Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/ksjm2l_-5elfGz5SWEbKo6uoONA.roa
File: ksjm2l_-5elfGz5SWEbKo6uoONA.roa (raw, json)
Hash identifier: 7LgBDSssdiNHWy7AmWpHQUGyq3xhATnIJDq+yRqHziU=
Subject key identifier: 92:C8:E6:DA:5F:FE:E5:E9:5F:1B:3E:52:58:46:CA:A3:AB:A8:38:D0
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0915
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/ksjm2l_-5elfGz5SWEbKo6uoONA.roa
Signing time: Sun 07 Feb 2021 12:45:19 +0000
ROA not before: Sun 07 Feb 2021 12:45:19 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18429
IP address blocks: 123.50.32.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2325 (0x915)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Feb 7 12:45:19 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=92C8E6DA5FFEE5E95F1B3E525846CAA3ABA838D0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:8f:8e:24:88:8c:80:84:a9:19:fb:b2:69:47:
17:81:9d:1e:30:c5:10:e4:46:c1:6e:13:1a:0d:3d:
3e:74:e2:ca:7c:22:a0:ce:84:2c:d9:61:20:cf:cc:
50:93:e6:1a:e0:87:c8:44:00:e7:61:89:7d:b6:0c:
fb:d0:73:22:02:c7:79:af:a9:82:7c:d5:f1:27:e4:
2a:f2:b6:e4:7f:7f:55:db:99:f6:6d:85:83:bb:ae:
12:63:37:61:17:77:e2:c0:d5:ee:26:12:85:44:ea:
7a:d4:dc:8f:d9:2e:c1:00:3c:22:90:83:38:22:46:
97:53:4f:3c:54:55:52:cd:d4:9a:4a:42:d8:69:ed:
16:89:81:aa:fa:77:b2:3d:49:a9:da:96:9d:61:de:
99:1c:ae:1b:21:f6:97:31:8f:33:59:dd:a5:e6:ed:
b0:cb:ed:7a:0a:12:c1:95:cf:69:03:8e:b7:52:80:
bf:bb:08:6d:28:e7:34:cb:eb:37:10:b2:80:83:eb:
96:c2:5b:ac:22:80:39:fc:10:2c:49:85:3d:89:f7:
11:18:be:b4:0e:63:8b:4a:08:fb:03:46:3d:28:5d:
63:ff:b0:92:ff:98:98:42:a9:21:1d:51:93:21:55:
1c:51:8d:5b:9e:b6:3d:3a:18:95:35:c4:92:f6:b1:
58:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:C8:E6:DA:5F:FE:E5:E9:5F:1B:3E:52:58:46:CA:A3:AB:A8:38:D0
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/ksjm2l_-5elfGz5SWEbKo6uoONA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.50.32.0/21
Signature Algorithm: sha256WithRSAEncryption
97:50:ac:e8:f3:fc:65:2e:75:8f:4a:ba:5e:89:a3:ef:23:42:
68:45:d7:24:e1:b6:3e:cc:7a:4f:f7:02:4e:d7:db:4b:76:02:
cf:c8:bf:0e:66:49:a5:b1:b0:c5:8d:98:df:e0:6c:16:71:52:
ee:72:e0:af:02:d9:65:da:28:50:da:ce:3a:01:a9:5d:8d:5e:
ee:5e:7c:66:4d:e1:20:f5:06:ac:67:6d:fa:55:2d:cb:0a:86:
32:ff:54:7b:82:a2:57:16:7b:b7:fa:85:a5:5b:76:87:a4:c1:
2f:6f:d1:05:05:f1:e0:44:77:a1:9a:4c:d3:62:f2:76:ae:cb:
df:33:23:2c:f5:41:90:82:57:2b:56:69:05:32:5d:b0:bc:93:
4a:8a:4f:19:e0:2f:7f:59:41:35:b1:d7:48:18:71:4a:70:90:
00:9f:36:24:90:26:2e:1f:88:69:b9:1b:17:40:6b:e8:9d:36:
65:98:aa:88:c6:16:f0:d9:fe:f4:45:50:2c:d3:6f:ab:3c:4d:
c7:95:05:10:f8:e4:d8:de:04:07:b1:0a:be:ac:d6:7d:1a:01:
c0:6b:77:70:0b:12:68:2e:a4:6a:80:e1:cf:89:93:73:e5:8a:
39:d4:7a:bb:84:80:0f:fc:14:ce:dc:63:68:85:10:63:4d:4a:
91:83:fa:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org