Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/dkiAnrsPlJaXd3a7yzIpZuENHGA.roa
File: dkiAnrsPlJaXd3a7yzIpZuENHGA.roa (raw, json)
Hash identifier: JvW3a6DPlyTwkI049YD7dnhkHuHTxScoQsjmtVs7oGs=
Subject key identifier: 76:48:80:9E:BB:0F:94:96:97:77:76:BB:CB:32:29:66:E1:0D:1C:60
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0B5C
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/dkiAnrsPlJaXd3a7yzIpZuENHGA.roa
Signing time: Thu 15 Dec 2022 02:57:02 +0000
ROA not before: Thu 15 Dec 2022 02:57:02 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18429
IP address blocks: 123.50.56.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2908 (0xb5c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Dec 15 02:57:02 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=7648809EBB0F9496977776BBCB322966E10D1C60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:c7:93:bd:c8:6c:84:1d:63:78:e5:27:54:da:
ee:1e:46:5e:2b:0f:ea:13:7c:c5:0d:53:c9:11:dc:
35:73:c8:90:76:ca:a5:4b:44:61:7b:61:51:73:57:
01:41:61:72:b3:13:49:78:27:85:ff:eb:f6:1e:85:
bb:3d:3b:ce:5e:17:95:0a:66:59:f6:78:b6:08:c5:
ef:85:bb:c4:33:75:f4:4a:88:42:b7:d2:ba:b5:c9:
1a:b3:c9:5b:24:ad:2d:1d:cb:6f:69:c1:28:da:e0:
1d:50:24:be:e9:0f:86:72:bb:32:55:e4:20:a5:81:
32:9f:06:e4:7b:62:48:33:18:f2:df:16:2e:c3:bc:
22:5b:5a:16:2c:70:6c:00:f4:75:c5:0c:ee:55:ab:
59:b0:1e:ca:0f:3d:fa:b0:19:7b:d3:8a:76:92:51:
20:b8:2e:ea:5f:b1:16:3e:49:c7:60:6e:91:3f:c5:
ba:83:b0:4d:eb:5a:8c:20:d1:27:ae:bd:21:47:9b:
86:69:ff:49:62:48:a2:35:c9:9a:4f:2c:9b:d4:58:
e3:b7:08:91:f8:47:e5:4f:e5:b3:ba:ed:bb:22:24:
1c:79:70:54:ba:6f:a1:56:eb:02:dd:a1:5a:33:84:
e0:18:9f:6a:0e:c1:99:c8:2c:ab:48:f3:3f:36:27:
77:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:48:80:9E:BB:0F:94:96:97:77:76:BB:CB:32:29:66:E1:0D:1C:60
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/dkiAnrsPlJaXd3a7yzIpZuENHGA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.50.56.0/21
Signature Algorithm: sha256WithRSAEncryption
a0:8a:fa:c9:16:e5:08:b6:f5:68:d5:4d:46:4b:2b:e5:92:94:
25:37:c1:34:1c:53:80:37:e3:02:5b:ee:f5:41:ef:3e:93:ec:
69:13:70:61:38:c1:ff:68:f2:72:31:a6:76:2a:8b:80:2c:82:
c7:77:3d:7c:98:ce:5f:6b:be:67:89:9f:f6:aa:2d:28:83:d9:
f0:ea:e1:4d:e0:93:97:9a:3e:ad:84:c6:d9:c8:52:3c:06:45:
59:bb:a1:db:9c:53:53:f0:5e:f5:f2:aa:e2:0a:5c:1b:28:e2:
e4:e6:fe:fe:3e:9b:bb:06:cb:46:27:7b:77:fb:30:1f:98:6e:
b9:28:48:17:3b:9a:f7:db:be:9d:bc:46:96:e6:30:6f:a6:99:
c9:13:14:eb:70:a6:3b:f7:66:1a:15:f9:6d:c2:c1:6e:2d:02:
d3:51:cc:71:b0:fc:73:58:12:c3:1e:71:10:8a:c7:37:6c:48:
4e:fc:c6:54:f1:55:72:ed:2e:34:a8:a4:7d:91:1d:96:de:48:
01:81:f4:1a:da:96:34:b3:df:59:98:b5:7a:09:18:c5:70:c6:
f3:ca:b8:65:14:df:fe:95:37:c2:cd:5d:2b:fa:05:90:db:53:
89:61:02:1c:a8:62:dc:d0:1d:13:b4:55:8d:74:72:8f:c8:90:
08:1a:a8:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org