Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/9dXDxiQXtSGBTaH1Tqff7Bu_c8g.roa
File: 9dXDxiQXtSGBTaH1Tqff7Bu_c8g.roa (raw, json)
Hash identifier: 5HW/mGVrCsQO3OHian3fvDUwZiC2cuUpYcFOUnvyx4Y=
Subject key identifier: F5:D5:C3:C6:24:17:B5:21:81:4D:A1:F5:4E:A7:DF:EC:1B:BF:73:C8
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0AEB
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/9dXDxiQXtSGBTaH1Tqff7Bu_c8g.roa
Signing time: Thu 15 Sep 2022 02:49:25 +0000
ROA not before: Thu 15 Sep 2022 02:49:25 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18429
IP address blocks: 27.147.62.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2795 (0xaeb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Sep 15 02:49:25 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=F5D5C3C62417B521814DA1F54EA7DFEC1BBF73C8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:c5:b8:14:42:5b:7e:b9:db:ad:2d:08:41:c6:
4c:86:ea:45:5e:68:f5:6c:09:7a:df:42:42:5d:75:
2f:75:80:98:b9:f0:2e:93:c2:68:d0:3b:fd:68:39:
0f:39:21:bb:a4:01:b5:2b:c6:7b:8a:f3:9c:c2:4f:
44:5a:7f:10:05:97:b0:6a:6d:96:37:bd:4c:34:6a:
2b:9f:3e:9e:bb:dc:e1:38:95:5c:95:17:e9:2f:5b:
66:9e:9c:b3:86:20:2a:c3:a7:a7:a4:55:b4:fb:d7:
cf:a3:90:e8:cc:4c:74:0b:9b:a1:b0:17:d2:1f:34:
c5:46:03:11:3c:d6:05:ce:d4:37:b2:32:3e:a3:b2:
d8:92:0f:8c:70:c8:8a:e1:56:a2:bf:91:05:f0:dd:
07:4e:ce:4f:ee:1f:15:96:05:13:ec:1f:6b:ba:51:
31:d5:e9:f9:bf:53:43:21:91:4f:4e:2c:27:e4:9c:
99:96:9d:04:9a:01:6b:e3:80:c3:88:73:79:bd:4b:
e4:4a:e8:9a:c2:37:87:e3:46:da:4a:72:b1:ed:45:
c3:80:f9:29:0e:9e:0d:ee:de:15:f4:30:24:85:a9:
9e:d6:ce:71:4c:fc:85:a7:e0:3b:46:29:a3:2b:67:
17:ec:62:b6:e2:9e:66:0e:c0:10:ed:13:2b:a0:4d:
4f:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:D5:C3:C6:24:17:B5:21:81:4D:A1:F5:4E:A7:DF:EC:1B:BF:73:C8
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/9dXDxiQXtSGBTaH1Tqff7Bu_c8g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.147.62.0/24
Signature Algorithm: sha256WithRSAEncryption
25:df:cf:7d:1f:9d:22:f2:ee:4c:da:d1:91:4a:d7:22:c0:89:
bd:ed:e6:82:6d:66:1a:2c:8f:a4:8c:28:38:c6:b7:f2:31:98:
90:2f:62:12:87:fd:ae:3d:19:97:50:60:c2:bd:3b:cc:8f:38:
68:f3:3b:13:9f:36:b0:39:7f:de:13:e5:0c:53:35:f3:fa:af:
16:be:99:ea:27:1b:48:ab:61:25:12:2c:be:8a:a3:c9:fb:49:
0f:d1:2e:e8:c9:b0:03:af:26:f2:ba:f8:21:96:ac:fb:7f:33:
19:3e:4a:f4:ae:85:8c:cf:67:1a:78:7f:64:37:19:0f:fd:fb:
f3:03:2c:65:42:bb:7d:71:f4:a3:97:53:cf:16:c1:ac:6a:1e:
24:49:75:de:0d:d3:e6:3c:df:59:d0:31:34:cc:e0:ba:64:f0:
f2:df:27:8c:d0:dd:76:4e:8f:84:fd:bc:00:29:5a:79:bf:3d:
44:08:b9:2b:a9:0d:df:77:fe:59:50:0e:c2:02:81:7e:78:e1:
3c:ec:72:cd:ab:53:29:3a:0d:28:7f:f9:65:2b:36:cc:16:e6:
50:4a:41:44:a2:c9:77:b3:b5:17:83:bf:90:6a:3b:eb:60:c6:
6e:4a:e6:72:1f:60:0c:d8:71:06:d1:23:d0:8b:50:aa:60:3f:
42:98:fa:3c
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCuswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUQx
RTNGM0M4QkE4OURDMTMxMDQxMDM0NUY1MEMxMDA3NjE4MTI2MTAeFw0yMjA5MTUw
MjQ5MjVaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEY1RDVDM0M2MjQxN0I1
MjE4MTREQTFGNTRFQTdERkVDMUJCRjczQzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDJxbgUQlt+udutLQhBxkyG6kVeaPVsCXrfQkJddS91gJi58C6T
wmjQO/1oOQ85IbukAbUrxnuK85zCT0RafxAFl7BqbZY3vUw0aiufPp673OE4lVyV
F+kvW2aenLOGICrDp6ekVbT718+jkOjMTHQLm6GwF9IfNMVGAxE81gXO1DeyMj6j
stiSD4xwyIrhVqK/kQXw3QdOzk/uHxWWBRPsH2u6UTHV6fm/U0MhkU9OLCfknJmW
nQSaAWvjgMOIc3m9S+RK6JrCN4fjRtpKcrHtRcOA+SkOng3u3hX0MCSFqZ7WznFM
/IWn4DtGKaMrZxfsYrbinmYOwBDtEyugTU8jAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQU9dXDxiQXtSGBTaH1Tqff7Bu/c8gwHwYDVR0jBBgwFoAUXR4/PIuoncExBBA0
X1DBAHYYEmEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0dORVQv
WFI0X1BJdW9uY0V4QkJBMFgxREJBSFlZRW1FLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9YUjRfUEl1b25jRXhCQkEwWDFEQkFIWVlFbUUuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DR05FVC85ZFhEeGlRWHRTR0JUYUgxVHFm
ZjdCdV9jOGcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAG5M+
MA0GCSqGSIb3DQEBCwUAA4IBAQAl3899H50i8u5M2tGRStciwIm97eaCbWYaLI+k
jCg4xrfyMZiQL2ISh/2uPRmXUGDCvTvMjzho8zsTnzawOX/eE+UMUzXz+q8Wvpnq
JxtIq2ElEiy+iqPJ+0kP0S7oybADrybyuvghlqz7fzMZPkr0roWMz2caeH9kNxkP
/fvzAyxlQrt9cfSjl1PPFsGsah4kSXXeDdPmPN9Z0DE0zOC6ZPDy3yeM0N12To+E
/bwAKVp5vz1ECLkrqQ3fd/5ZUA7CAoF+eOE87HLNq1MpOg0of/llKzbMFuZQSkFE
osl3s7UXg7+QajvrYMZuSuZyH2AM2HEG0SPQi1CqYD9CmPo8
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:02 2024 by rpki-client on console-ams.rpki-client.org