Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/ZHtHh5nPcayexj3dJCsEEerPkOc.roa
File: ZHtHh5nPcayexj3dJCsEEerPkOc.roa (raw, json)
Hash identifier: T6FWLXmZWkOi7BJbKyduwJk+njVDroUXBJwgO4qh2M4=
Subject key identifier: 64:7B:47:87:99:CF:71:AC:9E:C6:3D:DD:24:2B:04:11:EA:CF:90:E7
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0AEB
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/ZHtHh5nPcayexj3dJCsEEerPkOc.roa
Signing time: Thu 15 Sep 2022 02:49:31 +0000
ROA not before: Thu 15 Sep 2022 02:49:31 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18429
IP address blocks: 123.50.48.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2795 (0xaeb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Sep 15 02:49:31 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=647B478799CF71AC9EC63DDD242B0411EACF90E7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:20:81:11:79:b6:c5:15:68:a5:2f:2d:11:b0:
fb:6c:c3:0b:49:10:15:c8:76:74:e9:82:f3:9d:ea:
87:9b:34:80:49:0d:00:2e:8a:9e:48:0b:7b:07:b4:
a2:c9:95:85:cc:2a:c4:a1:72:62:61:c4:8e:93:9b:
43:96:38:b5:13:a7:0e:b7:ed:ac:1f:73:34:e2:f3:
25:fe:84:9b:c1:87:f7:10:95:95:6d:10:14:41:32:
c8:87:09:48:d2:d4:86:b3:eb:a9:39:18:39:01:4e:
63:a8:04:a4:5f:b9:64:99:ba:89:ae:cb:21:70:fa:
db:7a:69:cc:36:cb:f7:d8:5c:97:b8:09:f8:70:67:
56:ea:4b:d7:18:bc:5b:e2:ac:f2:08:d8:12:f9:a5:
8d:af:66:27:e5:56:d4:8d:dd:2f:4b:2b:dd:2b:0f:
cc:6c:05:fd:9b:5e:90:06:23:a5:e5:73:3d:23:2c:
69:bb:06:aa:a0:49:93:be:ef:e2:2b:5b:f3:ce:83:
1e:81:38:08:70:f1:4b:57:cc:e5:ca:68:98:6f:e3:
ad:5e:e8:23:c3:ad:a2:bc:82:19:07:06:ca:23:5f:
8f:41:ab:a0:5a:5b:5c:08:f8:65:3f:11:3c:a8:08:
7a:0a:04:be:02:56:e1:06:e8:7c:92:90:c9:c1:b7:
f7:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:7B:47:87:99:CF:71:AC:9E:C6:3D:DD:24:2B:04:11:EA:CF:90:E7
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/ZHtHh5nPcayexj3dJCsEEerPkOc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.50.48.0/21
Signature Algorithm: sha256WithRSAEncryption
96:3a:46:5a:5b:91:6a:d0:b7:99:43:e5:85:7a:52:45:27:bc:
68:98:1c:d8:33:55:80:c3:f2:d1:ac:c7:ea:69:59:df:6b:27:
0c:1d:18:67:e0:d5:f9:4a:5d:2d:26:e3:ee:97:17:cb:eb:5a:
10:d1:fa:95:35:20:ad:d3:07:0c:40:c8:c6:bb:c4:a8:e9:15:
69:d1:63:5c:2a:42:20:39:f2:ef:61:ec:98:a4:69:6d:a4:ac:
b4:8f:74:02:3c:9a:c5:78:92:84:f2:ba:ad:f5:89:ea:14:72:
d4:ea:3a:50:a2:dd:60:c0:cb:2b:40:e4:21:42:be:3f:80:87:
7f:39:b8:29:a2:0a:4c:5b:83:18:10:8a:1e:28:ff:42:be:ab:
5b:68:44:7a:9d:83:43:bf:d2:8e:58:8c:99:6d:c6:f3:0c:43:
04:45:79:78:b4:54:1d:c6:4c:3e:e0:5d:2e:6c:a3:a5:ec:cc:
4c:01:18:27:3d:eb:fd:61:0a:63:da:f3:d1:30:ce:db:42:54:
c4:d6:9e:c8:4e:6d:84:0e:b8:1d:4d:53:0b:36:63:53:2e:d2:
81:fe:d7:62:f7:30:17:9a:fb:63:0f:80:eb:83:dd:61:45:b6:
45:74:7e:98:fd:ab:68:23:f0:16:8e:bc:98:67:39:43:05:62:
1a:9e:04:da
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCuswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUQx
RTNGM0M4QkE4OURDMTMxMDQxMDM0NUY1MEMxMDA3NjE4MTI2MTAeFw0yMjA5MTUw
MjQ5MzFaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDY0N0I0Nzg3OTlDRjcx
QUM5RUM2M0RERDI0MkIwNDExRUFDRjkwRTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCuIIERebbFFWilLy0RsPtswwtJEBXIdnTpgvOd6oebNIBJDQAu
ip5IC3sHtKLJlYXMKsShcmJhxI6Tm0OWOLUTpw637awfczTi8yX+hJvBh/cQlZVt
EBRBMsiHCUjS1Iaz66k5GDkBTmOoBKRfuWSZuomuyyFw+tt6acw2y/fYXJe4Cfhw
Z1bqS9cYvFvirPII2BL5pY2vZiflVtSN3S9LK90rD8xsBf2bXpAGI6Xlcz0jLGm7
BqqgSZO+7+IrW/POgx6BOAhw8UtXzOXKaJhv461e6CPDraK8ghkHBsojX49Bq6Ba
W1wI+GU/ETyoCHoKBL4CVuEG6HySkMnBt/dJAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUZHtHh5nPcayexj3dJCsEEerPkOcwHwYDVR0jBBgwFoAUXR4/PIuoncExBBA0
X1DBAHYYEmEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0dORVQv
WFI0X1BJdW9uY0V4QkJBMFgxREJBSFlZRW1FLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9YUjRfUEl1b25jRXhCQkEwWDFEQkFIWVlFbUUuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DR05FVC9aSHRIaDVuUGNheWV4ajNkSkNz
RUVlclBrT2Mucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDezIw
MA0GCSqGSIb3DQEBCwUAA4IBAQCWOkZaW5Fq0LeZQ+WFelJFJ7xomBzYM1WAw/LR
rMfqaVnfaycMHRhn4NX5Sl0tJuPulxfL61oQ0fqVNSCt0wcMQMjGu8So6RVp0WNc
KkIgOfLvYeyYpGltpKy0j3QCPJrFeJKE8rqt9YnqFHLU6jpQot1gwMsrQOQhQr4/
gId/ObgpogpMW4MYEIoeKP9CvqtbaER6nYNDv9KOWIyZbcbzDEMERXl4tFQdxkw+
4F0ubKOl7MxMARgnPev9YQpj2vPRMM7bQlTE1p7ITm2EDrgdTVMLNmNTLtKB/tdi
9zAXmvtjD4Drg91hRbZFdH6Y/atoI/AWjryYZzlDBWIangTa
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org