Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/beLUDjxNbLqQEzak6fqDFqWS7OY.roa
File: beLUDjxNbLqQEzak6fqDFqWS7OY.roa (raw, json)
Hash identifier: NXX1ESwjbuhA0Js2n+VOdJiLhBDkkvs+GRETwCG5u2U=
Subject key identifier: 6D:E2:D4:0E:3C:4D:6C:BA:90:13:36:A4:E9:FA:83:16:A5:92:EC:E6
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 09E5
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/beLUDjxNbLqQEzak6fqDFqWS7OY.roa
Signing time: Wed 29 Sep 2021 02:52:07 +0000
ROA not before: Wed 29 Sep 2021 02:52:07 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18429
IP address blocks: 61.57.144.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2533 (0x9e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Sep 29 02:52:07 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=6DE2D40E3C4D6CBA901336A4E9FA8316A592ECE6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:d1:fb:83:fc:96:ab:34:56:84:82:21:3f:26:
38:62:64:ec:1f:74:63:c8:89:fe:96:ae:6a:d2:ef:
09:dc:c6:2a:3b:31:09:2b:6b:c6:0a:06:88:89:72:
99:66:71:4a:70:29:1e:56:14:60:37:df:4e:37:04:
15:18:ef:8f:94:00:2a:05:d0:b3:bf:50:7c:cf:da:
c0:a7:77:3c:91:62:35:9d:13:3a:ba:ce:f6:de:37:
60:d9:c0:64:6e:07:d8:c1:c2:e3:f5:d6:b2:30:da:
aa:10:85:0b:5b:8b:e2:a4:75:84:0e:b6:6d:3f:83:
05:29:c0:e8:29:9c:fa:9c:8c:33:8b:b1:98:c8:c7:
1b:1f:65:70:27:0a:dc:cb:af:3d:b7:ab:8f:e8:5e:
83:31:48:ef:8d:40:2a:0d:50:d8:79:db:38:08:e8:
fb:c5:af:1c:c6:00:ea:46:27:77:8a:5b:a9:d8:7a:
a9:22:33:0a:a5:2f:1a:70:a8:7e:5d:4b:56:8c:22:
d0:ce:0c:26:ed:46:e1:49:1c:af:b7:84:be:2f:92:
c1:a7:7a:98:4c:6f:41:a9:a2:a0:72:3c:ba:16:5a:
78:f3:9e:7b:93:bb:e0:4a:a0:45:fa:80:ab:29:48:
39:f5:87:92:bb:a9:63:f3:4f:3b:85:fe:2d:29:e3:
9b:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:E2:D4:0E:3C:4D:6C:BA:90:13:36:A4:E9:FA:83:16:A5:92:EC:E6
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/beLUDjxNbLqQEzak6fqDFqWS7OY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.57.144.0/22
Signature Algorithm: sha256WithRSAEncryption
42:fd:e7:58:18:dd:bc:77:d4:43:da:b8:49:b2:4b:e8:73:b3:
b5:a9:b5:1e:13:c2:5d:49:77:1e:d9:8d:6b:20:46:64:14:c1:
c4:80:cc:65:9e:d6:99:eb:56:fd:e0:07:e9:78:af:c3:4f:80:
35:c6:3b:61:fb:87:0e:bf:e4:ab:e0:e9:a5:e5:f0:e2:1e:08:
63:67:7b:2d:1b:11:79:07:13:b2:f4:70:79:9a:c0:77:8c:ec:
a7:4a:83:77:7e:15:da:b9:c6:b8:40:33:37:ef:6c:1d:63:60:
d9:27:b0:41:4b:2d:63:17:da:8c:4f:8f:2c:4b:d1:c1:09:f2:
83:fc:06:58:f2:8c:51:2a:3b:76:a5:94:1f:99:77:76:d8:d7:
79:dc:6b:33:e0:66:fb:fb:db:38:ec:72:3a:6b:4d:22:94:6f:
d0:13:2c:ae:24:5b:48:79:5e:85:08:57:db:ca:4e:19:49:c3:
42:47:ff:4a:10:b5:64:8f:ec:53:d2:89:f2:c7:99:6e:a0:23:
0f:a3:d4:12:55:05:cc:bc:a1:da:7a:66:1f:5a:c5:66:fd:6d:
e6:e3:3c:36:93:95:d7:14:f4:83:c9:7e:09:7f:4d:7e:7c:62:
56:e4:1f:58:7f:db:5c:7e:b2:de:ea:a7:e9:c9:86:cc:23:ce:
12:da:27:f0
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCeUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUQx
RTNGM0M4QkE4OURDMTMxMDQxMDM0NUY1MEMxMDA3NjE4MTI2MTAeFw0yMTA5Mjkw
MjUyMDdaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDZERTJENDBFM0M0RDZD
QkE5MDEzMzZBNEU5RkE4MzE2QTU5MkVDRTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC50fuD/JarNFaEgiE/JjhiZOwfdGPIif6WrmrS7wncxio7MQkr
a8YKBoiJcplmcUpwKR5WFGA33043BBUY74+UACoF0LO/UHzP2sCndzyRYjWdEzq6
zvbeN2DZwGRuB9jBwuP11rIw2qoQhQtbi+KkdYQOtm0/gwUpwOgpnPqcjDOLsZjI
xxsfZXAnCtzLrz23q4/oXoMxSO+NQCoNUNh52zgI6PvFrxzGAOpGJ3eKW6nYeqki
MwqlLxpwqH5dS1aMItDODCbtRuFJHK+3hL4vksGnephMb0GpoqByPLoWWnjznnuT
u+BKoEX6gKspSDn1h5K7qWPzTzuF/i0p45sjAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUbeLUDjxNbLqQEzak6fqDFqWS7OYwHwYDVR0jBBgwFoAUXR4/PIuoncExBBA0
X1DBAHYYEmEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0dORVQv
WFI0X1BJdW9uY0V4QkJBMFgxREJBSFlZRW1FLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9YUjRfUEl1b25jRXhCQkEwWDFEQkFIWVlFbUUuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DR05FVC9iZUxVRGp4TmJMcVFFemFrNmZx
REZxV1M3T1kucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCPTmQ
MA0GCSqGSIb3DQEBCwUAA4IBAQBC/edYGN28d9RD2rhJskvoc7O1qbUeE8JdSXce
2Y1rIEZkFMHEgMxlntaZ61b94AfpeK/DT4A1xjth+4cOv+Sr4Oml5fDiHghjZ3st
GxF5BxOy9HB5msB3jOynSoN3fhXauca4QDM372wdY2DZJ7BBSy1jF9qMT48sS9HB
CfKD/AZY8oxRKjt2pZQfmXd22Nd53Gsz4Gb7+9s47HI6a00ilG/QEyyuJFtIeV6F
CFfbyk4ZScNCR/9KELVkj+xT0onyx5luoCMPo9QSVQXMvKHaemYfWsVm/W3m4zw2
k5XXFPSDyX4Jf01+fGJW5B9Yf9tcfrLe6qfpyYbMI84S2ifw
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:47 2023 by rpki-client on console-ams.rpki-client.org