:0f:35:5f:cf:2d:34:d5:af:27:20:46:cf:
c5:14:04:19:5d:db:a8:d8:88:78:2d:a1:30:68:d3:d0:94:b0:
bc:10:ef:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org