Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/osixUjJedQzVTAakyPvN43xJaSE.roa
File: osixUjJedQzVTAakyPvN43xJaSE.roa (raw, json)
Hash identifier: L04V5600dqdolC7dd3jQRgfOu2vqXN9Gyhg61J2VrhM=
Subject key identifier: A2:C8:B1:52:32:5E:75:0C:D5:4C:06:A4:C8:FB:CD:E3:7C:49:69:21
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0AEB
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/osixUjJedQzVTAakyPvN43xJaSE.roa
Signing time: Thu 15 Sep 2022 02:49:27 +0000
ROA not before: Thu 15 Sep 2022 02:49:27 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18429
IP address blocks: 123.50.40.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2795 (0xaeb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Sep 15 02:49:27 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A2C8B152325E750CD54C06A4C8FBCDE37C496921
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:9b:09:12:79:09:84:2e:28:b7:ad:24:b0:49:
9a:2e:71:cf:5a:74:93:93:15:11:26:12:0f:d1:da:
ba:c8:ee:9e:cf:5f:25:4c:20:98:aa:1a:39:05:0a:
40:26:42:fb:d2:90:f5:80:e0:2d:29:7e:ba:83:6a:
14:d8:0d:07:3b:a9:2f:7b:28:19:ef:ea:46:3f:37:
8b:af:57:1b:04:b8:14:e1:5a:c6:19:42:f2:1d:fe:
be:0b:45:c2:cb:3c:ec:05:10:a4:c9:8d:ef:b3:09:
44:32:18:0e:09:dc:f0:92:b3:f2:02:6e:41:cf:70:
c6:c5:34:9a:02:09:46:cb:03:9a:bf:36:4d:ae:71:
84:17:03:3a:1c:08:ac:dc:8f:9a:50:1d:25:74:9e:
0d:c3:fb:96:a9:e6:10:66:db:b3:70:7b:31:21:7b:
b5:33:a6:fa:ee:cb:9e:26:5e:3d:94:65:d5:b0:15:
b5:e2:1a:5b:30:15:16:4b:28:b8:13:b6:3a:33:9b:
11:6a:13:05:75:77:aa:fd:c5:0c:20:bf:b3:f2:64:
89:c3:74:6c:bd:64:86:1a:1b:98:79:b9:2d:8f:26:
e8:8c:34:4b:7f:98:71:56:aa:d3:7b:d5:07:03:2d:
78:b1:16:8c:1e:b1:b1:ac:1b:db:06:1e:44:ed:e2:
d1:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:C8:B1:52:32:5E:75:0C:D5:4C:06:A4:C8:FB:CD:E3:7C:49:69:21
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/osixUjJedQzVTAakyPvN43xJaSE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.50.40.0/21
Signature Algorithm: sha256WithRSAEncryption
7a:c2:a7:67:20:ab:d9:e6:6f:a7:63:6e:de:4e:32:3f:36:c3:
f3:0e:2c:31:b5:96:03:49:cb:3b:7a:9f:58:e9:37:f6:ac:d2:
19:e1:fd:52:c7:d8:01:f7:eb:bc:d6:8e:81:be:50:01:f9:b5:
be:5f:67:4f:fc:3b:60:29:82:70:33:10:53:3e:dc:09:25:b2:
16:36:0f:b0:1e:4d:b5:ca:4d:74:d0:f3:bd:29:28:36:06:25:
f5:9b:d2:76:d0:8a:d4:86:95:8e:bb:55:f5:2d:fc:01:99:ce:
cf:6d:d9:04:81:cf:48:f1:36:5a:f0:b0:e4:34:37:23:62:d2:
e1:7b:c0:28:8d:f6:db:85:dd:79:61:39:bc:1f:2f:0f:2c:f0:
56:50:cc:32:3c:e1:83:d6:5c:4a:d4:37:f9:4b:99:7d:4b:eb:
4d:74:94:6b:51:2c:bc:5f:68:53:38:ea:9e:a5:44:69:75:4c:
60:45:6f:5a:0b:49:a8:15:2d:42:27:45:1b:89:79:49:de:1b:
ce:e1:b3:1d:84:35:fa:72:21:bc:ca:d1:d2:d1:07:66:38:5f:
e2:45:94:f6:c1:7f:4b:ba:0c:d8:8d:ee:dd:b5:86:24:04:c2:
9c:d5:8a:43:47:27:0f:cf:52:23:1d:b8:7f:f9:64:8d:a4:a5:
81:30:54:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org