Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/cIODRmyUtWScvPaO7NuaK_v9vOg.roa
File: cIODRmyUtWScvPaO7NuaK_v9vOg.roa (raw, json)
Hash identifier: L20VhzgxXzOELTOWCgHa/ivzbQGI6sg3Mimbz6fMOYI=
Subject key identifier: 70:83:83:46:6C:94:B5:64:9C:BC:F6:8E:EC:DB:9A:2B:FB:FD:BC:E8
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 09DF
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/cIODRmyUtWScvPaO7NuaK_v9vOg.roa
Signing time: Wed 29 Sep 2021 02:52:05 +0000
ROA not before: Wed 29 Sep 2021 02:52:05 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18429
IP address blocks: 123.50.56.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2527 (0x9df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Sep 29 02:52:05 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=708383466C94B5649CBCF68EECDB9A2BFBFDBCE8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c9:9b:96:19:d1:c6:f1:2c:4f:66:5c:94:19:
2f:af:fc:fe:cc:f0:d5:97:c9:bd:4b:21:8f:2b:cd:
7c:de:be:83:a7:b3:c2:7c:0f:32:f7:8b:c7:01:6f:
1d:4b:30:c2:dc:dc:69:ff:40:db:dc:22:ce:c2:3e:
f2:ac:9f:e8:3d:da:ae:f0:0f:49:d0:85:ef:97:31:
46:fb:0e:50:87:23:2f:84:0d:c8:2a:39:96:cd:ed:
2b:77:94:d1:b4:1e:1c:ef:89:c1:40:b6:c0:53:22:
7e:69:86:81:8d:8d:cf:fb:c3:8e:7c:ab:cf:b8:05:
69:8f:f9:91:11:de:5e:6b:72:f5:c8:9c:a2:06:f4:
1a:8b:a4:8a:9a:35:2d:e7:4a:66:97:ec:b4:d6:ce:
e0:e7:ff:de:41:86:39:86:34:57:30:c7:83:a6:ae:
8b:eb:c2:47:ed:f9:de:0a:f2:5d:12:dd:c4:84:c0:
97:1f:99:95:d3:f1:8f:21:43:1a:27:10:4a:50:84:
fc:3e:14:da:18:2b:a9:9d:a9:3c:be:bc:35:f4:ee:
19:18:0e:33:83:ae:7b:2f:08:bd:60:3c:0c:14:07:
02:1e:4d:ab:03:92:12:13:12:c2:1a:2d:39:3d:16:
a0:15:56:74:d0:a7:34:3c:7c:e8:ab:9c:59:e9:ed:
5a:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:83:83:46:6C:94:B5:64:9C:BC:F6:8E:EC:DB:9A:2B:FB:FD:BC:E8
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/cIODRmyUtWScvPaO7NuaK_v9vOg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.50.56.0/21
Signature Algorithm: sha256WithRSAEncryption
95:98:af:f2:a0:bf:c8:6a:d9:f0:2b:b7:52:ec:15:69:7a:f5:
4f:d5:bf:0b:c8:b9:ee:b1:10:b2:8b:f0:44:46:e2:84:8a:60:
9c:58:e5:b0:e2:e3:dc:92:dd:10:8d:d0:97:e7:4d:d7:91:58:
92:98:ad:4f:55:95:71:6f:7c:ea:01:dd:be:5f:ab:72:ed:0d:
3d:2a:a7:ef:ca:56:a1:2a:bf:25:cb:4c:4d:62:e5:b4:16:f5:
d7:e4:0c:7a:11:ea:bc:5e:0a:bc:75:3c:8c:1d:74:ae:32:79:
ca:ee:45:50:db:ef:2d:1c:72:f8:18:db:42:b0:eb:88:9b:2a:
62:88:dd:af:2a:81:e1:55:1d:ab:d2:b4:7e:6f:9b:5c:6a:f5:
f7:74:27:cb:73:13:20:61:af:ca:9c:12:24:fd:6f:3c:16:76:
9c:93:1f:1c:eb:a6:59:ab:bb:30:f3:b0:4c:ab:d8:9a:ec:c6:
13:9b:04:f2:4b:06:32:d3:1e:ee:80:20:ca:73:ad:ad:35:4d:
94:ab:31:0a:d4:b8:49:82:cc:47:6c:db:47:e9:7b:d5:42:ef:
fd:27:81:47:ae:0b:b9:5e:6d:a3:5f:bf:08:53:96:60:41:3b:
fe:cb:20:03:1b:bd:e9:8a:f9:9e:fd:83:51:3a:3c:e9:a7:52:
12:2a:5a:03
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCd8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUQx
RTNGM0M4QkE4OURDMTMxMDQxMDM0NUY1MEMxMDA3NjE4MTI2MTAeFw0yMTA5Mjkw
MjUyMDVaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDcwODM4MzQ2NkM5NEI1
NjQ5Q0JDRjY4RUVDREI5QTJCRkJGREJDRTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC3yZuWGdHG8SxPZlyUGS+v/P7M8NWXyb1LIY8rzXzevoOns8J8
DzL3i8cBbx1LMMLc3Gn/QNvcIs7CPvKsn+g92q7wD0nQhe+XMUb7DlCHIy+EDcgq
OZbN7St3lNG0HhzvicFAtsBTIn5phoGNjc/7w458q8+4BWmP+ZER3l5rcvXInKIG
9BqLpIqaNS3nSmaX7LTWzuDn/95BhjmGNFcwx4Omrovrwkft+d4K8l0S3cSEwJcf
mZXT8Y8hQxonEEpQhPw+FNoYK6mdqTy+vDX07hkYDjODrnsvCL1gPAwUBwIeTasD
khITEsIaLTk9FqAVVnTQpzQ8fOirnFnp7Vr5AgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUcIODRmyUtWScvPaO7NuaK/v9vOgwHwYDVR0jBBgwFoAUXR4/PIuoncExBBA0
X1DBAHYYEmEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0dORVQv
WFI0X1BJdW9uY0V4QkJBMFgxREJBSFlZRW1FLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9YUjRfUEl1b25jRXhCQkEwWDFEQkFIWVlFbUUuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DR05FVC9jSU9EUm15VXRXU2N2UGFPN051
YUtfdjl2T2cucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDezI4
MA0GCSqGSIb3DQEBCwUAA4IBAQCVmK/yoL/IatnwK7dS7BVpevVP1b8LyLnusRCy
i/BERuKEimCcWOWw4uPckt0QjdCX503XkViSmK1PVZVxb3zqAd2+X6ty7Q09Kqfv
ylahKr8ly0xNYuW0FvXX5Ax6Eeq8Xgq8dTyMHXSuMnnK7kVQ2+8tHHL4GNtCsOuI
mypiiN2vKoHhVR2r0rR+b5tcavX3dCfLcxMgYa/KnBIk/W88Fnackx8c66ZZq7sw
87BMq9ia7MYTmwTySwYy0x7ugCDKc62tNU2UqzEK1LhJgsxHbNtH6XvVQu/9J4FH
rgu5Xm2jX78IU5ZgQTv+yyADG73pivme/YNROjzpp1ISKloD
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org