Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/TxC3gj8Eg7xdYbz_U2TnGQRaex8.roa
File: TxC3gj8Eg7xdYbz_U2TnGQRaex8.roa (raw, json)
Hash identifier: L0YLSDWx9RS/wW5Ian+U/u8yiiqMA6TBLX2QaBBO8qM=
Subject key identifier: 4F:10:B7:82:3F:04:83:BC:5D:61:BC:FF:53:64:E7:19:04:5A:7B:1F
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0AEB
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/TxC3gj8Eg7xdYbz_U2TnGQRaex8.roa
Signing time: Thu 15 Sep 2022 02:49:27 +0000
ROA not before: Thu 15 Sep 2022 02:49:27 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18429
IP address blocks: 61.57.144.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2795 (0xaeb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Sep 15 02:49:27 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=4F10B7823F0483BC5D61BCFF5364E719045A7B1F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:3c:89:1c:7b:9e:0b:f6:0e:ff:d0:0d:19:b6:
4f:fc:04:87:3e:7f:f4:77:60:c7:ba:3c:74:81:b8:
0c:0f:e7:70:06:81:2d:53:a5:64:59:a9:c3:5d:0d:
7a:1c:70:21:77:3a:2f:70:eb:a9:16:0a:0e:b4:3a:
ac:ee:f8:a7:af:94:70:ab:7e:52:32:8d:8a:a1:f2:
bd:e1:07:fc:b5:a5:2b:7d:64:8e:71:0d:66:39:5d:
f7:c0:19:41:e3:7a:02:61:74:e6:91:ed:30:81:32:
e9:50:7d:b9:69:6f:ae:d4:b0:ca:d9:99:43:f1:f9:
3a:5c:41:d9:69:ca:ac:91:35:60:72:97:d1:21:0e:
5a:27:3f:4f:a0:7d:d5:17:04:b9:d0:cf:49:7a:e5:
be:61:db:14:d7:bd:8b:05:09:bd:f3:3b:57:46:4e:
fb:2d:6c:cf:b5:a8:c6:74:21:6c:dc:59:c8:fb:b7:
82:e2:8b:1f:24:20:90:4c:52:ed:d9:ae:a0:48:af:
5a:32:ff:4a:fe:ca:5b:f6:f2:5a:18:c7:4e:70:aa:
f2:ed:8b:10:de:9f:16:ec:f9:fe:d8:f1:df:d5:20:
0f:f3:dc:33:9b:cb:dc:ff:08:76:cb:95:5c:c0:79:
4e:bf:63:d2:e2:4e:8a:70:88:ed:6d:b3:ad:31:63:
4e:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:10:B7:82:3F:04:83:BC:5D:61:BC:FF:53:64:E7:19:04:5A:7B:1F
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/TxC3gj8Eg7xdYbz_U2TnGQRaex8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.57.144.0/21
Signature Algorithm: sha256WithRSAEncryption
59:c3:2e:23:b3:a5:c6:29:ef:1c:f5:f8:0f:7a:24:cd:45:f5:
7f:97:86:6b:25:8d:79:dc:ba:6c:6a:e9:24:59:59:4a:0f:02:
a0:e4:aa:20:4e:33:81:c2:9f:5d:04:43:f8:e8:e6:9b:e6:d7:
ea:c8:96:b3:d2:03:15:91:5c:dd:9a:36:38:0b:f5:51:51:02:
df:1f:3b:ba:fb:d6:37:f1:9b:27:0d:96:3e:d0:f2:62:c2:05:
c8:66:4f:77:2f:df:41:05:a2:95:5d:99:0b:9b:9e:7c:9c:bb:
31:ac:24:e6:2a:8b:f9:ff:a9:05:33:65:b0:0b:75:73:e7:d9:
f7:c5:08:94:9b:a9:c0:dd:bc:fa:94:7d:ad:09:de:b0:ca:9d:
6c:f6:e6:9d:ee:18:e0:89:e0:cb:57:1f:21:56:26:84:d6:6f:
bc:69:a9:ea:c3:d1:b1:18:d1:d7:57:57:09:9e:04:24:58:26:
02:04:e7:56:29:0c:8c:67:e2:29:f6:7e:7d:76:6d:c5:78:81:
96:d0:ce:7b:b4:af:cb:fd:3f:29:a2:11:77:a0:43:c7:3d:2a:
d3:4c:e1:a7:0a:77:85:c2:18:e0:e1:0a:4e:a7:4f:cb:7a:78:
1b:95:cd:98:0f:b6:dc:18:be:30:4d:81:56:c7:9c:28:5d:2d:
06:19:b0:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org