Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/rev-V_pCMIN5LeAqVHnYEch-KOE.roa
File: rev-V_pCMIN5LeAqVHnYEch-KOE.roa (raw, json)
Hash identifier: 1f3HcWspllpD9j3MCebFugjjleU99kdQEAGGvE+ipLM=
Subject key identifier: AD:EB:FE:57:FA:42:30:83:79:2D:E0:2A:54:79:D8:11:C8:7E:28:E1
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0B47
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/rev-V_pCMIN5LeAqVHnYEch-KOE.roa
Signing time: Thu 15 Dec 2022 02:56:55 +0000
ROA not before: Thu 15 Dec 2022 02:56:55 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18429
IP address blocks: 61.57.144.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2887 (0xb47)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Dec 15 02:56:55 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=ADEBFE57FA423083792DE02A5479D811C87E28E1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:cb:6c:15:5f:d5:2c:10:c3:47:17:7c:49:80:
b4:c0:0a:0f:0c:78:67:94:a3:22:04:a5:31:58:de:
54:ff:80:e0:8c:73:09:08:01:d3:a5:bc:30:21:9f:
8c:9a:d8:cc:5d:f6:a6:20:a2:52:5b:4a:c3:80:77:
b7:2a:a5:e7:b8:55:a1:9f:9f:06:c2:9b:ed:84:bd:
42:f9:fb:a8:65:fe:dc:90:58:f2:17:72:cf:5f:f6:
07:d8:e2:1b:aa:37:e9:e2:f9:74:21:5c:9f:56:59:
2e:87:76:62:61:c7:97:66:0b:05:55:b1:ff:ef:70:
53:24:44:71:5a:85:18:85:36:6e:83:eb:98:b8:b8:
7b:d8:e8:05:4b:03:64:40:b7:42:75:1b:03:a9:84:
14:03:58:f4:12:c3:d2:b9:63:6f:ce:72:c0:a0:37:
f7:7f:bd:23:51:a0:24:30:73:95:9c:a0:d7:e9:46:
50:0b:0f:9b:f0:6c:69:2c:20:22:1a:c6:54:ea:39:
7f:2c:01:11:de:e8:62:90:49:32:c5:b5:0c:a6:0a:
f9:5a:0c:62:67:50:c9:65:8c:0f:72:79:23:9c:fe:
61:11:6d:61:d3:41:f3:c8:b7:49:ae:34:1d:ce:be:
be:ed:eb:8a:af:89:de:5c:25:e3:0f:fd:c1:5f:47:
79:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:EB:FE:57:FA:42:30:83:79:2D:E0:2A:54:79:D8:11:C8:7E:28:E1
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/rev-V_pCMIN5LeAqVHnYEch-KOE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.57.144.0/21
Signature Algorithm: sha256WithRSAEncryption
14:c4:9e:68:56:26:4a:cb:13:8b:10:d0:97:bf:34:21:76:8d:
55:1a:97:30:67:5b:70:d5:02:79:81:fd:46:cc:f7:45:29:ba:
97:aa:1d:df:ca:7f:41:68:42:7d:01:ad:fa:13:08:7e:17:29:
c4:f4:ed:8e:5d:3f:ed:9d:61:0c:96:a3:29:50:e1:89:7c:c8:
00:7c:02:7e:13:2b:ab:9f:ec:b8:4a:51:53:cb:b6:9c:25:da:
e8:07:f3:3c:2c:cd:3e:b3:49:94:c3:70:92:f8:60:f6:b2:ca:
cf:b8:37:8c:61:f0:a0:92:92:9d:19:9d:1d:ce:08:82:81:27:
a0:f0:f3:05:56:d0:6c:4d:48:9d:0c:16:f8:0c:14:1f:2f:54:
ba:56:c4:b9:fa:bf:36:03:b6:13:63:a9:1f:88:97:63:06:3f:
a1:c7:23:02:d5:fc:a5:cb:35:3b:96:1c:4c:8c:9e:9a:4c:0a:
0e:11:8f:9b:b6:c5:60:3f:35:31:c6:81:80:8b:06:5b:db:e6:
8d:03:39:ac:5b:e9:d4:03:a8:ae:da:0f:84:1a:4a:b8:9e:aa:
5b:43:fd:5e:85:87:e8:7a:af:ff:23:90:bf:a4:10:33:7c:ed:
55:6a:b4:ac:24:f5:8b:44:86:47:69:ef:4d:5b:b2:06:91:76:
84:e2:96:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org