Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/dS_tqJmFxo6FizWPGHcgl6jinTA.roa
File: dS_tqJmFxo6FizWPGHcgl6jinTA.roa (raw, json)
Hash identifier: j26EWUUPSJUbrFdiheG7c7+qVekKh0FG7u7dF8dTpqo=
Subject key identifier: 75:2F:ED:A8:99:85:C6:8E:85:8B:35:8F:18:77:20:97:A8:E2:9D:30
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0791
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/dS_tqJmFxo6FizWPGHcgl6jinTA.roa
Signing time: Tue 29 Sep 2020 09:59:28 +0000
ROA not before: Tue 29 Sep 2020 09:59:28 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18429
IP address blocks: 61.57.152.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1937 (0x791)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Sep 29 09:59:28 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=752FEDA89985C68E858B358F18772097A8E29D30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:9b:ac:10:f8:7f:c2:98:ce:14:ae:5e:73:57:
94:ee:b3:91:07:e5:80:81:19:5d:d5:0f:e9:ba:bf:
33:29:23:d5:2b:46:95:7c:78:f1:b5:99:e9:19:6f:
1a:ff:67:68:ab:56:62:f1:67:67:da:6b:7c:29:83:
c6:d5:b5:da:6e:c1:a8:97:45:4d:57:22:58:34:13:
fc:a5:02:73:20:53:7e:0b:17:af:f4:63:0d:4a:0a:
2f:d6:45:d4:c1:e7:b1:cb:fd:d9:ac:be:bb:28:7a:
dd:c6:c0:16:45:87:50:79:ad:54:8a:5e:4f:1f:96:
66:32:b7:3a:b0:71:e7:34:a7:83:88:a6:31:b8:96:
65:16:52:a5:8b:c4:21:e1:41:bc:dd:41:d2:82:ab:
c3:82:fa:23:03:87:b1:35:cc:0b:7d:dc:03:aa:e4:
7f:5a:01:15:a7:ea:ec:af:dc:65:5f:85:5f:8e:65:
db:61:34:60:08:c3:f9:11:9b:7c:c1:ab:a0:e5:22:
55:69:80:d4:42:c4:f2:19:c0:81:4e:a6:12:b5:9e:
64:11:b3:ea:b2:fa:bb:a5:03:3c:41:05:20:e2:92:
34:95:8a:e1:90:a6:af:8a:13:67:ca:34:de:80:89:
86:85:55:da:2c:32:e9:92:4b:01:73:2b:8f:28:b9:
27:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:2F:ED:A8:99:85:C6:8E:85:8B:35:8F:18:77:20:97:A8:E2:9D:30
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/dS_tqJmFxo6FizWPGHcgl6jinTA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.57.152.0/21
Signature Algorithm: sha256WithRSAEncryption
0b:83:12:d1:e7:7e:bb:b1:49:27:8c:37:ff:51:eb:c2:91:dc:
92:81:b8:86:3b:f1:65:e2:d0:d0:a1:d9:25:6a:70:10:8e:c2:
0f:c8:f8:fa:35:90:ab:1a:ec:be:0c:bb:77:0c:f0:25:e1:ae:
ef:e9:ff:de:02:76:1c:0d:cc:cf:6e:fa:f9:6d:36:74:4d:b0:
99:60:ac:77:b8:6e:7f:77:78:48:a7:d9:48:fa:f0:9d:df:f9:
11:d4:29:2d:8b:48:8d:17:c2:81:c4:ff:30:e9:5b:fa:7c:5e:
b0:5f:88:af:14:47:c7:af:be:74:63:53:90:82:e3:12:49:6b:
1a:f1:3a:30:2f:14:a3:79:26:90:aa:0a:79:cd:74:73:81:8c:
72:5d:1a:41:bc:6f:94:0f:3b:9c:a4:92:34:a5:88:3d:53:a9:
ea:d1:4d:70:8a:3a:e9:c1:d7:e2:24:dd:84:74:f9:e7:51:8d:
f0:6f:ea:49:88:33:d2:20:bd:89:1a:2d:2e:fc:03:4a:17:5f:
f8:c7:a7:1c:7e:57:01:1b:17:2c:c3:c4:45:52:cb:ff:ea:9c:
99:5d:cc:0d:ee:c4:64:83:bf:2e:95:99:8d:67:34:47:b5:2c:
da:1c:e4:f0:27:28:9c:29:b9:d4:58:06:a1:0b:a4:68:2a:22:
27:3b:b4:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org