Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/5lhi7UsYXLh7BZdq2JyN5qtWSg8.roa
File: 5lhi7UsYXLh7BZdq2JyN5qtWSg8.roa (raw, json)
Hash identifier: 18/p5oeGX4Tc9Km2VF8f8D9UZr1jJVudrj2tQZYz7y8=
Subject key identifier: E6:58:62:ED:4B:18:5C:B8:7B:05:97:6A:D8:9C:8D:E6:AB:56:4A:0F
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0787
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/5lhi7UsYXLh7BZdq2JyN5qtWSg8.roa
Signing time: Tue 29 Sep 2020 09:59:25 +0000
ROA not before: Tue 29 Sep 2020 09:59:25 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18429
IP address blocks: 27.147.40.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1927 (0x787)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Sep 29 09:59:25 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E65862ED4B185CB87B05976AD89C8DE6AB564A0F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:eb:78:14:b2:8c:62:45:8d:e5:e0:7e:e2:63:
b0:0b:f2:2a:3a:59:6c:e7:a3:e1:27:1c:7b:fe:70:
dc:5a:b1:2d:17:6e:13:9f:98:ca:1d:b1:f1:12:35:
56:ec:3d:85:8e:e5:51:3c:53:08:38:58:3c:86:a2:
e2:03:8b:0e:10:ed:77:a0:04:94:a7:ca:0d:53:90:
6d:b7:77:16:29:f5:8f:7d:f4:6b:e3:70:e1:d6:dd:
f3:9e:a4:57:3d:22:9d:48:c3:81:60:b0:21:00:05:
f0:54:f3:6d:f2:15:f9:6f:55:72:17:12:78:ce:1d:
9c:49:84:70:df:fd:b7:43:15:c7:56:bc:2b:70:e7:
f5:7a:43:38:aa:5a:2d:dc:bd:e2:c4:a9:ea:f1:18:
42:c7:eb:88:6c:0f:9a:ea:13:17:7e:b3:04:13:2a:
43:19:3a:3f:06:54:e3:62:ab:74:3e:fd:b9:7b:40:
34:21:f0:75:cb:7a:72:13:ca:ba:b4:c3:83:9e:00:
2b:9d:f7:73:05:92:df:bd:2f:c7:1e:37:0b:5b:db:
ce:45:bb:05:85:0b:a0:51:31:25:32:cb:16:1d:76:
31:57:db:50:d6:a3:32:80:63:e0:e3:22:a9:b7:0a:
e8:b7:e7:1f:97:a1:ab:ec:9c:8b:5c:1a:14:6e:8a:
ce:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:58:62:ED:4B:18:5C:B8:7B:05:97:6A:D8:9C:8D:E6:AB:56:4A:0F
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/5lhi7UsYXLh7BZdq2JyN5qtWSg8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.147.40.0/21
Signature Algorithm: sha256WithRSAEncryption
9d:7c:dc:3d:6d:f3:07:d8:ef:e2:ec:55:d9:5b:2c:79:49:fa:
c7:92:ef:e7:9c:d7:ad:b5:69:7e:d4:53:dd:3b:77:c7:60:ef:
d6:ab:d0:a3:66:a1:e0:42:17:11:46:73:a4:87:07:28:52:21:
79:99:4d:96:2b:49:b9:f8:bb:4b:b5:2c:0e:ac:07:8b:bd:db:
5d:ff:15:33:97:0e:c5:53:31:01:fe:5c:68:05:36:1d:82:80:
21:44:4c:ec:db:9c:ef:ac:77:95:b6:98:25:34:23:2d:1a:23:
93:8d:9c:c7:fc:3b:ee:bb:a4:7e:db:ce:83:7e:f3:09:cd:d3:
5d:c5:a4:c4:7f:d6:53:f7:fd:c5:a4:5b:92:e6:3e:c1:fe:a6:
26:70:ed:45:b7:f1:ad:7d:b1:88:ef:3a:ac:12:48:f9:71:9b:
48:fd:a7:21:7f:9d:6a:4a:08:a9:67:e8:09:5f:1e:e0:1a:3c:
d0:1d:3c:c7:6b:ac:cc:ac:c3:87:80:04:46:f0:36:f5:d6:b2:
22:38:94:8c:82:96:ff:41:21:0e:11:c9:a6:a8:16:31:31:1c:
5a:ed:b6:a9:bd:dd:cf:81:8b:76:69:66:f4:5f:7e:df:5e:5a:
a2:a5:be:57:67:b0:67:75:12:56:bd:c3:dd:b0:8c:39:3c:09:
24:02:99:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:02 2024 by rpki-client on console-ams.rpki-client.org