Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/jXCzOEkURAP8Cr2BvQhJ4zxiBP8.roa
File: jXCzOEkURAP8Cr2BvQhJ4zxiBP8.roa (raw, json)
Hash identifier: J5t2hh6C9U0nH/GCjIAHXJ1zJCZb3lgG9O8iThQQP7U=
Subject key identifier: 8D:70:B3:38:49:14:44:03:FC:0A:BD:81:BD:08:49:E3:3C:62:04:FF
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0B74
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/jXCzOEkURAP8Cr2BvQhJ4zxiBP8.roa
Signing time: Fri 16 Dec 2022 04:20:03 +0000
ROA not before: Fri 16 Dec 2022 04:20:03 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18429
IP address blocks: 61.57.144.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2932 (0xb74)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Dec 16 04:20:03 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=8D70B33849144403FC0ABD81BD0849E33C6204FF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:e6:c4:c2:4a:1a:c9:f6:aa:be:2c:e0:0f:ee:
d8:a3:a9:82:f9:74:7e:de:6c:86:6d:f5:d5:d5:3e:
cf:d6:71:23:75:c9:a9:e6:a4:44:99:2e:e9:00:4e:
48:6a:fb:4a:ef:12:3c:58:d6:30:21:9a:7a:fa:d3:
d7:8a:ff:a1:dd:51:dd:92:c9:c4:7a:98:22:dd:c1:
30:2f:c2:7a:8a:8c:93:cf:a5:45:76:7b:b3:07:cc:
ea:f1:32:72:e6:b6:be:69:29:bb:ae:34:c0:9e:e5:
2d:30:03:ae:44:1e:3a:9a:a5:e6:b2:79:f4:a4:ac:
21:cc:93:88:62:7a:9f:d2:18:8f:f1:61:4f:9e:0c:
a0:c8:a3:0b:c7:c7:1b:97:b9:81:f4:f3:74:14:35:
bb:0e:c6:1b:79:d4:bf:6f:fd:f5:aa:00:d2:c1:ec:
c0:a9:b7:16:76:f5:2e:5c:35:1f:71:34:0b:bb:3e:
04:96:06:d7:77:52:50:10:c1:ee:78:38:44:3d:c0:
c5:d6:67:c3:87:ea:65:e7:92:cc:69:02:53:45:48:
84:1b:20:51:cd:d6:0c:ba:1a:8d:cd:ea:78:90:31:
49:ad:dd:2c:d0:1e:10:c0:a7:e3:05:92:08:6e:76:
d6:72:fc:1e:e1:6e:07:31:a2:03:a8:1a:b7:5c:02:
45:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:70:B3:38:49:14:44:03:FC:0A:BD:81:BD:08:49:E3:3C:62:04:FF
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/jXCzOEkURAP8Cr2BvQhJ4zxiBP8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.57.144.0/20
Signature Algorithm: sha256WithRSAEncryption
05:4d:a0:0b:19:d7:d1:36:13:45:37:4c:d0:7f:54:d3:10:4a:
79:0e:b8:f2:6c:fe:d9:46:17:46:4a:27:f3:14:e2:86:81:e6:
69:4f:d0:fd:22:2b:7a:5d:cb:9f:f7:e2:eb:35:d8:bb:1f:5a:
24:42:bf:ec:20:db:97:9a:45:2e:e5:b9:fb:cf:b8:c7:00:76:
c9:4a:c4:c8:f9:a1:f1:06:69:47:af:30:6b:4f:47:20:a5:0a:
16:00:41:72:82:d8:07:7d:2a:1c:44:f8:79:ec:1d:27:4c:87:
0a:0a:47:62:98:20:e8:93:28:97:6e:e7:f4:bb:95:e4:88:92:
89:2b:52:2a:66:23:8f:b8:d3:86:08:45:60:47:dd:7d:d8:8a:
24:fd:fe:e6:89:7e:bd:38:19:e5:84:60:ca:29:76:a4:cb:22:
bf:d5:13:5f:4a:66:4f:85:16:0b:5f:64:1e:ad:9f:7e:84:bd:
b7:ea:1c:93:74:37:23:84:78:d8:6e:2b:bf:5a:d1:f3:65:12:
46:54:32:8e:2b:c4:59:e1:5f:d5:eb:b4:c1:7a:7a:f1:a0:4b:
7a:2d:71:06:a7:83:d4:63:47:2c:e4:ba:b8:25:e4:8b:0a:52:
ff:c9:9c:f5:06:18:ad:f3:dd:3a:83:56:35:82:12:dd:f6:f5:
2d:73:1c:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org