Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/OGUZ1uc3KBIv9Rda-o1E1yzQsZI.roa
File: OGUZ1uc3KBIv9Rda-o1E1yzQsZI.roa (raw, json)
Hash identifier: ZUco7prCeabSuX9Q9mJYjVSbExHl+IBUUCHOhDthmds=
Subject key identifier: 38:65:19:D6:E7:37:28:12:2F:F5:17:5A:FA:8D:44:D7:2C:D0:B1:92
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 091B
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/OGUZ1uc3KBIv9Rda-o1E1yzQsZI.roa
Signing time: Sun 07 Feb 2021 12:45:24 +0000
ROA not before: Sun 07 Feb 2021 12:45:24 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18429
IP address blocks: 123.50.56.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2331 (0x91b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Feb 7 12:45:24 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=386519D6E73728122FF5175AFA8D44D72CD0B192
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:03:31:06:4d:6a:fa:36:93:1d:98:f2:4e:4c:
42:56:69:5e:ea:3d:e4:2e:cf:c9:e3:cb:60:12:45:
14:ee:6f:0a:95:9c:6b:bc:2a:27:b1:40:5b:6f:2c:
51:2b:cc:55:7f:a6:c3:1c:c1:8c:92:d9:b5:55:5f:
cf:e6:36:a7:5e:71:6f:04:6c:0f:ec:1d:c8:26:fa:
c8:5e:43:57:ef:04:98:aa:aa:98:86:1a:07:45:05:
06:15:df:88:fd:de:f9:53:a8:ff:0e:bd:7e:29:d6:
93:a9:94:ce:7e:4a:40:71:05:3e:f6:6b:68:bf:91:
f6:bb:3f:20:f3:14:4a:50:58:38:6b:5b:6a:35:80:
ef:fc:bf:27:9d:f8:c9:80:a3:83:a0:ec:e5:7f:eb:
d4:7b:92:bb:64:e5:4f:a2:05:fd:d7:cf:88:f1:ef:
c3:88:9d:4e:09:93:eb:a5:c4:ef:fa:ee:83:00:f6:
7d:92:9e:16:27:05:d4:e5:8c:2e:f1:75:58:4a:60:
6c:d2:32:81:97:de:12:58:31:40:b1:0f:ec:1c:c9:
35:a7:37:04:ab:43:00:d8:09:d8:22:12:62:59:4f:
8f:db:89:33:2f:e9:16:bc:d0:02:fe:21:7f:6f:39:
b1:1c:1d:8a:2c:a6:d7:e7:c6:c6:46:f9:d2:e7:bb:
d0:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:65:19:D6:E7:37:28:12:2F:F5:17:5A:FA:8D:44:D7:2C:D0:B1:92
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/OGUZ1uc3KBIv9Rda-o1E1yzQsZI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.50.56.0/21
Signature Algorithm: sha256WithRSAEncryption
77:0f:dd:1b:10:67:20:59:f2:e1:a3:fe:53:eb:77:ce:f3:f6:
da:20:72:51:d6:50:0c:03:f1:eb:88:25:eb:c3:33:45:e8:a7:
e3:0d:da:45:e4:74:c8:85:b1:5e:31:4a:48:aa:07:57:3e:6f:
67:40:0f:be:de:75:ce:c3:fa:f2:92:7e:7f:0f:a1:59:5c:ae:
0e:11:66:88:2d:54:a6:8d:dd:ae:ea:17:fd:75:6a:19:04:8b:
0b:c6:52:c2:f0:d9:85:7d:98:1a:c4:d0:71:08:25:3f:42:2c:
c8:20:6f:4a:83:cb:af:14:c2:7c:de:1d:f1:e2:90:39:e0:c0:
fd:a4:be:cb:f2:39:af:ac:c1:fa:f2:0e:39:30:28:97:d2:85:
87:27:cf:59:9e:a9:1f:18:9b:71:73:ed:1f:e0:c0:64:f9:e5:
48:84:51:7d:c9:74:a4:14:a8:8c:be:ec:88:4f:a8:f5:7d:a4:
2d:b8:79:64:2b:97:d6:ef:84:2f:bc:17:e9:7f:1c:65:a3:5c:
08:8f:c8:bb:74:67:04:38:b9:86:81:c8:91:2b:a8:c5:80:b8:
70:a0:d5:51:ac:1b:1f:7f:a4:4d:a2:fa:fb:7b:40:b9:c0:b6:
6d:9e:a3:ff:58:53:f7:b7:40:0f:60:eb:3a:34:23:6f:10:e9:
4e:1f:69:b8
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCRswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUQx
RTNGM0M4QkE4OURDMTMxMDQxMDM0NUY1MEMxMDA3NjE4MTI2MTAeFw0yMTAyMDcx
MjQ1MjRaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDM4NjUxOUQ2RTczNzI4
MTIyRkY1MTc1QUZBOEQ0NEQ3MkNEMEIxOTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCpAzEGTWr6NpMdmPJOTEJWaV7qPeQuz8njy2ASRRTubwqVnGu8
KiexQFtvLFErzFV/psMcwYyS2bVVX8/mNqdecW8EbA/sHcgm+sheQ1fvBJiqqpiG
GgdFBQYV34j93vlTqP8OvX4p1pOplM5+SkBxBT72a2i/kfa7PyDzFEpQWDhrW2o1
gO/8vyed+MmAo4Og7OV/69R7krtk5U+iBf3Xz4jx78OInU4Jk+ulxO/67oMA9n2S
nhYnBdTljC7xdVhKYGzSMoGX3hJYMUCxD+wcyTWnNwSrQwDYCdgiEmJZT4/biTMv
6Ra80AL+IX9vObEcHYosptfnxsZG+dLnu9DpAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUOGUZ1uc3KBIv9Rda+o1E1yzQsZIwHwYDVR0jBBgwFoAUXR4/PIuoncExBBA0
X1DBAHYYEmEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0dORVQv
WFI0X1BJdW9uY0V4QkJBMFgxREJBSFlZRW1FLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9YUjRfUEl1b25jRXhCQkEwWDFEQkFIWVlFbUUuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DR05FVC9PR1VaMXVjM0tCSXY5UmRhLW8x
RTF5elFzWkkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDezI4
MA0GCSqGSIb3DQEBCwUAA4IBAQB3D90bEGcgWfLho/5T63fO8/baIHJR1lAMA/Hr
iCXrwzNF6KfjDdpF5HTIhbFeMUpIqgdXPm9nQA++3nXOw/rykn5/D6FZXK4OEWaI
LVSmjd2u6hf9dWoZBIsLxlLC8NmFfZgaxNBxCCU/QizIIG9Kg8uvFMJ83h3x4pA5
4MD9pL7L8jmvrMH68g45MCiX0oWHJ89ZnqkfGJtxc+0f4MBk+eVIhFF9yXSkFKiM
vuyIT6j1faQtuHlkK5fW74QvvBfpfxxlo1wIj8i7dGcEOLmGgciRK6jFgLhwoNVR
rBsff6RNovr7e0C5wLZtnqP/WFP3t0APYOs6NCNvEOlOH2m4
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:02 2024 by rpki-client on console-ams.rpki-client.org