Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/0n8OjlbxyJd8W_-VS-XhJo_BBWc.roa
File: 0n8OjlbxyJd8W_-VS-XhJo_BBWc.roa (raw, json)
Hash identifier: zsZqkaTnP3hu/aSLk6WCQ2tqPM74oF3fq1IXruzM64Q=
Subject key identifier: D2:7F:0E:8E:56:F1:C8:97:7C:5B:FF:95:4B:E5:E1:26:8F:C1:05:67
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0AEB
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/0n8OjlbxyJd8W_-VS-XhJo_BBWc.roa
Signing time: Thu 15 Sep 2022 02:49:29 +0000
ROA not before: Thu 15 Sep 2022 02:49:29 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18429
IP address blocks: 27.147.24.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2795 (0xaeb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Sep 15 02:49:29 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D27F0E8E56F1C8977C5BFF954BE5E1268FC10567
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:ea:96:3b:a2:c8:4c:d2:74:d8:dc:58:a8:ae:
8d:36:de:c1:71:21:d8:e4:82:39:a3:8f:b2:4f:33:
6f:6e:40:c0:2c:f9:50:6d:c0:2e:79:42:e2:8e:ef:
70:10:d5:ec:56:11:b2:c3:b5:7f:b0:7c:57:12:25:
2c:05:32:44:fe:c9:3a:f0:fc:14:95:fd:df:3e:0c:
7f:79:94:8d:10:2b:cd:a9:07:83:ed:45:f9:96:8f:
3d:d1:2a:b1:ed:bb:05:44:b7:d6:b1:50:2a:20:cc:
36:00:9f:43:23:cf:e8:06:10:8b:c2:67:74:9e:c3:
0d:4e:66:0d:d3:08:72:ad:82:c2:95:0d:a6:1d:9a:
33:89:5a:a3:1f:a2:a9:d8:ea:17:f1:ed:86:ef:fc:
5a:a5:90:94:9e:ad:fa:59:fc:09:56:71:12:24:9f:
e8:08:d0:b5:5d:e0:dd:96:08:f5:8b:b7:fb:79:14:
dd:0a:0b:c7:bb:d9:1a:5c:d6:3f:09:ea:36:ce:af:
7f:f1:c9:95:40:90:54:d4:bd:db:a0:7d:76:0a:40:
20:21:4f:65:7b:89:ff:b8:91:19:8a:78:d1:41:4b:
6b:fc:0b:14:f5:37:15:ea:01:dd:31:dc:36:67:15:
18:6b:c4:27:5d:18:db:f2:30:43:a7:6d:0e:ea:7a:
eb:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:7F:0E:8E:56:F1:C8:97:7C:5B:FF:95:4B:E5:E1:26:8F:C1:05:67
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/0n8OjlbxyJd8W_-VS-XhJo_BBWc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.147.24.0/21
Signature Algorithm: sha256WithRSAEncryption
7e:b0:8f:38:6c:10:71:bf:4f:1b:0d:0e:24:61:ab:43:a3:c6:
01:a8:4e:59:90:83:4f:f1:12:9b:b2:e2:ed:c8:d5:40:5c:8c:
f9:1e:f8:30:e4:bf:81:5c:42:79:8a:f8:f4:46:ea:10:71:c6:
c5:b6:e6:ba:a6:18:6a:4a:9d:1c:1d:65:2a:54:d4:03:ef:09:
b0:53:4c:4d:ee:1b:44:ea:75:dd:37:7a:ae:6b:f6:b2:41:f7:
45:e6:d3:8a:b4:23:a4:c6:e1:17:d0:18:be:cf:0f:ab:dc:aa:
33:21:73:6f:97:74:33:87:8a:64:3d:74:76:07:1e:e6:c3:64:
0a:69:ab:fe:07:f8:e6:fb:f9:f7:4d:01:85:d0:ef:98:f7:62:
6a:98:e2:f9:63:f8:74:51:d6:ae:fb:8c:2d:a2:ff:33:31:ba:
69:38:95:a8:84:fc:b9:70:5f:e9:2d:66:ea:f5:5e:9f:6e:8b:
4a:80:b2:da:ef:7a:a0:4e:e5:c3:a8:22:97:20:e3:bb:90:b9:
0e:ab:6d:b2:4c:6d:e4:38:9d:f4:4a:90:5d:61:1b:57:db:7b:
fe:f9:9f:55:d4:71:9a:9e:b6:3a:0d:43:fe:55:c1:58:ab:72:
07:fd:1f:e4:a9:de:84:ba:88:dd:63:19:83:32:a3:ba:7c:dd:
51:5a:16:49
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCuswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUQx
RTNGM0M4QkE4OURDMTMxMDQxMDM0NUY1MEMxMDA3NjE4MTI2MTAeFw0yMjA5MTUw
MjQ5MjlaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEQyN0YwRThFNTZGMUM4
OTc3QzVCRkY5NTRCRTVFMTI2OEZDMTA1NjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDK6pY7oshM0nTY3Fioro023sFxIdjkgjmjj7JPM29uQMAs+VBt
wC55QuKO73AQ1exWEbLDtX+wfFcSJSwFMkT+yTrw/BSV/d8+DH95lI0QK82pB4Pt
RfmWjz3RKrHtuwVEt9axUCogzDYAn0Mjz+gGEIvCZ3Seww1OZg3TCHKtgsKVDaYd
mjOJWqMfoqnY6hfx7Ybv/FqlkJSerfpZ/AlWcRIkn+gI0LVd4N2WCPWLt/t5FN0K
C8e72Rpc1j8J6jbOr3/xyZVAkFTUvdugfXYKQCAhT2V7if+4kRmKeNFBS2v8CxT1
NxXqAd0x3DZnFRhrxCddGNvyMEOnbQ7qeutDAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQU0n8OjlbxyJd8W/+VS+XhJo/BBWcwHwYDVR0jBBgwFoAUXR4/PIuoncExBBA0
X1DBAHYYEmEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0dORVQv
WFI0X1BJdW9uY0V4QkJBMFgxREJBSFlZRW1FLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9YUjRfUEl1b25jRXhCQkEwWDFEQkFIWVlFbUUuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DR05FVC8wbjhPamxieHlKZDhXXy1WUy1Y
aEpvX0JCV2Mucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDG5MY
MA0GCSqGSIb3DQEBCwUAA4IBAQB+sI84bBBxv08bDQ4kYatDo8YBqE5ZkINP8RKb
suLtyNVAXIz5Hvgw5L+BXEJ5ivj0RuoQccbFtua6phhqSp0cHWUqVNQD7wmwU0xN
7htE6nXdN3qua/ayQfdF5tOKtCOkxuEX0Bi+zw+r3KozIXNvl3Qzh4pkPXR2Bx7m
w2QKaav+B/jm+/n3TQGF0O+Y92JqmOL5Y/h0Udau+4wtov8zMbppOJWohPy5cF/p
LWbq9V6fbotKgLLa73qgTuXDqCKXIOO7kLkOq22yTG3kOJ30SpBdYRtX23v++Z9V
1HGanrY6DUP+VcFYq3IH/R/kqd6EuojdYxmDMqO6fN1RWhZJ
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org