Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/sMPDpqzE1zcvxzQFpILE2l2z6DU.roa
File: sMPDpqzE1zcvxzQFpILE2l2z6DU.roa (raw, json)
Hash identifier: n07Fq9FMP2VLoqG1T7imtoYe4kC9pVwlqGtm+kpJtqw=
Subject key identifier: B0:C3:C3:A6:AC:C4:D7:37:2F:C7:34:05:A4:82:C4:DA:5D:B3:E8:35
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0B7A
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/sMPDpqzE1zcvxzQFpILE2l2z6DU.roa
Signing time: Mon 19 Dec 2022 08:48:25 +0000
ROA not before: Mon 19 Dec 2022 08:48:25 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18429
IP address blocks: 124.155.168.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2938 (0xb7a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Dec 19 08:48:25 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B0C3C3A6ACC4D7372FC73405A482C4DA5DB3E835
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:86:2a:10:48:eb:65:c0:14:cb:07:45:6f:b2:
3c:10:f0:6f:6f:1a:ae:47:1d:de:88:05:17:43:ee:
ba:2b:70:21:33:0f:27:52:34:85:f7:4d:07:3d:9c:
c6:35:04:74:65:37:a4:b6:f8:5f:7e:c7:a7:cc:a5:
90:bf:af:1b:b3:6a:b4:40:3a:be:2c:b9:b4:78:21:
28:98:96:11:f6:a2:e5:e6:91:f1:e3:d7:75:27:96:
b5:79:e9:d4:d2:a1:e6:9f:14:d2:ee:42:69:46:80:
2f:0c:d9:32:73:0d:95:e9:fc:dd:2e:55:6a:e1:1b:
1d:67:2d:ca:67:aa:fd:a0:f0:70:23:6f:c3:f6:1a:
62:1d:a1:5c:84:ef:55:f3:3a:8b:e3:cb:fe:46:e2:
9f:04:b0:34:12:df:f1:97:20:ae:92:28:7e:82:77:
8b:5f:ef:28:15:76:b6:3f:c3:cd:5e:17:d7:d6:13:
5e:3c:88:69:cd:5e:ce:33:6c:f5:a6:4f:8d:c4:83:
16:62:12:f6:7f:22:34:9d:f8:c3:cc:df:74:82:09:
d5:7b:ae:11:38:b9:62:39:67:ef:28:e2:96:e9:bb:
f7:c5:17:e2:6f:ec:35:c4:35:b1:ed:fb:2e:26:5f:
2a:19:c0:80:c4:a0:d6:b3:aa:a3:75:bc:c3:c3:86:
4c:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:C3:C3:A6:AC:C4:D7:37:2F:C7:34:05:A4:82:C4:DA:5D:B3:E8:35
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/sMPDpqzE1zcvxzQFpILE2l2z6DU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.155.168.0/23
Signature Algorithm: sha256WithRSAEncryption
34:13:ef:23:7e:70:16:34:11:a2:1b:44:fe:8d:72:04:69:a3:
7b:8e:ce:ed:3b:e6:2e:e0:08:44:6c:a0:dd:51:ac:4a:df:02:
cd:7e:d8:f8:3f:18:8b:97:e7:0b:7d:92:db:8d:98:2d:23:77:
6b:8b:ce:85:59:03:e6:0f:94:9f:87:8e:f2:ed:97:76:c2:07:
49:b2:a0:c8:74:48:98:b1:d9:7a:6e:10:0a:5b:24:c2:f6:2b:
6c:31:26:f4:70:d6:32:42:8c:d0:67:fd:e2:12:bf:5f:75:b9:
ea:29:15:d6:69:5a:8a:18:af:fc:42:2f:fd:ed:e1:bb:39:33:
df:ef:aa:95:63:67:2a:3c:70:9e:5c:ea:d3:c5:d0:6b:8f:99:
16:a2:e5:71:d5:82:63:27:eb:a2:6c:a3:d6:78:3c:6e:de:64:
47:05:c8:b3:91:8e:b7:89:e9:94:98:07:7f:e2:53:ed:fd:69:
ee:7e:91:39:c7:c7:f0:18:f5:d2:07:01:ae:e5:96:87:60:6f:
55:b6:45:e2:e5:9f:e3:50:20:88:70:10:26:0a:d0:8e:52:1f:
49:8e:71:88:c4:e6:df:64:59:89:ce:48:34:3a:b1:de:47:e4:
38:a9:a8:ec:c8:05:b5:d8:ed:60:a8:1c:9b:b0:d3:d2:df:5b:
71:50:03:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org