Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/pTyDYOg-YBiBy2ixG947w3kheP0.roa
File: pTyDYOg-YBiBy2ixG947w3kheP0.roa (raw, json)
Hash identifier: jqnuCzDTGOu0vwFWJ5Ojcix2/Cu072sDF+LnYDt2ByY=
Subject key identifier: A5:3C:83:60:E8:3E:60:18:81:CB:68:B1:1B:DE:3B:C3:79:21:78:FD
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0792
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/pTyDYOg-YBiBy2ixG947w3kheP0.roa
Signing time: Tue 29 Sep 2020 09:59:29 +0000
ROA not before: Tue 29 Sep 2020 09:59:29 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18429
IP address blocks: 103.224.200.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1938 (0x792)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Sep 29 09:59:29 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A53C8360E83E601881CB68B11BDE3BC3792178FD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:86:78:3e:d3:e2:8d:b8:df:d8:0a:b3:ae:d6:
f0:cd:8e:2d:cc:a2:ed:c5:36:7a:94:ae:30:fc:5f:
e9:98:a6:a7:52:c7:a4:26:55:56:46:19:f7:b4:0e:
f0:0a:1c:4b:8b:9a:b2:9a:2e:5a:8d:2f:34:0e:80:
a4:04:ca:ec:06:d9:05:b5:87:99:9c:1a:45:3b:8c:
44:f5:bb:bc:ec:c7:82:4a:e5:f7:30:1d:92:a9:3a:
bf:e0:bb:9e:48:db:50:4b:9c:1a:f7:a3:92:0f:af:
31:a1:59:a3:46:ff:c0:86:e8:26:70:46:fc:37:41:
58:5c:29:1f:db:5d:69:89:40:f6:62:ab:eb:d2:ae:
52:2d:8d:6d:a9:6c:ad:39:6f:2d:22:99:7c:1b:80:
0b:9e:c9:f3:19:9f:1a:c1:a6:f7:cd:89:85:9e:4c:
75:f4:a0:9a:20:cb:5b:30:17:70:31:98:84:f9:1b:
77:3e:04:1a:06:e6:e5:61:25:67:2c:23:d2:aa:d9:
40:bd:21:0e:1c:3a:32:08:8e:d2:31:b5:45:46:c1:
7c:36:d6:3b:8b:02:38:d8:90:94:f3:bc:6a:96:86:
0d:13:f9:ba:f6:87:fa:36:c7:f5:f4:bf:96:d2:fd:
a1:a7:74:4c:23:28:bd:dc:61:4b:8e:c1:70:21:07:
1a:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:3C:83:60:E8:3E:60:18:81:CB:68:B1:1B:DE:3B:C3:79:21:78:FD
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/pTyDYOg-YBiBy2ixG947w3kheP0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.224.200.0/22
Signature Algorithm: sha256WithRSAEncryption
05:e1:3c:a3:fa:a5:67:c1:cb:d1:8f:ea:fe:3e:3b:97:25:ac:
16:20:af:e9:ff:f5:6c:f8:e9:41:38:35:0f:3f:de:50:f8:e3:
8e:0a:08:7d:70:bd:36:fd:5c:0d:8e:e3:46:62:41:8d:45:bd:
b0:f2:da:57:f6:ac:28:ed:2b:c8:8e:81:19:5b:6b:1d:81:90:
ec:89:99:5f:63:bf:42:83:89:63:1e:75:1c:a0:0f:e7:54:3b:
cd:e3:ab:a2:6e:c6:ed:81:c8:02:2e:bd:9f:35:8b:7f:04:b3:
b9:0b:15:43:0e:5b:0a:02:c5:10:99:4e:fb:25:74:55:0b:c6:
4b:ef:05:13:ec:a2:76:6a:71:58:ea:9d:08:86:8a:42:ed:28:
4a:f1:90:e8:73:6f:6c:d5:e1:98:4c:b7:f0:ed:10:2f:63:81:
3e:a3:36:37:8b:c1:8e:15:17:ba:c4:e0:3c:e1:a0:0d:ac:d4:
60:7d:c0:3f:5f:25:22:ed:a3:1a:ff:2d:3d:44:a6:38:f5:12:
a2:46:76:24:64:17:53:fc:b6:6b:c4:d7:45:c4:15:5d:ac:20:
f2:f7:59:ea:0f:f6:26:a1:bd:73:14:63:94:94:c4:83:93:50:
32:8a:f3:93:96:66:26:b9:bf:b1:30:1f:a1:cc:ba:59:b1:ef:
9a:90:60:1d
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICB5IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUQx
RTNGM0M4QkE4OURDMTMxMDQxMDM0NUY1MEMxMDA3NjE4MTI2MTAeFw0yMDA5Mjkw
OTU5MjlaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEE1M0M4MzYwRTgzRTYw
MTg4MUNCNjhCMTFCREUzQkMzNzkyMTc4RkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDehng+0+KNuN/YCrOu1vDNji3Mou3FNnqUrjD8X+mYpqdSx6Qm
VVZGGfe0DvAKHEuLmrKaLlqNLzQOgKQEyuwG2QW1h5mcGkU7jET1u7zsx4JK5fcw
HZKpOr/gu55I21BLnBr3o5IPrzGhWaNG/8CG6CZwRvw3QVhcKR/bXWmJQPZiq+vS
rlItjW2pbK05by0imXwbgAueyfMZnxrBpvfNiYWeTHX0oJogy1swF3AxmIT5G3c+
BBoG5uVhJWcsI9Kq2UC9IQ4cOjIIjtIxtUVGwXw21juLAjjYkJTzvGqWhg0T+br2
h/o2x/X0v5bS/aGndEwjKL3cYUuOwXAhBxrxAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUpTyDYOg+YBiBy2ixG947w3kheP0wHwYDVR0jBBgwFoAUXR4/PIuoncExBBA0
X1DBAHYYEmEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0dORVQv
WFI0X1BJdW9uY0V4QkJBMFgxREJBSFlZRW1FLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9YUjRfUEl1b25jRXhCQkEwWDFEQkFIWVlFbUUuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DR05FVC9wVHlEWU9nLVlCaUJ5Mml4Rzk0
N3cza2hlUDAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ+DI
MA0GCSqGSIb3DQEBCwUAA4IBAQAF4Tyj+qVnwcvRj+r+PjuXJawWIK/p//Vs+OlB
ODUPP95Q+OOOCgh9cL02/VwNjuNGYkGNRb2w8tpX9qwo7SvIjoEZW2sdgZDsiZlf
Y79Cg4ljHnUcoA/nVDvN46uibsbtgcgCLr2fNYt/BLO5CxVDDlsKAsUQmU77JXRV
C8ZL7wUT7KJ2anFY6p0IhopC7ShK8ZDoc29s1eGYTLfw7RAvY4E+ozY3i8GOFRe6
xOA84aANrNRgfcA/XyUi7aMa/y09RKY49RKiRnYkZBdT/LZrxNdFxBVdrCDy91nq
D/Ymob1zFGOUlMSDk1AyivOTlmYmub+xMB+hzLpZse+akGAd
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org