Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/vbuQxxt9c7__Uyi2CWC7olK0AHc.roa
File: vbuQxxt9c7__Uyi2CWC7olK0AHc.roa (raw, json)
Hash identifier: 7d+rFlPTiCHgWH3zMNm6QV9G+QTx+NXNKAgFGsCU9ws=
Subject key identifier: BD:BB:90:C7:1B:7D:73:BF:FF:53:28:B6:09:60:BB:A2:52:B4:00:77
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0AEB
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/vbuQxxt9c7__Uyi2CWC7olK0AHc.roa
Signing time: Thu 15 Sep 2022 02:49:30 +0000
ROA not before: Thu 15 Sep 2022 02:49:30 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18429
IP address blocks: 61.57.136.0/21 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2795 (0xaeb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Sep 15 02:49:30 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=BDBB90C71B7D73BFFF5328B60960BBA252B40077
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:7a:60:ef:ef:2c:3b:c7:2c:1b:c3:36:44:50:
72:b3:16:74:a3:51:16:4a:6f:f0:40:47:69:2a:53:
7d:57:4c:f8:e8:92:f2:9a:3e:67:55:25:a1:01:80:
fb:8a:2a:89:db:95:b1:9c:eb:73:7d:5c:83:62:aa:
db:96:ae:29:ab:43:e1:11:ad:e6:aa:9b:d1:13:e4:
cc:d2:09:63:7a:24:75:00:f1:14:b4:06:b7:e9:ce:
83:03:84:05:6b:e1:a0:4e:3b:ec:90:bd:70:62:0d:
25:37:7a:ee:9c:fd:1c:86:83:a9:55:5c:87:43:21:
89:41:40:7e:57:81:44:b4:65:6c:a8:c3:d6:c6:cf:
e9:7d:26:e6:a8:04:57:f7:e6:22:41:ef:b0:ff:27:
81:c1:33:c5:05:d4:38:0b:76:70:99:65:d0:e3:c3:
94:75:fe:7f:f3:b8:95:9b:23:3a:1e:83:f8:3c:18:
45:dd:f1:9b:9c:9c:6f:cd:33:d6:75:11:f6:ae:91:
d7:48:05:1d:41:08:09:ea:c2:e5:8f:20:85:88:fe:
fe:db:ca:19:68:d4:c1:6c:e3:82:94:b6:2d:9e:40:
2c:5a:ff:ca:7c:a9:d7:46:29:37:7d:da:9c:b1:b1:
de:3d:7c:55:79:78:69:c0:d3:7d:9c:d0:0a:32:94:
97:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:BB:90:C7:1B:7D:73:BF:FF:53:28:B6:09:60:BB:A2:52:B4:00:77
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/vbuQxxt9c7__Uyi2CWC7olK0AHc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.57.136.0/21
Signature Algorithm: sha256WithRSAEncryption
5d:3c:05:d8:28:7e:eb:f9:b0:00:52:99:dd:28:42:01:3a:c7:
ff:e6:d8:45:89:87:de:c3:c3:b9:bf:1e:28:93:bd:4f:ac:f9:
f7:43:2a:fa:3b:72:ba:dc:f3:cd:b4:06:a7:28:0e:b9:ad:78:
a6:03:f0:6d:58:d4:e4:58:f9:0c:48:c8:78:dd:75:74:c1:d3:
cb:45:c1:bc:d4:36:18:f2:61:4b:8a:bb:0d:d0:01:4f:9f:dc:
43:0e:78:32:ed:d6:3d:45:30:65:48:37:00:bb:9f:a6:f2:ba:
b0:f8:b9:67:ab:2e:b1:0c:45:2b:b5:a4:de:ab:86:ad:86:9b:
52:5c:4a:3f:ad:b0:26:80:ee:a7:1d:2c:90:96:c9:ce:ee:e6:
99:02:c2:ec:a4:0c:a2:9e:18:b1:44:13:b6:68:dd:1e:21:bd:
30:b0:89:a1:ad:c4:d7:d5:b9:df:8a:95:7d:a4:82:b4:1c:02:
a6:b5:9d:52:67:28:af:f6:7b:67:e9:cf:ad:ea:a6:39:a3:97:
bf:ac:4e:f9:ed:52:dd:5c:b7:6b:99:b6:aa:04:d1:9f:21:48:
84:3b:d9:6f:8c:12:79:72:fa:f4:ee:eb:0d:32:56:cd:d7:5f:
21:c7:b9:ec:78:a1:a0:a1:e5:22:20:c9:1c:88:4e:66:3d:5a:
d6:8c:50:f6
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCuswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUQx
RTNGM0M4QkE4OURDMTMxMDQxMDM0NUY1MEMxMDA3NjE4MTI2MTAeFw0yMjA5MTUw
MjQ5MzBaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEJEQkI5MEM3MUI3RDcz
QkZGRjUzMjhCNjA5NjBCQkEyNTJCNDAwNzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQD7emDv7yw7xywbwzZEUHKzFnSjURZKb/BAR2kqU31XTPjokvKa
PmdVJaEBgPuKKonblbGc63N9XINiqtuWrimrQ+ERreaqm9ET5MzSCWN6JHUA8RS0
BrfpzoMDhAVr4aBOO+yQvXBiDSU3eu6c/RyGg6lVXIdDIYlBQH5XgUS0ZWyow9bG
z+l9JuaoBFf35iJB77D/J4HBM8UF1DgLdnCZZdDjw5R1/n/zuJWbIzoeg/g8GEXd
8ZucnG/NM9Z1EfaukddIBR1BCAnqwuWPIIWI/v7byhlo1MFs44KUti2eQCxa/8p8
qddGKTd92pyxsd49fFV5eGnA032c0AoylJfPAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUvbuQxxt9c7//Uyi2CWC7olK0AHcwHwYDVR0jBBgwFoAUXR4/PIuoncExBBA0
X1DBAHYYEmEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0dORVQv
WFI0X1BJdW9uY0V4QkJBMFgxREJBSFlZRW1FLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9YUjRfUEl1b25jRXhCQkEwWDFEQkFIWVlFbUUuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DR05FVC92YnVReHh0OWM3X19VeWkyQ1dD
N29sSzBBSGMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDPTmI
MA0GCSqGSIb3DQEBCwUAA4IBAQBdPAXYKH7r+bAAUpndKEIBOsf/5thFiYfew8O5
vx4ok71PrPn3Qyr6O3K63PPNtAanKA65rXimA/BtWNTkWPkMSMh43XV0wdPLRcG8
1DYY8mFLirsN0AFPn9xDDngy7dY9RTBlSDcAu5+m8rqw+Llnqy6xDEUrtaTeq4at
hptSXEo/rbAmgO6nHSyQlsnO7uaZAsLspAyinhixRBO2aN0eIb0wsImhrcTX1bnf
ipV9pIK0HAKmtZ1SZyiv9ntn6c+t6qY5o5e/rE757VLdXLdrmbaqBNGfIUiEO9lv
jBJ5cvr07usNMlbN118hx7nseKGgoeUiIMkciE5mPVrWjFD2
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org