Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/PdiDL_ngvx2TpjuGCAEHbrv8JIA.roa
File: PdiDL_ngvx2TpjuGCAEHbrv8JIA.roa (raw, json)
Hash identifier: wNds2zDDhT0VMi92pRzgXytTrHgqAcBDbxqN7St7SqA=
Subject key identifier: 3D:D8:83:2F:F9:E0:BF:1D:93:A6:3B:86:08:01:07:6E:BB:FC:24:80
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 09CD
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/PdiDL_ngvx2TpjuGCAEHbrv8JIA.roa
Signing time: Wed 29 Sep 2021 02:52:01 +0000
ROA not before: Wed 29 Sep 2021 02:52:01 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18429
IP address blocks: 27.147.16.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2509 (0x9cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Sep 29 02:52:01 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=3DD8832FF9E0BF1D93A63B860801076EBBFC2480
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:83:85:da:12:eb:c0:66:7c:3a:57:ae:da:64:
c6:e5:9e:e8:00:23:bb:52:83:92:40:56:18:29:16:
ff:ff:11:46:32:1f:d7:ac:cf:12:70:eb:f3:1d:7f:
de:00:bf:f5:ad:0e:d5:55:06:a6:49:84:43:6a:a0:
73:63:6a:08:7b:72:27:ed:f9:76:b7:79:ef:26:ce:
19:b8:ba:a2:21:80:84:43:46:1a:06:9c:81:16:02:
bb:e3:9c:61:a5:3f:80:1a:e7:bf:ad:e2:5f:b7:b6:
d5:ef:92:e3:67:74:ae:73:66:7e:44:3d:61:d1:f2:
58:53:5d:8d:0b:cc:70:b9:0a:bd:91:7e:8b:11:67:
b8:0b:15:a0:ac:5d:d5:b9:37:0c:7c:9e:5a:71:c7:
23:78:dc:31:b3:65:58:bf:25:fc:12:43:77:92:3c:
d1:ac:0c:3b:62:06:d3:c1:83:d4:ae:68:fd:a6:dc:
63:dd:63:e5:cd:c7:75:47:24:61:08:d8:ec:6f:9f:
c5:c3:da:92:81:7a:34:fc:8c:47:31:ab:14:2f:ce:
a2:0c:5f:00:00:d4:55:2b:01:2a:56:54:4b:78:09:
e9:fd:0b:4a:5e:a9:88:25:dc:1e:c9:3e:12:25:f6:
61:cc:bb:16:1b:ff:2e:a8:95:7e:93:52:1d:16:0b:
f8:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:D8:83:2F:F9:E0:BF:1D:93:A6:3B:86:08:01:07:6E:BB:FC:24:80
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/PdiDL_ngvx2TpjuGCAEHbrv8JIA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.147.16.0/21
Signature Algorithm: sha256WithRSAEncryption
7a:d0:fa:60:60:de:5a:6c:67:cb:ce:c2:12:6c:45:ae:0a:ce:
d6:cc:00:5c:cb:cd:be:83:40:09:23:07:65:8e:ab:68:29:03:
bb:32:73:92:73:5b:38:b0:b7:53:fe:bc:eb:3e:58:10:2d:44:
71:be:9e:ff:2e:0c:23:bd:ba:61:13:6c:a3:29:33:82:c5:21:
22:19:0c:59:64:59:0c:d2:e5:32:c1:94:29:43:f0:60:2d:7b:
64:4a:8f:48:63:47:ba:93:de:ad:be:22:73:1b:9e:ca:60:61:
e3:89:a8:57:0a:6c:3f:6b:c9:aa:4a:69:30:b3:f2:9b:14:63:
8f:26:12:e1:9f:e4:20:48:77:ef:fe:df:39:15:01:1a:ad:4f:
ee:50:63:f6:83:9e:47:19:7e:32:f6:f6:4a:39:31:4d:23:9c:
f6:64:59:93:3b:ce:75:54:6b:2f:b2:fe:79:08:73:78:0b:80:
e8:0f:d4:43:df:b4:81:92:9b:e8:b4:a2:03:eb:52:b5:50:31:
15:30:b9:d3:17:25:f1:bd:a6:3d:8e:2d:6b:ab:4c:d8:d8:95:
3c:18:75:8a:0d:83:ab:52:7b:ef:23:00:db:95:78:50:71:c7:
a5:01:02:b6:9e:24:e5:1c:bd:01:84:2e:7c:0f:63:8d:7c:ef:
94:a7:c1:c2
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCc0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUQx
RTNGM0M4QkE4OURDMTMxMDQxMDM0NUY1MEMxMDA3NjE4MTI2MTAeFw0yMTA5Mjkw
MjUyMDFaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDNERDg4MzJGRjlFMEJG
MUQ5M0E2M0I4NjA4MDEwNzZFQkJGQzI0ODAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDHg4XaEuvAZnw6V67aZMblnugAI7tSg5JAVhgpFv//EUYyH9es
zxJw6/Mdf94Av/WtDtVVBqZJhENqoHNjagh7cift+Xa3ee8mzhm4uqIhgIRDRhoG
nIEWArvjnGGlP4Aa57+t4l+3ttXvkuNndK5zZn5EPWHR8lhTXY0LzHC5Cr2RfosR
Z7gLFaCsXdW5Nwx8nlpxxyN43DGzZVi/JfwSQ3eSPNGsDDtiBtPBg9SuaP2m3GPd
Y+XNx3VHJGEI2Oxvn8XD2pKBejT8jEcxqxQvzqIMXwAA1FUrASpWVEt4Cen9C0pe
qYgl3B7JPhIl9mHMuxYb/y6olX6TUh0WC/iLAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUPdiDL/ngvx2TpjuGCAEHbrv8JIAwHwYDVR0jBBgwFoAUXR4/PIuoncExBBA0
X1DBAHYYEmEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0dORVQv
WFI0X1BJdW9uY0V4QkJBMFgxREJBSFlZRW1FLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9YUjRfUEl1b25jRXhCQkEwWDFEQkFIWVlFbUUuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DR05FVC9QZGlETF9uZ3Z4MlRwanVHQ0FF
SGJydjhKSUEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDG5MQ
MA0GCSqGSIb3DQEBCwUAA4IBAQB60PpgYN5abGfLzsISbEWuCs7WzABcy82+g0AJ
IwdljqtoKQO7MnOSc1s4sLdT/rzrPlgQLURxvp7/LgwjvbphE2yjKTOCxSEiGQxZ
ZFkM0uUywZQpQ/BgLXtkSo9IY0e6k96tviJzG57KYGHjiahXCmw/a8mqSmkws/Kb
FGOPJhLhn+QgSHfv/t85FQEarU/uUGP2g55HGX4y9vZKOTFNI5z2ZFmTO851VGsv
sv55CHN4C4DoD9RD37SBkpvotKID61K1UDEVMLnTFyXxvaY9ji1rq0zY2JU8GHWK
DYOrUnvvIwDblXhQccelAQK2niTlHL0BhC58D2ONfO+Up8HC
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:57 2023 by rpki-client on console-fra.rpki-client.org