Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/eUOjPJi8P-dnzAyNrXaLJX8g658.roa
File: eUOjPJi8P-dnzAyNrXaLJX8g658.roa (raw, json)
Hash identifier: WMSPrcYtf5RLYnGywIrZY2ObybUkSXdzYtYhS0Osx8w=
Subject key identifier: 79:43:A3:3C:98:BC:3F:E7:67:CC:0C:8D:AD:76:8B:25:7F:20:EB:9F
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0B45
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/eUOjPJi8P-dnzAyNrXaLJX8g658.roa
Signing time: Thu 15 Dec 2022 02:56:55 +0000
ROA not before: Thu 15 Dec 2022 02:56:55 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18429
IP address blocks: 124.155.160.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2885 (0xb45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Dec 15 02:56:55 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=7943A33C98BC3FE767CC0C8DAD768B257F20EB9F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:36:70:b7:3e:7d:64:e7:a7:3f:b3:31:09:f6:
12:5a:69:e5:ab:ba:d1:f5:93:37:8f:a2:02:a2:eb:
3e:3d:44:cf:09:c3:2e:c9:6e:33:55:ae:de:26:25:
40:c2:d9:d7:bb:9b:25:dc:1f:af:59:36:d1:c5:2a:
3e:18:0a:4e:6d:a3:87:b1:bd:63:62:0e:b1:99:c7:
c1:d1:ad:a6:64:8f:f6:cb:8a:04:6a:26:cd:80:c2:
f7:9c:09:ed:94:e9:c9:73:83:2d:56:35:d6:44:3c:
74:0c:a1:cb:87:fb:52:6b:7f:73:be:86:2d:e4:d9:
7e:01:2e:6d:8c:11:82:ea:a9:41:75:6b:48:9c:c4:
5b:ba:d6:84:7d:48:bb:d3:21:7c:d8:13:da:b9:a5:
49:5d:d1:d3:41:73:d3:61:86:3c:a1:d0:1a:cd:33:
4e:40:83:8c:a9:47:e1:d4:ea:78:25:b2:fd:98:4c:
5a:18:6e:f1:2b:64:d0:f8:b3:51:0f:25:74:ce:ab:
6e:28:f1:b1:ef:6b:8b:36:fe:a8:33:b6:ae:39:9e:
fa:d2:78:c9:f9:65:08:d4:e0:40:f1:b9:fb:11:c4:
76:38:5d:0d:64:65:ba:0b:46:3c:6a:af:e7:78:bf:
50:b5:c8:48:79:81:b3:c2:65:c9:22:55:5f:ae:39:
b5:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:43:A3:3C:98:BC:3F:E7:67:CC:0C:8D:AD:76:8B:25:7F:20:EB:9F
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/eUOjPJi8P-dnzAyNrXaLJX8g658.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.155.160.0/21
Signature Algorithm: sha256WithRSAEncryption
07:36:b8:c4:1d:f5:11:85:cd:ef:78:ad:62:11:10:15:ae:9a:
ef:f4:61:8a:47:89:19:6e:4c:c6:d2:84:dd:16:52:a9:ba:1b:
94:5e:5e:1c:03:9f:84:3a:cd:e1:f7:59:49:c6:4d:40:f7:fd:
dc:32:31:b6:64:1d:73:a0:e6:ad:46:e2:50:56:8f:61:57:44:
17:12:e5:35:c0:ec:f4:ff:c0:01:dc:e5:f5:13:09:ca:22:b9:
ed:c0:cd:39:7f:48:c1:d0:f7:41:32:96:6c:63:47:e1:59:77:
67:d9:65:08:66:bb:64:ce:7a:7a:57:f9:99:22:b3:d2:c7:b5:
ca:b9:b8:c5:2b:06:9a:92:06:90:78:65:dd:80:8d:2d:53:32:
d4:22:a3:0a:eb:11:7a:b4:bb:48:3c:ad:8a:33:ef:97:bf:61:
3b:2b:90:ec:3a:f7:a6:02:d4:9d:27:5f:48:55:da:83:3b:4f:
73:9f:c5:84:69:02:0e:58:c1:ad:c2:c2:05:db:af:59:1a:e1:
d2:c7:ae:15:2d:0c:7a:bf:79:36:49:46:cd:6c:6c:a7:c5:c6:
f1:b3:52:e8:e0:12:8f:6c:34:35:c8:42:33:98:51:2e:37:97:
93:f1:f6:76:94:8c:61:ba:46:5f:fa:f1:2b:ac:1f:84:0b:87:
20:1b:04:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org