Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/bIYBdHh27BpgwoIEu82ZOibJ2IQ.roa
File: bIYBdHh27BpgwoIEu82ZOibJ2IQ.roa (raw, json)
Hash identifier: 4DhPpQh/nciOfeO/MwSPoG5e2fTtsLSRASbOmq6zXCc=
Subject key identifier: 6C:86:01:74:78:76:EC:1A:60:C2:82:04:BB:CD:99:3A:26:C9:D8:84
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0925
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/bIYBdHh27BpgwoIEu82ZOibJ2IQ.roa
Signing time: Sun 07 Feb 2021 12:45:32 +0000
ROA not before: Sun 07 Feb 2021 12:45:32 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18429
IP address blocks: 124.155.184.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2341 (0x925)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Feb 7 12:45:32 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=6C8601747876EC1A60C28204BBCD993A26C9D884
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:39:d3:59:61:00:b3:e8:39:df:2f:30:5e:1e:
b0:1b:6b:e1:fd:37:0b:f1:9e:d8:1b:09:4c:05:2b:
b3:2b:2b:aa:30:d8:93:39:4d:96:3e:f8:0f:97:00:
9e:88:2a:2b:04:28:4c:dd:2d:5b:bf:2b:fb:32:52:
57:14:ce:50:f4:81:c9:92:52:7e:04:24:7c:61:b0:
41:ae:9e:03:bc:76:3f:0b:26:4c:75:c7:54:d5:58:
57:ab:29:29:bd:99:e1:29:22:6b:3a:07:bd:df:82:
67:d3:04:b9:88:95:90:e9:aa:9e:ef:ec:a1:ec:09:
a7:4c:7d:66:c7:61:60:f9:84:bd:80:b1:6d:3c:29:
8d:84:37:7a:20:34:f2:d7:49:ea:3f:c5:cb:53:81:
2d:6c:88:63:6f:6d:ea:9a:ba:a1:4d:04:bb:a5:13:
43:28:f7:47:41:b2:74:b2:57:6b:10:d3:4f:7d:b8:
ce:cb:e1:38:45:4c:1c:9a:90:4d:9b:bb:92:62:f9:
bc:7d:cf:b2:b4:75:d0:50:45:33:a0:93:60:7e:f9:
7e:0b:a4:2d:5f:0a:6a:59:9f:3d:89:12:0f:b9:21:
3e:0c:c2:98:76:bc:b6:bc:32:f0:6e:3f:f4:10:f3:
b0:55:10:7b:f7:27:17:9e:ad:d1:6d:72:3f:e8:87:
02:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:86:01:74:78:76:EC:1A:60:C2:82:04:BB:CD:99:3A:26:C9:D8:84
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/bIYBdHh27BpgwoIEu82ZOibJ2IQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.155.184.0/21
Signature Algorithm: sha256WithRSAEncryption
47:ba:51:61:2d:0f:33:f0:b8:9f:74:d0:65:da:46:17:72:08:
19:f4:08:6a:db:9d:d9:a9:b9:a6:6a:70:34:73:7c:65:9a:fa:
6b:40:7e:bb:7f:16:d0:4c:19:ee:d7:cc:e3:f0:8a:e4:14:06:
6b:6d:b2:31:8d:81:a1:25:d1:a1:fa:6d:65:60:e6:14:6c:a6:
a6:1f:b7:5d:e1:17:f3:b9:22:79:f4:6c:fc:57:bc:bd:d5:94:
19:f4:d1:ec:88:a0:5c:28:6a:d3:7a:e5:ef:2e:87:e6:5e:74:
88:87:59:a1:f7:e2:80:1e:9a:bc:d0:61:c6:0a:c2:ce:73:8d:
7b:56:fc:fe:09:1e:09:0f:42:31:c7:ef:5e:76:b4:03:e3:63:
f5:1f:f7:52:58:17:d9:24:be:fe:b5:08:d2:0d:16:25:7c:23:
5c:f3:4d:4b:e2:30:a7:0a:82:4b:8b:7b:22:5b:a4:13:ba:4a:
5f:70:a3:e1:d2:e5:66:2f:84:e5:0f:e4:60:e7:dd:e9:c6:fe:
07:09:86:9c:bd:ee:3c:ee:a6:c4:07:e9:a3:2b:57:44:59:68:
c2:67:bf:c0:ea:b3:12:c7:9d:3b:0b:99:c7:b4:63:fd:01:8b:
5a:75:04:81:76:3e:6b:6d:4e:b1:2e:44:80:5c:1b:05:50:19:
93:9b:86:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:57 2023 by rpki-client on console-fra.rpki-client.org