Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/RDky2_NAfLE6eDc8SAHTV1LolN4.roa
File: RDky2_NAfLE6eDc8SAHTV1LolN4.roa (raw, json)
Hash identifier: X/EgoL3R4meEAecgA1pkp2SFSEQqXtQSc9FjYG0UrCM=
Subject key identifier: 44:39:32:DB:F3:40:7C:B1:3A:78:37:3C:48:01:D3:57:52:E8:94:DE
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0901
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/RDky2_NAfLE6eDc8SAHTV1LolN4.roa
Signing time: Sun 07 Feb 2021 12:45:04 +0000
ROA not before: Sun 07 Feb 2021 12:45:04 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18429
IP address blocks: 27.147.56.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2305 (0x901)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Feb 7 12:45:04 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=443932DBF3407CB13A78373C4801D35752E894DE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:a4:c9:17:89:b1:21:a1:33:27:a2:f3:e9:ce:
00:0c:04:ff:37:9d:56:8c:50:5e:e9:5e:25:04:d1:
ad:3f:c2:62:91:7d:de:56:31:3c:e8:06:61:aa:46:
9c:64:ee:a3:4b:6e:e1:3f:f7:9c:51:52:cc:44:2b:
9f:38:dd:1f:8a:22:99:26:6f:c2:bd:53:60:89:33:
0e:1e:ed:4c:dd:59:a8:57:86:1a:35:14:ff:47:a4:
42:8e:87:18:9c:9e:c9:41:b6:82:35:8d:81:78:ec:
b4:8d:b8:29:1c:18:ea:8e:f7:17:2f:23:de:c0:bc:
7a:d1:25:2b:48:5b:a0:f5:01:ce:f6:07:dc:32:92:
27:bf:49:87:8e:0e:79:b6:24:36:7f:c0:7f:a2:45:
63:31:de:ff:b5:41:3c:5c:d6:58:b1:5b:bf:f9:45:
85:c2:73:6f:05:af:ad:87:50:0a:c3:f5:86:67:0a:
b0:1a:62:f3:34:d9:53:ee:f8:b0:a9:45:7b:9d:7c:
24:a7:04:12:89:60:41:a7:a6:29:29:4e:58:ef:b4:
fb:4f:d0:f5:9d:9b:a4:da:63:cf:c2:c0:e6:b8:88:
3b:3c:b2:00:3c:6d:5e:6e:6d:1e:11:2e:3c:db:26:
6b:5b:f9:b1:56:30:c1:fc:3f:55:9a:28:83:71:7f:
25:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:39:32:DB:F3:40:7C:B1:3A:78:37:3C:48:01:D3:57:52:E8:94:DE
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/RDky2_NAfLE6eDc8SAHTV1LolN4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.147.56.0/21
Signature Algorithm: sha256WithRSAEncryption
19:36:61:e8:ad:e6:6b:d9:b3:05:4a:bf:be:d4:a6:8b:ed:37:
ea:c9:be:99:19:ae:37:50:4e:09:c6:27:45:22:4c:b5:d9:2e:
55:7d:38:ff:4b:0e:ca:7e:bf:0b:6d:32:2e:c9:22:e4:14:85:
9a:a8:b7:85:63:ad:52:cc:42:0e:64:f3:61:13:3f:5a:e6:72:
26:5d:62:42:a7:16:63:67:68:e6:4f:bc:21:bc:4d:86:0d:8e:
77:0f:82:6e:3f:fb:1b:10:1d:72:51:c9:06:87:28:7c:30:50:
21:d4:a2:cc:89:23:a1:ba:01:f9:56:f8:65:6c:a9:24:bc:52:
3d:b4:ce:37:fa:56:a0:6b:3d:75:f5:a5:8c:9e:62:e8:ef:08:
79:97:b2:9a:3a:ac:7e:dd:2c:98:98:fb:73:6a:43:20:07:85:
63:b0:e4:bd:1e:60:32:b7:93:e6:97:44:ba:f5:2f:bb:6f:55:
43:21:4f:0a:b0:0f:99:1f:9a:84:a9:57:e6:c5:22:69:30:c3:
eb:2a:95:8c:2c:b9:a4:73:bc:56:96:ee:8f:e0:17:3f:cb:e8:
35:1f:7c:7f:66:08:1b:5d:79:5c:d0:ff:15:9b:f1:b7:0f:91:
12:95:71:72:8b:45:8b:64:28:df:5a:e0:03:a7:10:4b:fe:fc:
78:8b:f9:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org