Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/zQnDw2PcPw6D3gVB7UHHXdfqPWs.roa
File: zQnDw2PcPw6D3gVB7UHHXdfqPWs.roa (raw, json)
Hash identifier: EeouJy0FD2b0jXxdyiwbD1//hsXNuTp7fgWfZSQbvKM=
Subject key identifier: CD:09:C3:C3:63:DC:3F:0E:83:DE:05:41:ED:41:C7:5D:D7:EA:3D:6B
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0B6A
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/zQnDw2PcPw6D3gVB7UHHXdfqPWs.roa
Signing time: Fri 16 Dec 2022 04:16:22 +0000
ROA not before: Fri 16 Dec 2022 04:16:22 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18429
IP address blocks: 123.50.32.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2922 (0xb6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Dec 16 04:16:22 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=CD09C3C363DC3F0E83DE0541ED41C75DD7EA3D6B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:40:3b:cd:3b:69:3c:b2:1c:03:89:df:f3:cb:
1d:dc:41:af:aa:14:b9:6a:42:6a:97:fc:ca:ae:83:
f6:db:6c:f9:99:50:36:57:f5:39:97:55:4c:ee:de:
7c:59:9c:d0:ae:a2:a1:3a:55:ce:d2:19:16:7e:d5:
e4:61:93:89:16:35:eb:82:ff:12:2f:07:3a:9d:41:
01:eb:f2:c1:fb:38:07:7f:0a:ce:60:e5:5f:aa:af:
2d:57:de:e3:c2:ec:b5:d8:fb:7f:48:a0:86:db:59:
56:77:1f:a4:d5:f0:29:77:f3:ba:09:69:35:03:b5:
54:9e:dc:73:fd:fd:35:6d:a1:e9:2c:68:95:23:e7:
fa:09:b3:dc:54:c0:2c:be:b0:d9:e8:b1:5b:47:f7:
a2:03:0b:9f:e8:7e:93:83:dd:ab:2d:70:4e:f3:4f:
7a:1f:6d:54:d8:49:44:ab:a0:5e:af:92:53:8a:e3:
c5:31:6e:0d:ca:22:0c:a3:1f:aa:05:ea:f4:6e:30:
21:8a:0b:c7:29:dd:37:93:0c:83:01:be:08:9f:a1:
33:e1:ea:83:68:36:db:66:c9:f5:4e:4e:cf:06:3a:
e6:a0:00:f4:4c:20:2b:fc:31:74:3e:0f:b6:2e:8f:
40:3c:48:7f:bf:d5:83:70:b7:ee:b5:e2:93:78:c0:
b9:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:09:C3:C3:63:DC:3F:0E:83:DE:05:41:ED:41:C7:5D:D7:EA:3D:6B
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/zQnDw2PcPw6D3gVB7UHHXdfqPWs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.50.32.0/19
Signature Algorithm: sha256WithRSAEncryption
03:65:c3:a2:85:50:68:c1:01:cd:87:bd:63:7c:e0:91:44:04:
e5:89:bd:f9:54:9d:6e:dd:b3:de:b6:e1:0b:5b:2f:36:6c:e7:
d6:98:7a:91:74:c1:56:20:1d:b3:2c:66:2f:d7:cc:28:04:c6:
da:b5:24:ba:9c:a6:26:5d:a9:b8:7d:68:0d:13:25:7d:95:0e:
aa:03:44:5e:a4:18:e6:c0:83:ab:eb:84:b6:7d:cd:05:6b:2c:
e7:c5:53:d9:ac:8c:b5:3c:66:c3:e7:fa:83:05:49:55:ee:41:
a7:ea:cc:1a:bc:95:59:b2:1b:87:d1:26:3e:71:58:66:be:a4:
ff:c6:f0:2b:0f:e0:40:eb:93:b8:16:d7:41:57:de:e2:44:9f:
82:e3:91:c4:9c:e1:93:52:c1:00:09:2a:38:b7:e1:34:d4:16:
7a:c6:b5:59:f0:4c:4a:25:c2:9a:61:5a:d5:56:a1:4c:2e:83:
f3:79:b9:ae:cc:63:e2:af:e1:76:9d:f1:de:f2:14:a9:02:09:
ab:21:63:79:59:4e:90:51:b3:c1:74:0f:e9:38:c5:e4:51:de:
7c:10:f8:46:82:7c:2c:d0:56:16:67:44:0f:01:64:42:9b:48:
db:28:f3:a8:a9:d0:f9:4d:fd:c1:b2:28:c1:9c:9d:8f:a1:05:
c4:fc:03:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org