Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/598p8R-hIYd2aVcqS1H13qQ7GkI.roa
File: 598p8R-hIYd2aVcqS1H13qQ7GkI.roa (raw, json)
Hash identifier: O8x0R4+WB86jnjAtLyIw07jEQAKclJF0ZCYNcKBVKlU=
Subject key identifier: E7:DF:29:F1:1F:A1:21:87:76:69:57:2A:4B:51:F5:DE:A4:3B:1A:42
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0789
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/598p8R-hIYd2aVcqS1H13qQ7GkI.roa
Signing time: Tue 29 Sep 2020 09:59:26 +0000
ROA not before: Tue 29 Sep 2020 09:59:26 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18429
IP address blocks: 27.147.56.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1929 (0x789)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Sep 29 09:59:26 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E7DF29F11FA121877669572A4B51F5DEA43B1A42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:35:ea:e6:b6:22:af:55:4b:61:9c:68:f1:cd:
a2:38:d3:4e:16:5a:72:f0:0f:39:1f:b0:47:c8:b2:
b1:a3:97:10:f7:d9:b8:72:a6:83:38:44:eb:e9:09:
11:ce:e1:11:24:8f:5c:8a:02:50:9a:6c:47:ca:d6:
82:09:4b:d5:7e:19:e0:41:8f:a8:b1:3a:5d:06:a4:
25:3f:63:13:2c:86:6e:e9:b0:c9:ab:e5:b0:7a:ad:
75:b9:27:0d:bc:0a:d8:99:2f:0d:04:42:85:e5:a0:
4e:ec:df:be:3c:03:0d:39:15:0d:8f:20:64:12:9e:
a7:22:78:92:11:7d:a8:e0:07:bb:87:48:85:7a:d5:
62:93:23:a9:eb:8c:6b:73:68:1a:74:48:a9:6c:b6:
03:d9:cd:75:40:3c:a5:2f:9b:a0:81:1f:1e:9f:88:
ab:4e:25:03:33:2a:73:a9:49:2f:ab:a7:ed:32:54:
6b:ba:b4:e2:64:60:29:5f:ca:ec:79:eb:6a:67:53:
39:06:7e:0a:17:36:60:67:0f:e1:14:c4:36:72:bd:
db:ef:40:d0:94:5c:25:0e:74:cb:79:3d:a3:4f:63:
f6:b2:ed:06:f6:20:20:1e:3e:e9:b2:e7:27:b2:67:
b3:19:fc:a3:c0:af:38:24:ba:c0:76:49:ad:d0:d3:
77:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:DF:29:F1:1F:A1:21:87:76:69:57:2A:4B:51:F5:DE:A4:3B:1A:42
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/598p8R-hIYd2aVcqS1H13qQ7GkI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.147.56.0/21
Signature Algorithm: sha256WithRSAEncryption
75:86:17:03:85:86:79:8d:04:9a:69:36:8d:49:1e:1f:e4:e3:
88:05:c3:74:13:76:2d:37:b6:32:96:5b:3e:99:88:72:98:85:
d1:08:73:ab:a4:4f:fc:2a:88:fe:d5:89:84:fe:e2:36:27:f3:
27:2d:dd:38:21:8a:c9:ba:ef:06:39:59:20:d0:b8:d4:a5:3d:
e3:78:d3:1b:16:bb:67:21:5e:8b:4e:10:fc:c0:c6:e1:7c:e8:
aa:73:a2:fb:ec:be:b1:47:5f:c3:3d:61:5e:4c:c2:37:30:46:
53:bf:a0:6d:57:f2:38:66:70:cd:9a:43:98:db:95:2a:e8:a4:
a9:f8:ae:cb:23:43:71:fc:7f:c2:0e:e9:83:41:2d:7d:a0:59:
b6:51:00:3c:08:24:50:88:6f:e2:a4:f3:40:57:6e:b4:9d:5d:
4b:91:ad:0c:10:7b:39:b8:46:c0:5c:f0:d1:e4:ef:70:7b:f1:
9a:69:07:00:a5:5f:14:5e:28:2f:b3:75:3c:dd:49:e2:c6:67:
0e:73:8d:28:45:d5:fe:22:cc:10:c5:88:29:b2:cb:c1:36:8a:
11:e6:ac:1f:ec:63:ba:be:24:17:9b:01:47:f1:54:02:48:79:
50:f0:7a:02:b1:91:b7:e6:86:3f:26:e5:2a:d0:af:00:0d:53:
4d:0e:46:c1
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICB4kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUQx
RTNGM0M4QkE4OURDMTMxMDQxMDM0NUY1MEMxMDA3NjE4MTI2MTAeFw0yMDA5Mjkw
OTU5MjZaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEU3REYyOUYxMUZBMTIx
ODc3NjY5NTcyQTRCNTFGNURFQTQzQjFBNDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDINermtiKvVUthnGjxzaI4004WWnLwDzkfsEfIsrGjlxD32bhy
poM4ROvpCRHO4REkj1yKAlCabEfK1oIJS9V+GeBBj6ixOl0GpCU/YxMshm7psMmr
5bB6rXW5Jw28CtiZLw0EQoXloE7s3748Aw05FQ2PIGQSnqcieJIRfajgB7uHSIV6
1WKTI6nrjGtzaBp0SKlstgPZzXVAPKUvm6CBHx6fiKtOJQMzKnOpSS+rp+0yVGu6
tOJkYClfyux562pnUzkGfgoXNmBnD+EUxDZyvdvvQNCUXCUOdMt5PaNPY/ay7Qb2
ICAePumy5yeyZ7MZ/KPArzgkusB2Sa3Q03ctAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQU598p8R+hIYd2aVcqS1H13qQ7GkIwHwYDVR0jBBgwFoAUXR4/PIuoncExBBA0
X1DBAHYYEmEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0dORVQv
WFI0X1BJdW9uY0V4QkJBMFgxREJBSFlZRW1FLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9YUjRfUEl1b25jRXhCQkEwWDFEQkFIWVlFbUUuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DR05FVC81OThwOFItaElZZDJhVmNxUzFI
MTNxUTdHa0kucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDG5M4
MA0GCSqGSIb3DQEBCwUAA4IBAQB1hhcDhYZ5jQSaaTaNSR4f5OOIBcN0E3YtN7Yy
lls+mYhymIXRCHOrpE/8Koj+1YmE/uI2J/MnLd04IYrJuu8GOVkg0LjUpT3jeNMb
FrtnIV6LThD8wMbhfOiqc6L77L6xR1/DPWFeTMI3MEZTv6BtV/I4ZnDNmkOY25Uq
6KSp+K7LI0Nx/H/CDumDQS19oFm2UQA8CCRQiG/ipPNAV260nV1Lka0MEHs5uEbA
XPDR5O9we/GaaQcApV8UXigvs3U83UnixmcOc40oRdX+IswQxYgpssvBNooR5qwf
7GO6viQXmwFH8VQCSHlQ8HoCsZG35oY/JuUq0K8ADVNNDkbB
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org