Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/A3kmKjTaGZ1wYzMrO3FAlyrxEzM.roa
File: A3kmKjTaGZ1wYzMrO3FAlyrxEzM.roa (raw, json)
Hash identifier: fMXZhT6xPgVLyDQUtC0pkmfYCo1h+GJv/10h8JqkHVk=
Subject key identifier: 03:79:26:2A:34:DA:19:9D:70:63:33:2B:3B:71:40:97:2A:F1:13:33
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0B46
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/A3kmKjTaGZ1wYzMrO3FAlyrxEzM.roa
Signing time: Thu 15 Dec 2022 02:56:55 +0000
ROA not before: Thu 15 Dec 2022 02:56:55 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18429
IP address blocks: 27.147.63.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2886 (0xb46)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Dec 15 02:56:55 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=0379262A34DA199D7063332B3B7140972AF11333
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:18:d6:8f:58:80:f3:f5:d2:cb:00:f2:ed:65:
5d:ab:7c:72:67:ca:8c:fa:71:5f:17:ea:2c:10:86:
e8:ca:a8:34:4e:c1:0c:fc:4f:86:92:0e:91:53:ac:
49:76:e7:0a:8c:f1:c4:2e:8c:58:68:ce:1e:64:98:
08:2d:44:9e:3d:77:c9:5b:62:80:d1:88:e4:ca:d4:
1b:ab:be:e1:7f:36:21:19:7c:a4:b2:2f:44:5c:a9:
8a:67:ec:00:b9:bf:83:25:01:e9:9f:c7:f3:81:a3:
ec:97:53:d5:6f:bb:84:ad:65:7d:b7:d6:1c:97:8f:
f7:35:df:36:2f:7d:25:03:cf:2b:ad:41:02:53:6f:
5e:a7:1f:f6:f7:f6:74:06:d0:18:ea:bc:a9:c6:8c:
0f:06:fb:4b:cb:e1:e5:b6:93:ff:68:0f:46:fc:e1:
f9:95:f2:23:6d:12:7c:82:e1:80:e7:9a:d0:f8:05:
c1:8a:a7:21:2e:b6:56:7f:c0:c7:bd:e6:92:4d:16:
4d:17:fd:e4:d6:0d:2b:2d:49:db:eb:75:23:60:2f:
44:c6:38:27:34:b8:c9:a3:74:7f:f2:73:c8:5a:f3:
69:35:3a:54:d1:36:01:71:e8:d5:4f:c8:a1:e9:25:
fa:7f:a6:f5:e6:10:e1:81:2e:89:a4:31:f0:97:94:
b3:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:79:26:2A:34:DA:19:9D:70:63:33:2B:3B:71:40:97:2A:F1:13:33
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/A3kmKjTaGZ1wYzMrO3FAlyrxEzM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.147.63.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:3c:33:34:74:2f:2c:24:b8:e5:77:2e:7b:9f:ed:3a:0b:ec:
35:5f:69:62:c6:b3:0c:8a:16:75:45:9d:c3:de:be:d7:d2:ce:
24:b3:ff:76:10:35:1d:08:67:b7:02:d6:64:52:27:2c:91:88:
80:f6:ca:00:a3:f9:50:0c:9b:61:d1:05:89:05:dd:ad:87:e5:
ee:12:64:95:b3:be:47:d8:84:fa:3d:46:4e:9e:0e:35:7a:21:
f1:57:3e:2a:b3:5e:1d:92:38:d5:05:9d:46:3c:c7:90:e4:97:
9c:0c:d1:cc:98:98:90:bb:7c:e7:41:19:31:fb:3c:f7:b6:f3:
a9:92:1d:bb:8f:d8:24:5b:e5:e2:bc:06:3b:7c:66:68:bb:9e:
2f:f6:d4:92:a2:f0:da:ac:87:4b:da:2f:fa:f1:b2:3e:61:bc:
50:8a:a0:a4:9d:c0:9a:8a:1c:66:5b:68:a8:98:a5:b7:69:fd:
2c:fe:3b:83:53:9c:24:df:6e:63:50:fa:ba:69:d7:fc:82:22:
dc:ab:b0:2e:37:44:01:f9:93:2e:80:0e:ed:4b:2c:59:85:50:
12:8c:c8:de:d6:f0:28:06:c0:19:dc:7e:60:c5:fd:40:72:27:
09:df:a4:5b:ae:07:85:58:a3:30:f2:2b:d1:1e:42:bd:eb:42:
5c:12:2c:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:02 2024 by rpki-client on console-ams.rpki-client.org