Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/R_LLtrWlbYPzy4tce8SE0uiptck.roa
File: R_LLtrWlbYPzy4tce8SE0uiptck.roa (raw, json)
Hash identifier: 8Hjtxp1zmKaLvc1ENHT3sX3ld6kGX7/HNAlQsEtAqso=
Subject key identifier: 47:F2:CB:B6:B5:A5:6D:83:F3:CB:8B:5C:7B:C4:84:D2:E8:A9:B5:C9
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 08F7
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/R_LLtrWlbYPzy4tce8SE0uiptck.roa
Signing time: Sun 07 Feb 2021 12:44:57 +0000
ROA not before: Sun 07 Feb 2021 12:44:57 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18429
IP address blocks: 27.147.16.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2295 (0x8f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Feb 7 12:44:57 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=47F2CBB6B5A56D83F3CB8B5C7BC484D2E8A9B5C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:29:82:d1:6e:96:3c:60:0d:22:5f:81:fe:54:
e1:a3:65:a0:dc:12:8f:f4:b8:a6:9a:2a:64:ff:e6:
d3:ea:64:ea:6a:84:36:db:63:b9:81:30:e0:79:7d:
7a:78:b9:31:86:37:b0:3c:a9:46:04:5b:50:5d:c6:
57:fa:cb:75:f1:21:54:90:a3:3a:b0:49:8b:cf:f0:
85:66:d7:17:fa:ea:8b:79:d4:2e:65:c9:e5:77:64:
11:df:ba:b6:cb:be:2a:c1:eb:68:9b:25:3d:21:8a:
40:c9:b5:b6:6c:64:5c:a2:06:5d:83:c8:9b:8b:0c:
6a:dd:b5:28:55:25:61:e5:17:32:d3:ee:3f:5d:c7:
03:1f:e9:22:f4:bb:b0:b8:2a:77:3d:4a:ad:9a:f9:
86:8b:b5:13:cf:55:fb:ed:63:8f:e7:74:04:ae:87:
9e:b9:03:58:df:3f:d5:f5:b7:4f:c4:a9:a9:88:2e:
69:9f:b9:c3:e6:e9:0f:0e:27:ae:35:4e:f8:24:c1:
c4:0d:c7:f1:ef:cc:ca:f7:20:1e:81:c3:79:14:aa:
1b:97:f3:5b:81:43:08:32:03:2f:5e:7b:de:38:16:
b3:46:45:f7:87:28:64:f3:34:7c:ef:c9:39:61:b8:
3b:f5:3e:d7:51:15:93:58:0c:a4:83:ca:8f:7e:35:
56:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:F2:CB:B6:B5:A5:6D:83:F3:CB:8B:5C:7B:C4:84:D2:E8:A9:B5:C9
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/R_LLtrWlbYPzy4tce8SE0uiptck.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.147.16.0/21
Signature Algorithm: sha256WithRSAEncryption
73:9f:c5:9f:86:22:07:40:69:77:bc:b0:43:8a:86:4b:9b:5a:
05:ea:72:69:0d:0e:04:ee:e9:42:d3:b1:38:09:20:3a:67:f4:
49:cb:2a:10:68:a7:58:13:20:cf:d1:f1:0d:7a:77:02:4e:6a:
9a:eb:0e:aa:15:2c:08:03:52:8f:f8:1a:37:46:c2:cc:f0:a8:
9d:65:cd:0c:9e:af:d0:13:c9:fb:21:d6:93:50:7a:2c:30:20:
74:11:be:16:eb:b3:63:c6:21:76:0f:89:31:fe:c2:6a:65:ff:
f1:da:57:74:1a:f2:7b:f7:81:5a:e4:a2:36:5d:c0:1d:1e:ec:
aa:e9:03:c3:29:bf:16:0e:45:cc:6f:25:c3:14:99:3c:62:60:
29:38:0e:f0:cc:f8:2b:74:c3:4d:36:fe:d2:91:88:a3:b1:15:
19:0b:ec:5c:b9:5f:f3:d8:18:89:53:7b:a7:3e:6c:fe:a4:6b:
78:ed:95:76:1b:c6:1e:25:e9:aa:f7:a4:e8:e3:5a:3f:95:7d:
fa:7c:da:aa:41:cf:08:f1:ad:03:4b:2b:ec:c7:8a:00:fc:a1:
f6:11:8c:bc:32:d9:a7:8a:07:3c:80:a5:d9:ae:2d:ab:4e:d6:
d0:c5:d7:a1:c4:56:f4:95:2f:7b:28:8a:1e:4d:4a:0b:ae:f0:
e0:0f:d6:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:02 2024 by rpki-client on console-ams.rpki-client.org