Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/icPvirSrMsrBRaQvW-46Mjd7vjE.roa
File: icPvirSrMsrBRaQvW-46Mjd7vjE.roa (raw, json)
Hash identifier: CvBd0B90xAbVGAtXFRaPLYa3xxTubFAyKay4/jOVjoA=
Subject key identifier: 89:C3:EF:8A:B4:AB:32:CA:C1:45:A4:2F:5B:EE:3A:32:37:7B:BE:31
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 09E6
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/icPvirSrMsrBRaQvW-46Mjd7vjE.roa
Signing time: Wed 29 Sep 2021 02:52:08 +0000
ROA not before: Wed 29 Sep 2021 02:52:08 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18429
IP address blocks: 61.57.148.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2534 (0x9e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Sep 29 02:52:08 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=89C3EF8AB4AB32CAC145A42F5BEE3A32377BBE31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:d5:bf:bd:1a:72:98:b1:d0:04:b6:2c:a0:f8:
d4:d8:e5:4f:ae:64:9a:29:8c:fb:7b:a5:99:fc:a8:
d4:7c:ba:b2:3c:f9:ce:98:7c:56:3b:40:a2:e4:c9:
f6:03:61:7c:c5:a7:53:f8:e5:a0:9e:63:32:68:a5:
fe:cd:4a:72:2d:f3:3d:ed:64:90:70:f7:72:33:16:
6f:bf:11:34:33:e5:8c:8e:5b:8c:b8:fe:f2:2e:1f:
34:ff:8d:79:9c:7b:31:7d:11:c0:55:82:de:d8:18:
cc:d4:2c:5e:80:89:0a:70:6c:bf:87:81:4d:85:c7:
f1:bf:02:5a:c8:0b:c9:dc:64:2c:03:e1:6c:35:42:
16:0d:b8:68:3b:cf:d3:b4:6f:e6:89:c8:da:66:c6:
e3:54:fa:58:ae:d1:5d:89:e0:51:29:96:da:b3:47:
c1:0c:4c:32:57:52:d5:ca:eb:ef:67:d1:2e:5e:84:
b5:80:6c:83:4f:d9:57:d9:0d:25:80:67:67:d3:ed:
e0:79:1d:d1:1e:e1:af:94:4d:04:01:ab:50:ad:c1:
6b:81:ce:f5:98:36:e9:f6:95:0b:e2:4e:a8:05:60:
d3:64:12:b0:6f:6a:62:4a:3a:b0:db:99:ab:c8:85:
4f:db:6c:2b:ea:46:cf:35:9e:6c:d9:ec:09:d4:f0:
78:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:C3:EF:8A:B4:AB:32:CA:C1:45:A4:2F:5B:EE:3A:32:37:7B:BE:31
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/icPvirSrMsrBRaQvW-46Mjd7vjE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.57.148.0/24
Signature Algorithm: sha256WithRSAEncryption
11:4a:4d:2d:40:60:39:6f:99:d0:af:fc:42:d9:00:8f:81:4b:
f7:2b:64:24:d1:0e:00:44:51:45:cf:36:cd:ce:10:a9:6a:76:
6b:ff:71:91:05:7f:32:7d:cf:9c:82:09:46:65:f6:2e:5c:79:
5a:89:aa:db:1a:3b:71:7b:17:2d:f9:ac:ec:75:0a:af:eb:f5:
6c:f9:5e:5e:c7:93:88:c3:54:53:64:62:63:69:56:56:38:05:
93:2f:e3:b9:e2:10:0a:12:11:70:ee:c1:84:19:2e:34:68:b1:
de:3c:ee:e7:84:31:ae:a9:12:ac:f8:0e:9f:ec:a2:ed:0c:18:
24:5a:5f:77:c2:e4:ed:19:1b:91:7b:d5:72:38:88:f9:6c:83:
d7:a6:d7:90:a6:6e:57:04:bd:30:1f:99:1b:e1:04:1f:a2:72:
51:bc:39:ef:f8:e5:06:77:34:0a:95:68:6c:e6:33:51:ff:1a:
11:8a:13:b0:0a:57:6e:08:f7:30:d4:0d:89:9a:c2:d6:d1:ae:
b3:5a:bd:d1:f2:6a:2a:b3:e6:50:9a:86:bc:2a:7b:3d:04:4d:
d1:fa:7b:20:2f:de:8c:6a:d3:e7:08:72:62:09:e3:5b:c8:35:
59:dd:6c:53:97:88:c7:03:d8:5d:f1:9d:c1:7f:65:83:2b:f9:
ee:bb:5e:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org