Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/fAHyjotqTOX2gFnEPhTef2kS7iM.roa
File: fAHyjotqTOX2gFnEPhTef2kS7iM.roa (raw, json)
Hash identifier: /i2HrwQBmrPRMXyg+/ybJGBsGbM2+TbAcvanTfwX9Yo=
Subject key identifier: 7C:01:F2:8E:8B:6A:4C:E5:F6:80:59:C4:3E:14:DE:7F:69:12:EE:23
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0AEB
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/fAHyjotqTOX2gFnEPhTef2kS7iM.roa
Signing time: Thu 15 Sep 2022 02:49:23 +0000
ROA not before: Thu 15 Sep 2022 02:49:23 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18429
IP address blocks: 123.50.32.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2795 (0xaeb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Sep 15 02:49:23 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=7C01F28E8B6A4CE5F68059C43E14DE7F6912EE23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:d8:85:16:58:e7:76:8c:82:63:d1:88:59:73:
a5:70:a8:26:e9:d8:4f:b1:20:c3:d5:2f:58:bd:66:
f7:a1:9f:f3:64:d9:54:46:9e:d9:e7:db:57:5c:f1:
72:49:0b:8c:23:07:e7:95:cb:90:43:ef:81:4e:8c:
f7:f9:0c:83:63:25:1b:0f:d1:31:19:c8:c5:29:23:
4b:e6:52:62:19:1f:53:72:fe:46:f0:61:58:ad:a7:
e4:3d:07:97:c0:b0:21:80:5d:89:3d:fb:da:75:27:
5f:7c:21:e7:13:07:c1:96:0f:b6:85:12:d5:6f:dc:
3d:f8:1a:76:41:a2:74:1c:d6:7a:bf:69:94:06:e0:
0f:ed:a0:5a:81:ed:00:dc:27:16:bc:4a:ab:a1:42:
e4:ec:30:cd:a5:b0:97:81:5a:64:9e:7b:c0:75:73:
82:40:65:b1:fb:b0:57:1a:3a:fa:b8:a2:88:43:48:
d4:d7:7e:65:97:15:fb:2b:02:5c:d7:5c:14:2b:fc:
a7:32:6a:dd:be:4c:eb:ce:0d:f9:1e:99:11:b3:bd:
f8:98:06:63:80:44:2c:15:aa:78:03:bc:ad:17:3a:
49:da:fc:c8:23:7e:83:69:61:86:56:cc:6f:bd:6f:
74:16:c0:23:18:f4:55:83:aa:bc:86:70:10:50:8f:
70:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:01:F2:8E:8B:6A:4C:E5:F6:80:59:C4:3E:14:DE:7F:69:12:EE:23
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/fAHyjotqTOX2gFnEPhTef2kS7iM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.50.32.0/21
Signature Algorithm: sha256WithRSAEncryption
51:8f:21:b5:92:28:59:96:7d:11:95:da:e8:89:80:15:c6:b9:
be:d2:fa:ce:14:80:73:47:11:95:cd:fd:7a:0f:6b:a7:17:63:
7f:fd:ce:8d:47:a9:94:a1:71:c8:6f:c2:de:3b:07:2d:b3:30:
ab:43:4b:96:b0:3b:41:08:55:d7:7f:10:17:b6:15:fe:69:61:
4d:d1:b2:c5:43:15:3a:26:e0:f4:0b:b5:2c:76:9b:1e:9b:bb:
d7:f0:7a:d2:ee:06:eb:44:fa:97:39:43:64:d7:a3:a9:9e:e1:
20:96:f7:0d:10:1d:39:98:c2:1c:1f:7d:a4:d5:d9:55:22:d1:
e2:c7:f1:6b:9c:88:08:95:f0:be:21:b6:8f:5f:52:ca:1e:8d:
ee:07:22:32:ff:96:7a:4c:65:1c:eb:88:c0:da:2e:dc:da:3e:
b4:a8:f0:4f:c8:b5:a5:fa:40:86:05:4d:a1:9f:d2:e2:11:ef:
37:f8:c3:86:85:7b:85:dc:6d:e6:9d:91:8c:94:23:69:99:fd:
50:d5:4e:e6:ef:1e:53:29:6d:e2:a3:02:8a:6a:8a:f7:67:38:
ea:2d:62:07:ac:74:57:24:2f:94:d8:eb:13:b1:10:19:af:66:
75:c1:67:dd:9d:5b:5d:d6:91:51:e2:6e:5a:0c:f2:ac:32:bc:
a1:0b:d2:70
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCuswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUQx
RTNGM0M4QkE4OURDMTMxMDQxMDM0NUY1MEMxMDA3NjE4MTI2MTAeFw0yMjA5MTUw
MjQ5MjNaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDdDMDFGMjhFOEI2QTRD
RTVGNjgwNTlDNDNFMTRERTdGNjkxMkVFMjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDN2IUWWOd2jIJj0YhZc6VwqCbp2E+xIMPVL1i9Zvehn/Nk2VRG
ntnn21dc8XJJC4wjB+eVy5BD74FOjPf5DINjJRsP0TEZyMUpI0vmUmIZH1Ny/kbw
YVitp+Q9B5fAsCGAXYk9+9p1J198IecTB8GWD7aFEtVv3D34GnZBonQc1nq/aZQG
4A/toFqB7QDcJxa8SquhQuTsMM2lsJeBWmSee8B1c4JAZbH7sFcaOvq4oohDSNTX
fmWXFfsrAlzXXBQr/Kcyat2+TOvODfkemRGzvfiYBmOARCwVqngDvK0XOkna/Mgj
foNpYYZWzG+9b3QWwCMY9FWDqryGcBBQj3CvAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUfAHyjotqTOX2gFnEPhTef2kS7iMwHwYDVR0jBBgwFoAUXR4/PIuoncExBBA0
X1DBAHYYEmEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0dORVQv
WFI0X1BJdW9uY0V4QkJBMFgxREJBSFlZRW1FLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9YUjRfUEl1b25jRXhCQkEwWDFEQkFIWVlFbUUuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DR05FVC9mQUh5am90cVRPWDJnRm5FUGhU
ZWYya1M3aU0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDezIg
MA0GCSqGSIb3DQEBCwUAA4IBAQBRjyG1kihZln0RldroiYAVxrm+0vrOFIBzRxGV
zf16D2unF2N//c6NR6mUoXHIb8LeOwctszCrQ0uWsDtBCFXXfxAXthX+aWFN0bLF
QxU6JuD0C7Usdpsem7vX8HrS7gbrRPqXOUNk16OpnuEglvcNEB05mMIcH32k1dlV
ItHix/FrnIgIlfC+IbaPX1LKHo3uByIy/5Z6TGUc64jA2i7c2j60qPBPyLWl+kCG
BU2hn9LiEe83+MOGhXuF3G3mnZGMlCNpmf1Q1U7m7x5TKW3iowKKaor3ZzjqLWIH
rHRXJC+U2OsTsRAZr2Z1wWfdnVtd1pFR4m5aDPKsMryhC9Jw
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org