Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/Imqs5r-WotngJNMUJDipPsw_qQw.roa
File: Imqs5r-WotngJNMUJDipPsw_qQw.roa (raw, json)
Hash identifier: yzw9oX/vG6VcbVAicXRrehGYwkMpuu33xPOQkSzZ4wE=
Subject key identifier: 22:6A:AC:E6:BF:96:A2:D9:E0:24:D3:14:24:38:A9:3E:CC:3F:A9:0C
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0AEB
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/Imqs5r-WotngJNMUJDipPsw_qQw.roa
Signing time: Thu 15 Sep 2022 02:49:32 +0000
ROA not before: Thu 15 Sep 2022 02:49:32 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18429
IP address blocks: 27.147.8.0/21 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2795 (0xaeb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Sep 15 02:49:32 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=226AACE6BF96A2D9E024D3142438A93ECC3FA90C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:1d:a2:ff:fa:53:64:49:c5:28:74:41:c3:cf:
d4:1a:34:bf:c4:ef:1a:b7:8d:b5:e7:0f:41:20:9a:
32:da:a9:c5:91:dc:a5:ff:58:41:1f:07:5d:1a:4a:
91:b3:52:c9:ca:f3:99:83:e4:ba:bc:f8:33:45:81:
b2:12:d1:c8:b3:9c:40:92:e0:98:60:f8:d2:03:0a:
6d:6f:2e:a3:88:95:c3:28:ed:aa:1b:c5:82:83:80:
8f:8e:a0:5d:48:a2:09:cb:89:93:c2:02:56:a2:3f:
97:4c:c8:33:64:af:85:ba:cc:4d:a1:ae:98:f1:f3:
3e:17:c8:3f:82:69:28:73:ae:63:97:9b:34:c5:1a:
05:c0:a8:0a:ca:d5:35:9d:ac:35:25:7f:ad:eb:23:
88:9b:96:40:4f:d0:ca:b5:29:9e:ad:24:cf:e6:c2:
1b:1d:1a:f2:b3:e6:7d:8b:2a:bf:5a:f9:0f:75:4e:
8e:73:da:b4:86:d0:a1:84:f9:d0:e8:94:74:89:ae:
62:ca:43:3b:06:19:b2:e9:5a:c7:94:63:b7:5a:38:
5b:de:83:aa:d3:0b:de:5c:9f:e0:a8:cd:19:bc:db:
70:9b:df:fc:18:13:37:84:dc:a3:3c:b9:01:12:da:
54:03:cd:9c:ae:df:e4:bb:be:27:bb:21:b3:7b:9b:
f0:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:6A:AC:E6:BF:96:A2:D9:E0:24:D3:14:24:38:A9:3E:CC:3F:A9:0C
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/Imqs5r-WotngJNMUJDipPsw_qQw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.147.8.0/21
Signature Algorithm: sha256WithRSAEncryption
36:09:b3:10:7b:84:f4:6c:58:57:6e:cd:d2:c8:45:72:40:51:
21:a7:d5:71:f8:cb:ab:49:72:27:98:d2:29:89:d9:51:14:d0:
8a:0b:00:05:87:84:71:75:73:00:84:52:44:5a:20:70:65:78:
3c:0e:2f:b0:a0:80:5b:1a:25:5c:7a:db:73:d1:85:3c:e0:51:
60:d4:d0:25:d9:cd:66:32:a3:9c:67:0a:ac:af:51:51:5a:98:
90:84:df:c5:db:c8:78:e5:d5:d7:a9:f9:0f:03:55:8e:6a:5d:
5b:87:df:d0:d9:32:99:f0:8c:cf:b0:bd:22:7c:49:5d:b5:22:
0f:86:2f:b4:36:e1:cb:39:6f:ea:b7:f6:16:ad:15:07:1e:c3:
e2:d9:bf:cc:c1:1b:cc:4c:66:f5:25:6d:bf:51:e3:3a:4f:9e:
e7:17:d6:dd:ca:0a:cf:99:e5:39:95:38:bb:36:61:e6:f2:96:
23:58:35:a8:5d:cf:53:2b:21:d2:cc:6a:40:8c:20:e1:17:77:
4c:70:89:b8:8c:07:12:d5:63:e0:97:f1:38:6b:ed:d6:01:e8:
be:cc:e1:ce:f8:53:b5:f7:80:c9:b3:0b:b7:09:1a:8b:c3:8b:
ce:df:e7:28:bf:2d:26:b2:ef:da:81:77:0a:a6:fe:47:7f:53:
ed:5f:c0:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org