Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/C9ZvZqGRvc09KG21xM-A-UPURss.roa
File: C9ZvZqGRvc09KG21xM-A-UPURss.roa (raw, json)
Hash identifier: ko1QyF9hc/DJCAtBy6DEoQIFcaqP+WGqBg83jE6ydx0=
Subject key identifier: 0B:D6:6F:66:A1:91:BD:CD:3D:28:6D:B5:C4:CF:80:F9:43:D4:46:CB
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 078A
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/C9ZvZqGRvc09KG21xM-A-UPURss.roa
Signing time: Tue 29 Sep 2020 09:59:27 +0000
ROA not before: Tue 29 Sep 2020 09:59:27 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18429
IP address blocks: 27.147.61.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1930 (0x78a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Sep 29 09:59:27 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0BD66F66A191BDCD3D286DB5C4CF80F943D446CB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:85:4f:98:3a:32:cf:cc:39:08:2e:d3:77:5d:
c6:d2:b5:06:3a:5c:d5:d3:a8:c8:e5:d1:5a:ce:e3:
64:73:fe:27:49:c1:0d:fe:59:cb:02:01:4a:6b:8d:
53:23:be:95:6d:a0:e3:22:68:50:d5:43:fb:e5:3d:
9a:59:67:a6:9d:dd:83:a8:21:45:c1:f2:f4:4d:09:
77:07:9e:6f:a1:da:a2:50:ec:ff:f1:53:fe:b1:53:
ff:5d:e0:a2:dd:4c:83:b9:5a:de:5a:e2:c6:51:c2:
2d:3c:dc:58:a4:75:e2:30:4d:19:45:0c:e9:80:2a:
34:27:c3:00:57:13:fd:c6:46:ac:45:61:c7:9d:34:
0a:9d:71:63:36:8b:5a:48:71:2b:c0:ed:13:a3:32:
9c:2b:fc:c3:48:e4:70:e3:a7:f1:a1:91:4d:ea:0d:
77:50:0e:9b:52:cf:e0:c5:bb:01:62:49:37:15:44:
8a:e3:3b:a4:55:cd:75:5f:49:c0:30:88:5a:67:77:
12:b9:83:98:4d:5f:2f:d1:e9:6f:db:88:13:26:10:
73:71:12:bb:67:cc:6b:80:30:18:df:eb:69:45:81:
c4:bc:de:16:75:b6:b7:c5:7f:78:6b:5a:d9:e0:d9:
13:c3:27:2a:66:09:3c:df:61:93:79:43:a0:39:40:
2b:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:D6:6F:66:A1:91:BD:CD:3D:28:6D:B5:C4:CF:80:F9:43:D4:46:CB
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/C9ZvZqGRvc09KG21xM-A-UPURss.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.147.61.0/24
Signature Algorithm: sha256WithRSAEncryption
79:ee:de:de:6d:9c:7c:14:97:6f:ce:6a:ab:d1:a1:08:a7:a7:
62:51:94:cb:a5:26:20:b1:25:8a:19:01:41:01:9b:d8:db:2a:
18:6d:a9:04:9f:84:02:9f:9d:a0:9e:e3:e6:f4:ca:3c:ab:4a:
23:11:24:b6:ed:00:26:7d:b3:a6:b1:6a:e2:dc:3a:50:96:00:
40:34:1e:a5:6a:0d:6e:d3:cc:8b:bb:15:34:34:d1:ca:0d:dc:
b2:f5:b0:c1:01:96:ec:96:04:f6:fc:6a:81:49:c7:f8:0d:f1:
6f:f3:bb:5e:e9:44:41:54:a7:f6:cd:3a:4e:e0:38:ba:e6:ac:
b4:2c:f8:86:21:54:a6:f7:75:ae:9d:6b:a6:89:1f:fa:dc:74:
9f:bd:90:46:95:76:bf:ff:f2:91:a8:6e:28:7d:bf:0e:81:b6:
a3:12:12:a0:79:19:26:5f:e3:66:14:7c:44:9a:19:58:be:db:
aa:a2:20:98:69:c7:25:43:3d:5c:cd:fd:6f:f5:0e:b8:6d:87:
14:d5:ed:fa:c8:05:6f:d3:61:fa:60:33:6f:46:dc:03:25:78:
ea:ae:82:f4:f5:ce:b9:d5:8a:fe:14:94:14:e0:0f:56:a7:bb:
ec:e2:57:2e:b5:14:77:68:49:9b:bd:da:9d:6c:20:8c:f2:dd:
57:04:c8:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:02 2024 by rpki-client on console-ams.rpki-client.org