Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/V86DfuXvXnFavSL6xr_xyTsc6GU.roa
File: V86DfuXvXnFavSL6xr_xyTsc6GU.roa (raw, json)
Hash identifier: c/zf9F7x8vPIbgkUNND3SRtWtsixeTJJHjIbPIkKIPM=
Subject key identifier: 57:CE:83:7E:E5:EF:5E:71:5A:BD:22:FA:C6:BF:F1:C9:3B:1C:E8:65
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0B48
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/V86DfuXvXnFavSL6xr_xyTsc6GU.roa
Signing time: Thu 15 Dec 2022 02:56:55 +0000
ROA not before: Thu 15 Dec 2022 02:56:55 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18429
IP address blocks: 61.57.156.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2888 (0xb48)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Dec 15 02:56:55 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=57CE837EE5EF5E715ABD22FAC6BFF1C93B1CE865
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:e1:a8:43:eb:6a:b3:d1:47:43:30:e1:bb:98:
3a:68:9c:f3:5d:b3:ab:ef:7d:98:f9:eb:b1:41:a7:
f1:89:61:ed:3e:04:ba:fd:5e:01:e9:48:74:29:4c:
68:4a:bf:30:34:75:b4:a0:eb:5c:e0:af:07:b2:0a:
40:12:ca:cd:e6:7b:d2:e5:b6:38:8b:8f:e0:c0:01:
63:ae:e9:18:7b:24:62:10:51:37:9e:e4:32:d7:3a:
65:eb:bb:9c:12:7e:7b:00:e3:d7:99:20:fd:6c:21:
28:47:de:b9:dd:86:5c:cd:29:6c:1b:a8:04:d0:e1:
f0:dc:7d:cf:45:19:8e:88:d7:4f:dc:e3:4b:bd:5a:
9c:b1:cc:d3:17:8c:fb:7d:b5:6c:73:61:61:98:45:
87:c8:9b:5b:72:5d:70:fb:b1:a8:b3:5e:03:e1:07:
e9:c2:ab:b6:f0:b5:c8:ae:da:ed:94:e5:f7:03:a6:
e9:e6:bc:37:85:52:cd:db:f2:9e:04:f1:f8:cf:ef:
2c:73:80:44:89:35:cd:82:07:12:a8:52:02:67:52:
7f:ff:fa:bb:5d:91:44:b3:ca:c7:a7:80:60:f7:ba:
da:12:db:c5:a2:85:d5:9e:61:20:4c:1f:08:ba:ec:
41:35:da:f9:c0:a5:d2:94:9c:65:0d:d3:fd:0c:15:
62:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:CE:83:7E:E5:EF:5E:71:5A:BD:22:FA:C6:BF:F1:C9:3B:1C:E8:65
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/V86DfuXvXnFavSL6xr_xyTsc6GU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.57.156.0/22
Signature Algorithm: sha256WithRSAEncryption
9c:f1:67:f1:62:bb:5c:1e:81:ae:c8:e2:c7:5a:b1:0d:5c:11:
84:74:9b:b5:98:45:87:88:49:da:57:98:1d:c6:78:48:5b:02:
25:17:4d:8e:3f:29:20:41:e9:19:f4:41:2f:ce:0d:b6:d1:a7:
f7:c1:61:f5:c2:e4:8f:4d:39:c7:0e:cb:d4:cc:b3:ff:dd:e8:
79:04:ab:be:a5:9c:4b:b1:90:ce:1c:df:9f:09:e4:99:7b:23:
f4:e3:5c:d1:62:d8:73:37:20:2e:24:95:90:5a:6b:2d:ab:e8:
eb:6b:e0:46:4f:ae:ce:f4:e3:9d:6d:f4:1e:a9:a1:4f:c9:85:
3a:a2:70:38:fe:3b:9a:bf:d7:13:a2:c6:dd:85:6b:44:0f:4c:
be:71:9a:a8:b7:c6:76:f3:b4:97:6e:13:e2:33:88:20:e6:fb:
33:f6:bf:17:e6:5f:66:69:31:89:70:4b:c4:04:fa:8d:c7:8a:
29:2f:58:af:c2:6d:28:22:13:5c:ed:df:d3:61:0e:3f:59:a3:
69:a4:25:ab:0a:6d:33:1d:8f:26:62:eb:ab:ba:bf:0a:bd:b8:
d2:dc:4e:28:42:05:23:ec:78:83:fc:50:58:04:2e:f6:00:d4:
39:b9:fc:e7:c6:d2:c3:93:27:98:0a:fe:c9:20:38:01:7d:a3:
23:a7:04:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:02 2024 by rpki-client on console-ams.rpki-client.org