Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/WESfLLCxAmVI_6mCNmAz9ZZfIpE.roa
File: WESfLLCxAmVI_6mCNmAz9ZZfIpE.roa (raw, json)
Hash identifier: 0Vihl6VJz4sfo3hVlWNdG67sAf241B/HrtHLnpn+7jU=
Subject key identifier: 58:44:9F:2C:B0:B1:02:65:48:FF:A9:82:36:60:33:F5:96:5F:22:91
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0AC7
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/WESfLLCxAmVI_6mCNmAz9ZZfIpE.roa
Signing time: Wed 27 Jul 2022 02:28:01 +0000
ROA not before: Wed 27 Jul 2022 02:28:01 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18429
IP address blocks: 61.57.136.0/21 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2759 (0xac7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Jul 27 02:28:01 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=58449F2CB0B1026548FFA982366033F5965F2291
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:e8:b2:28:51:92:f4:e0:e4:51:ac:5d:fa:14:
c5:13:15:3c:69:2c:7c:cd:53:fd:24:86:6b:fd:13:
86:cf:f4:cd:25:64:83:3a:f9:70:f3:fe:dd:86:80:
d4:54:28:ce:76:56:64:d3:e5:53:09:82:c9:8b:3f:
f7:4c:9e:34:bc:3a:75:82:7f:13:e5:0f:f6:7e:d2:
f5:ef:29:d1:5a:e4:1c:7c:6e:b3:27:5f:74:5e:6a:
d6:ef:a3:93:c9:7a:b5:2b:9b:70:f5:d3:1f:ae:70:
8f:05:c2:c1:b8:da:9e:ec:89:f6:a1:ce:34:79:ac:
fe:67:3e:00:b5:d9:eb:c5:4d:d0:5c:93:74:c3:6a:
12:97:56:7c:8d:63:bd:17:33:3d:7f:8a:1f:55:04:
d2:00:c3:12:97:68:3f:75:84:6f:f5:0d:1d:9a:3f:
10:8f:99:bd:11:3d:0d:fe:bf:44:99:03:d4:43:08:
54:3b:98:56:c4:b8:4b:4b:6e:ed:69:7c:f3:02:d5:
92:e4:6b:1a:63:ce:d4:c4:a2:30:d8:2f:f0:9a:31:
22:f5:fa:2b:7a:39:16:76:67:ad:94:00:61:13:e0:
44:01:7f:78:df:96:1a:68:36:24:59:c6:11:02:c5:
58:77:55:03:fe:8b:ed:2e:38:7b:c8:d4:12:f6:93:
27:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:44:9F:2C:B0:B1:02:65:48:FF:A9:82:36:60:33:F5:96:5F:22:91
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/WESfLLCxAmVI_6mCNmAz9ZZfIpE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.57.136.0/21
Signature Algorithm: sha256WithRSAEncryption
0c:38:de:87:0c:26:7e:3e:97:c7:51:14:74:6a:1e:b8:c0:fc:
f6:90:85:7e:92:2d:a7:e7:48:cc:94:66:7f:ed:d1:d6:e2:04:
a7:ed:ad:df:2f:9f:4d:ab:06:3e:6f:3f:05:54:ed:89:8c:b4:
29:18:13:31:45:bd:81:31:86:f1:b0:7c:1a:4e:82:59:6d:71:
50:92:8b:d6:25:66:fa:7a:92:f4:b6:6a:db:4e:56:03:dd:66:
05:48:8e:76:7e:85:e9:f1:3c:f7:26:8e:00:e1:9f:97:8a:a4:
c4:69:a0:f0:8f:40:82:e6:89:a2:fa:aa:74:b5:77:98:1d:7e:
1a:7a:ba:57:73:39:5c:4d:96:02:af:ce:68:ac:c2:27:09:5b:
f4:2e:da:b8:c0:eb:e4:98:58:7c:f3:7a:e4:b7:40:b9:2a:2c:
86:42:d0:6a:93:ee:8b:e9:99:6e:0e:ab:89:aa:ed:31:75:75:
ad:08:56:72:ae:aa:b3:da:01:5a:e6:c4:43:17:3f:de:42:b3:
55:e1:fc:f3:67:77:04:c0:2c:02:cf:67:56:a7:a9:21:24:f5:
5f:18:d3:42:fc:c7:d2:22:27:d1:32:cd:b9:8d:de:0e:61:76:
f6:00:80:17:e9:9c:b1:98:eb:3b:28:7d:42:68:80:16:03:a3:
01:e1:e6:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:57 2023 by rpki-client on console-fra.rpki-client.org