Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/fYxL6tqKG3KT0-sRVTYVSs-NDtc.roa
File: fYxL6tqKG3KT0-sRVTYVSs-NDtc.roa (raw, json)
Hash identifier: GACR1U4sr3vMU9Q9J+XMRLUtYEiWSGVBwjMioMqbtrc=
Subject key identifier: 7D:8C:4B:EA:DA:8A:1B:72:93:D3:EB:11:55:36:15:4A:CF:8D:0E:D7
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 09D8
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/fYxL6tqKG3KT0-sRVTYVSs-NDtc.roa
Signing time: Wed 29 Sep 2021 02:52:03 +0000
ROA not before: Wed 29 Sep 2021 02:52:03 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18429
IP address blocks: 61.57.136.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2520 (0x9d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Sep 29 02:52:03 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=7D8C4BEADA8A1B7293D3EB115536154ACF8D0ED7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:5b:65:ef:b4:db:03:c6:55:ae:5b:b8:f8:d8:
9f:6a:c5:23:37:b3:a6:5d:eb:e2:95:f3:56:fd:62:
4c:e7:bb:a8:c3:6d:26:2b:a2:cf:08:0f:dd:97:86:
f2:b6:6e:53:53:ef:2e:4e:c9:41:18:d7:67:cb:17:
83:3a:09:e7:1a:e4:5f:ff:69:75:2c:67:7d:2a:7c:
29:80:e6:09:88:9d:4d:fb:33:9a:2c:46:c0:68:55:
b6:1c:da:d5:61:19:48:5a:e2:47:93:c8:27:6b:54:
21:52:80:65:5f:60:d2:0a:48:79:71:78:b3:16:43:
60:1a:54:a0:c7:1e:82:90:26:d4:fa:d3:6a:38:e7:
ac:b8:44:3d:28:1a:56:27:97:d8:1b:74:31:fa:00:
6c:f8:55:f5:b2:e3:23:6f:72:6f:f3:de:e0:76:03:
d1:2c:16:a5:aa:ba:2d:b6:ba:21:d0:5d:b2:3f:23:
7d:e8:74:c1:86:c2:9d:4a:d8:1c:0b:ec:62:ef:91:
4d:aa:3e:be:93:8d:04:cd:51:30:22:c6:ca:c0:82:
b1:13:bb:76:a8:e9:39:e0:58:6a:7a:83:44:1e:dd:
60:fa:64:af:d2:8e:03:f4:7b:42:35:47:7c:42:88:
15:c3:c3:b9:8b:6e:e1:ad:49:6b:91:a8:ff:df:f3:
b1:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:8C:4B:EA:DA:8A:1B:72:93:D3:EB:11:55:36:15:4A:CF:8D:0E:D7
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/fYxL6tqKG3KT0-sRVTYVSs-NDtc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.57.136.0/21
Signature Algorithm: sha256WithRSAEncryption
80:4c:c1:a9:b9:0f:f7:03:f8:f3:93:b5:a4:ae:e1:07:6c:3e:
7a:2d:77:93:f2:70:0e:49:f2:bd:bc:ff:d3:82:1f:40:b1:78:
53:22:39:a0:ad:36:a6:c3:61:51:97:10:ea:1f:2b:d6:18:e3:
66:78:b6:55:86:e5:c0:05:fe:b5:d6:c1:4e:4c:73:16:37:53:
05:de:c1:45:2b:b4:02:b3:2c:ee:7d:f9:0b:a4:84:78:c0:a6:
15:f4:f5:22:10:d3:2c:f6:97:81:0b:91:0a:e5:80:92:16:42:
ce:2e:7e:2a:43:31:b3:74:11:ed:b1:a4:54:32:fa:d1:64:06:
19:11:26:bf:04:5b:30:9b:20:b0:9c:c9:13:39:89:9d:06:93:
61:8b:34:51:16:77:dd:3f:c0:f3:d5:ec:ad:5a:2f:a0:37:6f:
e8:27:c2:ee:3d:d3:5d:d9:c3:68:71:a3:94:a0:4e:a1:ee:50:
e4:1c:e4:b1:f3:65:58:89:70:43:e0:66:e2:33:8c:e6:2b:fa:
59:da:1c:f9:2b:1e:21:7c:2b:95:72:a9:7e:7b:bc:6f:0b:ec:
a7:e6:3a:bb:fb:ed:56:38:1f:8b:32:6b:88:12:83:7c:13:86:
11:32:e0:74:34:8e:ab:17:6b:b9:97:d5:a5:34:6d:c3:26:4f:
3e:71:65:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org