Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/II5c5efuSirxQiJHW-tmGZSdhTw.roa
File: II5c5efuSirxQiJHW-tmGZSdhTw.roa (raw, json)
Hash identifier: a0xGnphtB/MqcXYZoWT5TaQB0GJPe6RBRjaMaYDfW08=
Subject key identifier: 20:8E:5C:E5:E7:EE:4A:2A:F1:42:22:47:5B:EB:66:19:94:9D:85:3C
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0AEB
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/II5c5efuSirxQiJHW-tmGZSdhTw.roa
Signing time: Thu 15 Sep 2022 02:49:25 +0000
ROA not before: Thu 15 Sep 2022 02:49:25 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18429
IP address blocks: 27.147.61.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2795 (0xaeb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Sep 15 02:49:25 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=208E5CE5E7EE4A2AF14222475BEB6619949D853C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:4a:8a:70:f7:6c:0d:0b:ef:88:28:b1:c5:24:
34:3d:49:1e:51:7a:37:42:cb:1c:dc:d1:bb:29:99:
5a:73:f8:a8:43:d9:4e:0d:5b:e7:7b:52:b3:6c:f2:
70:1f:27:05:94:9f:83:cd:f7:ec:a8:23:00:5d:c5:
10:f7:41:30:11:21:4e:29:46:03:71:ac:f0:3b:6a:
a3:fd:aa:8e:a9:6c:38:10:61:19:ea:3d:ce:4e:6b:
eb:81:a0:ea:9a:c4:a7:f3:7c:25:03:e3:bd:37:93:
c0:44:37:4a:34:a0:24:2e:8f:58:e0:0b:1f:df:99:
3d:f2:07:0e:e5:37:fd:6d:64:fa:d4:56:35:e1:27:
8f:b4:f2:d8:4f:c2:e0:f9:a8:58:92:33:7f:45:47:
23:69:a9:e4:1c:21:d2:f1:42:01:b7:4b:1d:6c:a9:
d4:b1:f1:09:3b:9b:eb:86:d9:bb:2c:8a:df:92:f8:
73:5f:8c:11:7f:aa:5c:d0:e3:20:59:a9:a9:42:1c:
16:7e:4b:4d:48:0c:d6:85:2a:ee:ee:bc:4f:b9:c5:
dd:cd:2f:c4:e7:b1:49:eb:50:2b:31:2c:23:bc:ae:
0a:9e:11:c9:12:4c:37:81:ed:1d:4b:5c:e4:09:a7:
e4:fc:65:88:8a:17:8f:9b:d7:19:28:d1:a4:2b:e2:
4e:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:8E:5C:E5:E7:EE:4A:2A:F1:42:22:47:5B:EB:66:19:94:9D:85:3C
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/II5c5efuSirxQiJHW-tmGZSdhTw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.147.61.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:6d:94:d1:24:f9:9f:6e:1c:2d:f7:c9:e5:dd:a9:46:20:c4:
5d:d6:e8:5d:36:11:1c:d1:c7:ff:d2:62:40:73:0e:32:5b:c4:
94:68:87:51:66:ca:16:bb:14:07:b6:a7:96:7e:77:3d:3c:91:
83:52:3d:c8:58:71:d2:d4:13:1a:02:7a:e0:2e:76:98:bb:b1:
9d:20:ea:ae:2d:96:fe:5d:52:20:4d:5e:f0:79:75:f2:6a:39:
82:c6:ac:29:44:38:8f:9c:16:71:8e:fe:1a:c6:88:1f:26:90:
18:21:ca:b1:96:06:4e:22:94:ec:20:f1:f5:20:78:f4:22:8e:
a0:3c:1a:fd:de:87:c8:6d:b3:a7:55:6c:d6:f1:5e:c1:cb:e0:
89:6a:20:22:b3:43:07:38:66:4e:21:a7:fe:63:df:36:cf:2c:
6d:ea:8e:05:50:80:c4:72:72:7a:ae:6d:e9:7f:f5:05:eb:1d:
86:1d:3c:b6:02:d1:9a:03:f3:1a:12:4a:b7:69:ea:91:1c:72:
9a:38:2c:8b:de:06:77:4b:b5:6f:95:25:50:bc:b5:2a:83:e0:
b4:63:92:9d:f2:6c:2b:99:d4:04:a3:f8:a4:e8:d9:a4:73:1a:
1a:86:01:1f:c5:49:f8:39:a3:2a:57:2a:d0:58:41:6d:98:9d:
e0:40:b7:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org