Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/ypRXSeLOHwGb1F0YgTXFSar-6X4.roa
File: ypRXSeLOHwGb1F0YgTXFSar-6X4.roa (raw, json)
Hash identifier: nrad515E1W1mAfWyZeI0KK1BJWRU4TgBQouLO9Gx74w=
Subject key identifier: CA:94:57:49:E2:CE:1F:01:9B:D4:5D:18:81:35:C5:49:AA:FE:E9:7E
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0929
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/ypRXSeLOHwGb1F0YgTXFSar-6X4.roa
Signing time: Sun 07 Feb 2021 13:08:15 +0000
ROA not before: Sun 07 Feb 2021 13:08:15 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18429
IP address blocks: 61.57.148.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2345 (0x929)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Feb 7 13:08:15 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=CA945749E2CE1F019BD45D188135C549AAFEE97E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b2:17:be:6f:4f:16:9e:bb:af:ef:c2:7f:d1:
3d:2f:88:cb:35:1e:b5:ac:dd:b3:98:70:0e:89:15:
c9:15:43:0d:25:a1:2b:31:8d:a5:83:69:e9:ac:1b:
c8:80:21:27:60:2d:65:d8:3c:cd:79:59:ff:9a:76:
c4:e5:b5:00:d7:58:9f:6a:10:e2:54:d7:3a:8a:76:
8f:ce:eb:b4:cc:51:c6:d1:91:76:14:5d:86:fc:1d:
62:da:d6:4d:d5:e0:05:56:9d:17:78:bc:23:81:06:
af:5a:60:a7:9a:bf:f8:93:be:19:16:58:a3:1a:92:
9c:b8:5c:58:68:8c:33:82:c3:77:38:06:5c:75:ec:
16:2f:0f:e5:3f:a5:01:b2:4b:b8:40:34:c0:cb:79:
8d:de:a8:54:f6:f4:50:66:f6:4a:78:15:ce:9e:cd:
96:47:88:25:b6:9a:b2:57:30:f0:0b:e8:c8:04:31:
6b:7f:d7:7b:47:bc:10:94:a2:10:74:04:48:e8:63:
9d:3b:51:e0:a0:f0:60:a1:2a:55:78:3e:e5:7a:f4:
c6:89:d3:c7:73:24:74:9c:b4:4a:58:90:62:fa:bc:
30:27:68:06:ed:ee:ef:17:85:03:b2:cd:c3:a5:94:
ab:1e:ff:d8:70:e8:02:37:04:e8:c2:68:16:6c:b8:
57:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:94:57:49:E2:CE:1F:01:9B:D4:5D:18:81:35:C5:49:AA:FE:E9:7E
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/ypRXSeLOHwGb1F0YgTXFSar-6X4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.57.148.0/24
Signature Algorithm: sha256WithRSAEncryption
28:f2:bc:85:b7:95:de:4a:6c:ab:cd:5f:05:ed:64:41:32:af:
54:26:fd:02:9c:e8:71:09:de:8c:fa:05:4b:c1:f6:6a:e3:e0:
64:35:75:4f:1c:05:83:1d:15:01:4b:97:25:3a:e6:ff:ac:0e:
a8:c4:bb:40:6d:9e:e2:c4:bd:b0:eb:3d:27:f2:a4:aa:a5:c8:
af:23:eb:c5:48:e2:37:a9:0c:4c:a1:88:28:a5:b9:6a:73:83:
17:2f:39:71:ab:65:38:cc:14:a5:1e:78:62:91:60:c8:67:bd:
ab:66:df:f2:61:ab:2d:b7:ac:c2:9a:2b:31:ca:ff:38:13:e4:
21:0c:2d:d8:3b:4a:35:92:56:7c:99:e6:1e:aa:4a:06:ca:59:
8b:03:d3:a5:4f:96:7c:de:dd:de:f4:af:07:8e:4a:dc:52:17:
56:a5:88:b2:17:4b:98:a8:03:09:01:a1:18:29:f2:2f:9d:93:
92:87:41:21:dd:ff:29:6a:b1:55:15:ee:d6:88:43:94:96:65:
cf:37:83:d0:1c:03:dc:85:9c:d2:b2:8b:5a:79:a8:a2:20:50:
d6:3d:8a:08:c2:7f:43:d3:d6:27:78:cc:3b:a3:e4:df:d0:9d:
15:9c:af:fb:7c:cd:48:73:5a:08:c9:88:34:1c:85:5d:89:e1:
26:61:9b:01
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCSkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUQx
RTNGM0M4QkE4OURDMTMxMDQxMDM0NUY1MEMxMDA3NjE4MTI2MTAeFw0yMTAyMDcx
MzA4MTVaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKENBOTQ1NzQ5RTJDRTFG
MDE5QkQ0NUQxODgxMzVDNTQ5QUFGRUU5N0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDHshe+b08Wnruv78J/0T0viMs1HrWs3bOYcA6JFckVQw0loSsx
jaWDaemsG8iAISdgLWXYPM15Wf+adsTltQDXWJ9qEOJU1zqKdo/O67TMUcbRkXYU
XYb8HWLa1k3V4AVWnRd4vCOBBq9aYKeav/iTvhkWWKMakpy4XFhojDOCw3c4Blx1
7BYvD+U/pQGyS7hANMDLeY3eqFT29FBm9kp4Fc6ezZZHiCW2mrJXMPAL6MgEMWt/
13tHvBCUohB0BEjoY507UeCg8GChKlV4PuV69MaJ08dzJHSctEpYkGL6vDAnaAbt
7u8XhQOyzcOllKse/9hw6AI3BOjCaBZsuFe1AgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUypRXSeLOHwGb1F0YgTXFSar+6X4wHwYDVR0jBBgwFoAUXR4/PIuoncExBBA0
X1DBAHYYEmEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0dORVQv
WFI0X1BJdW9uY0V4QkJBMFgxREJBSFlZRW1FLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9YUjRfUEl1b25jRXhCQkEwWDFEQkFIWVlFbUUuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DR05FVC95cFJYU2VMT0h3R2IxRjBZZ1RY
RlNhci02WDQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAPTmU
MA0GCSqGSIb3DQEBCwUAA4IBAQAo8ryFt5XeSmyrzV8F7WRBMq9UJv0CnOhxCd6M
+gVLwfZq4+BkNXVPHAWDHRUBS5clOub/rA6oxLtAbZ7ixL2w6z0n8qSqpcivI+vF
SOI3qQxMoYgopblqc4MXLzlxq2U4zBSlHnhikWDIZ72rZt/yYastt6zCmisxyv84
E+QhDC3YO0o1klZ8meYeqkoGylmLA9OlT5Z83t3e9K8HjkrcUhdWpYiyF0uYqAMJ
AaEYKfIvnZOSh0Eh3f8parFVFe7WiEOUlmXPN4PQHAPchZzSsotaeaiiIFDWPYoI
wn9D09YneMw7o+Tf0J0VnK/7fM1Ic1oIyYg0HIVdieEmYZsB
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org