Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/SOiqLosmcReBtG59fwwZ6R_gTV4.roa
File: SOiqLosmcReBtG59fwwZ6R_gTV4.roa (raw, json)
Hash identifier: 66Ir1+2ypiBSJhSjJRk3J6FM6Wltz6c8OH/T5I7TxnY=
Subject key identifier: 48:E8:AA:2E:8B:26:71:17:81:B4:6E:7D:7F:0C:19:E9:1F:E0:4D:5E
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0AEB
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/SOiqLosmcReBtG59fwwZ6R_gTV4.roa
Signing time: Thu 15 Sep 2022 02:49:31 +0000
ROA not before: Thu 15 Sep 2022 02:49:31 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18429
IP address blocks: 123.50.56.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2795 (0xaeb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Sep 15 02:49:31 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=48E8AA2E8B26711781B46E7D7F0C19E91FE04D5E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:60:b9:53:6f:90:28:7c:2e:2d:88:07:10:ac:
d8:75:b4:fd:a8:c1:32:9a:75:98:77:a7:0f:79:b0:
33:b6:7c:be:6f:80:af:71:25:3e:bb:45:06:a3:90:
42:98:80:f0:59:67:f3:10:00:b4:30:b0:ec:4a:7a:
83:aa:a9:e5:0c:14:27:af:57:dc:fe:29:f1:89:de:
6a:96:86:45:9b:bf:d3:14:53:64:20:28:a5:1f:bc:
ad:0c:d0:61:0a:8b:e3:e0:76:93:c5:54:64:eb:55:
38:2b:45:29:65:58:c6:9f:a4:f5:cd:a8:0e:ea:f6:
a8:1f:19:2b:88:ab:b7:48:82:37:8f:38:0c:e6:73:
95:97:47:78:42:f7:67:13:d8:39:07:20:80:f1:13:
b8:30:28:5a:08:e3:c5:4e:c8:e0:3e:32:ff:20:18:
cc:cf:69:87:12:83:02:ec:c4:ba:b6:69:84:19:9c:
6f:af:64:52:e2:f6:e4:54:f7:93:35:8b:9a:39:6e:
e5:2d:a1:2c:58:d9:99:12:72:dc:80:e2:7a:33:41:
6b:26:31:15:31:27:08:bf:cb:e0:f2:82:5d:43:78:
5f:84:45:6f:e2:10:65:43:7f:17:e3:a5:d9:78:0b:
d4:22:46:eb:c3:75:c8:bb:9d:54:f5:c3:ab:c0:38:
d2:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:E8:AA:2E:8B:26:71:17:81:B4:6E:7D:7F:0C:19:E9:1F:E0:4D:5E
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/SOiqLosmcReBtG59fwwZ6R_gTV4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.50.56.0/21
Signature Algorithm: sha256WithRSAEncryption
20:dd:c6:ac:1d:73:b6:9b:67:31:4d:13:f9:fe:3c:c6:79:b9:
2f:cd:d6:6d:b8:00:e3:8d:20:0b:5b:20:77:48:92:85:3a:6e:
c8:71:33:2a:9f:b9:35:97:c7:e6:af:a1:c5:4e:9f:7e:e5:48:
dc:98:76:93:9a:31:f8:5c:04:22:aa:50:8e:69:aa:29:2a:6e:
2f:a4:7b:e1:62:8d:96:2d:91:13:24:a1:01:c4:63:e3:0c:be:
57:50:2c:83:cc:d6:f8:08:9b:72:6a:52:19:23:11:b7:81:e0:
99:c4:87:92:fb:1a:d7:82:b0:06:51:7f:b7:df:ba:e0:66:f0:
06:f0:35:ef:d7:33:77:27:4d:95:bc:ba:ad:ae:84:18:f0:35:
f0:02:45:c9:38:01:77:71:5f:f7:c0:84:18:0c:a5:ad:a9:0d:
7b:3d:8a:ad:47:d5:3d:d6:a2:95:95:e3:95:b9:6d:f5:99:06:
99:02:9c:a4:e8:e2:77:23:a6:1c:32:8b:3a:8e:0f:30:fb:15:
53:05:a7:c8:fa:bb:28:09:6d:81:00:7a:67:ba:74:e6:26:0f:
8f:6d:c4:f7:32:73:ed:49:3b:98:ee:e8:54:98:73:c6:06:37:
92:f2:04:72:60:7e:cf:78:bf:c8:fc:ef:ae:02:a4:69:aa:aa:
3e:b8:c6:6e
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCuswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUQx
RTNGM0M4QkE4OURDMTMxMDQxMDM0NUY1MEMxMDA3NjE4MTI2MTAeFw0yMjA5MTUw
MjQ5MzFaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDQ4RThBQTJFOEIyNjcx
MTc4MUI0NkU3RDdGMEMxOUU5MUZFMDRENUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDFYLlTb5AofC4tiAcQrNh1tP2owTKadZh3pw95sDO2fL5vgK9x
JT67RQajkEKYgPBZZ/MQALQwsOxKeoOqqeUMFCevV9z+KfGJ3mqWhkWbv9MUU2Qg
KKUfvK0M0GEKi+PgdpPFVGTrVTgrRSllWMafpPXNqA7q9qgfGSuIq7dIgjePOAzm
c5WXR3hC92cT2DkHIIDxE7gwKFoI48VOyOA+Mv8gGMzPaYcSgwLsxLq2aYQZnG+v
ZFLi9uRU95M1i5o5buUtoSxY2ZkSctyA4nozQWsmMRUxJwi/y+Dygl1DeF+ERW/i
EGVDfxfjpdl4C9QiRuvDdci7nVT1w6vAONLHAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUSOiqLosmcReBtG59fwwZ6R/gTV4wHwYDVR0jBBgwFoAUXR4/PIuoncExBBA0
X1DBAHYYEmEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0dORVQv
WFI0X1BJdW9uY0V4QkJBMFgxREJBSFlZRW1FLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9YUjRfUEl1b25jRXhCQkEwWDFEQkFIWVlFbUUuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DR05FVC9TT2lxTG9zbWNSZUJ0RzU5Znd3
WjZSX2dUVjQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDezI4
MA0GCSqGSIb3DQEBCwUAA4IBAQAg3casHXO2m2cxTRP5/jzGebkvzdZtuADjjSAL
WyB3SJKFOm7IcTMqn7k1l8fmr6HFTp9+5UjcmHaTmjH4XAQiqlCOaaopKm4vpHvh
Yo2WLZETJKEBxGPjDL5XUCyDzNb4CJtyalIZIxG3geCZxIeS+xrXgrAGUX+337rg
ZvAG8DXv1zN3J02VvLqtroQY8DXwAkXJOAF3cV/3wIQYDKWtqQ17PYqtR9U91qKV
leOVuW31mQaZApyk6OJ3I6YcMos6jg8w+xVTBafI+rsoCW2BAHpnunTmJg+PbcT3
MnPtSTuY7uhUmHPGBjeS8gRyYH7PeL/I/O+uAqRpqqo+uMZu
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:02 2024 by rpki-client on console-ams.rpki-client.org