Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/mLDha4_bYY3NzTrlk7pkmLbN-Ik.roa
File: mLDha4_bYY3NzTrlk7pkmLbN-Ik.roa (raw, json)
Hash identifier: obimOpEfZJijwxDdr/gsq3ZUzPMrdbIXqoug6lG0AEo=
Subject key identifier: 98:B0:E1:6B:8F:DB:61:8D:CD:CD:3A:E5:93:BA:64:98:B6:CD:F8:89
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0C7A
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/mLDha4_bYY3NzTrlk7pkmLbN-Ik.roa
Signing time: Fri 01 Sep 2023 08:26:37 +0000
ROA not before: Fri 01 Sep 2023 08:26:37 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18429
IP address blocks: 124.155.176.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3194 (0xc7a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Sep 1 08:26:37 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=98B0E16B8FDB618DCDCD3AE593BA6498B6CDF889
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:7f:02:20:46:36:73:65:d8:09:30:76:32:da:
55:66:b1:ec:54:26:c1:01:0e:8f:35:fc:50:77:9a:
a2:8e:38:c7:f8:da:88:e7:94:e2:3b:34:44:67:6d:
23:f7:c1:31:80:8e:82:b0:79:6b:b1:36:ba:42:2c:
58:b1:1a:50:9d:d6:f1:30:f5:30:12:de:aa:c8:19:
8c:4e:7a:0c:a6:a8:21:9c:c7:b8:45:25:21:c4:5b:
e5:d2:2a:f8:ee:ba:c5:ac:cb:41:ec:da:25:7f:21:
0a:ab:a1:8f:33:cc:36:d7:ad:f9:ac:a6:f5:5b:f7:
06:26:95:c4:cc:be:b0:29:6b:99:d7:43:e9:c2:8f:
c8:a1:d2:c8:8f:ca:c3:3b:5e:90:c3:df:a8:cc:9a:
8a:84:49:ea:92:2b:f4:34:9c:f1:1a:17:50:2a:e9:
13:05:fd:79:75:5e:43:4e:c3:e9:2c:53:ae:7e:3e:
8a:cf:3a:aa:fa:b2:57:7d:78:1c:4e:22:e1:b4:be:
d9:c9:63:57:ed:c5:0f:2c:e4:78:c9:bb:4f:3d:ac:
47:3b:c7:09:fa:be:b8:00:bf:fc:5a:3a:db:c3:02:
04:79:65:67:85:aa:c0:0b:bc:e9:9f:cd:e8:e6:1e:
ca:96:50:2e:2d:46:11:d7:26:51:13:28:9c:71:c7:
15:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:B0:E1:6B:8F:DB:61:8D:CD:CD:3A:E5:93:BA:64:98:B6:CD:F8:89
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/mLDha4_bYY3NzTrlk7pkmLbN-Ik.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.155.176.0/21
Signature Algorithm: sha256WithRSAEncryption
15:d2:6f:bb:86:90:15:b9:73:8e:e1:22:93:8b:7b:10:41:ea:
24:8e:68:ed:e7:fd:20:00:d3:13:05:70:ce:00:75:ec:05:6a:
ab:fe:12:d6:62:46:5b:fc:73:96:08:f0:1a:ab:e3:4b:d1:09:
09:a9:07:51:4e:73:9a:4c:a9:a9:05:e6:70:bd:eb:72:fb:e8:
92:04:ab:9a:ae:cf:cc:42:56:29:69:67:31:bf:66:95:10:9d:
d9:1c:d7:01:f6:18:e4:af:ad:8c:26:16:57:67:77:72:4e:89:
95:75:42:d4:16:76:15:04:cd:ba:a5:85:6b:eb:3b:c7:eb:19:
c2:bc:f1:ad:87:cd:4b:69:0c:16:32:a7:bc:01:0b:33:da:88:
f3:c6:ab:24:79:43:9f:9f:c6:f4:8d:ec:b1:17:5d:cd:93:92:
94:e1:83:a6:94:5d:17:2a:8c:42:c8:37:db:f2:1c:f2:ed:34:
38:8b:8e:0b:d0:3a:e8:30:31:ec:5f:5f:a5:97:dd:35:a8:19:
e8:db:37:56:a0:4e:eb:d9:8f:90:8b:b2:b8:99:e2:4d:d2:19:
8f:62:00:97:a8:bb:34:90:b6:51:a1:aa:f8:5b:da:4e:8e:44:
e6:be:9b:f9:b1:8f:4a:5f:98:e0:b3:4a:60:4c:34:5a:43:73:
cd:3e:36:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:40:41 2025 by rpki-client