Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/TKp4ZDSRle1W4plrFRqEmshzfz8.roa
File: TKp4ZDSRle1W4plrFRqEmshzfz8.roa (raw, json)
Hash identifier: qZ0UVqMw0vkLreNeqh6B+cy8qdYbs95uEYarx5V9O3I=
Subject key identifier: 4C:AA:78:64:34:91:95:ED:56:E2:99:6B:15:1A:84:9A:C8:73:7F:3F
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0781
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/TKp4ZDSRle1W4plrFRqEmshzfz8.roa
Signing time: Tue 29 Sep 2020 09:59:24 +0000
ROA not before: Tue 29 Sep 2020 09:59:24 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18429
IP address blocks: 27.147.0.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1921 (0x781)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Sep 29 09:59:24 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=4CAA7864349195ED56E2996B151A849AC8737F3F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:e7:34:f5:44:2d:e3:2f:0e:ed:d2:68:da:9c:
85:a4:6b:10:3f:c5:f7:d0:cf:c3:bc:02:db:ec:a2:
18:88:e3:00:56:83:d5:7f:56:38:41:86:02:05:13:
22:eb:e5:3e:37:1f:04:ce:b6:bd:0e:37:ad:bb:20:
67:ce:96:2c:b1:a2:6d:92:7e:36:66:d6:08:18:63:
d3:c8:be:e4:5d:c4:65:19:e6:f6:6d:12:ce:ce:a6:
2d:d4:71:30:c0:eb:e2:70:f9:a6:5c:af:28:f2:5c:
65:b4:98:76:45:75:61:58:85:af:9e:4a:ec:81:32:
5f:ee:60:3e:1f:c4:f6:c2:e6:76:69:94:7d:99:9a:
79:70:42:51:70:4f:92:ab:b3:c0:1f:c4:db:06:25:
f0:16:bc:da:20:24:47:1c:c0:82:b8:f2:6d:5d:e2:
d6:bc:ef:0c:ee:0a:ae:3a:7d:d9:2e:3f:b6:b0:84:
09:9c:ad:6c:0f:4e:d8:ad:0e:e1:1e:38:09:15:6e:
23:e1:1f:5c:60:60:e4:24:3a:f1:1f:8d:18:d9:31:
4b:cc:18:14:aa:8f:24:e5:fc:43:25:1b:fe:ea:1c:
12:18:f9:df:f1:c2:66:d1:61:70:f1:ef:5e:20:14:
b3:29:75:1a:49:b1:0e:1a:b7:2c:ff:a8:10:15:72:
2f:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:AA:78:64:34:91:95:ED:56:E2:99:6B:15:1A:84:9A:C8:73:7F:3F
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/TKp4ZDSRle1W4plrFRqEmshzfz8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.147.0.0/21
Signature Algorithm: sha256WithRSAEncryption
2b:71:9c:1e:2f:9d:cb:ed:63:86:0b:41:bf:7b:22:ff:51:4b:
e0:22:7f:a7:1d:4c:c3:e5:e0:c1:61:2d:ce:9b:f7:3b:e4:17:
10:46:f7:21:9f:41:d5:b9:dd:2b:3c:de:ba:21:ac:b8:d1:2a:
1b:34:10:92:73:ae:fd:d6:9e:ef:fc:55:8b:29:36:c5:97:33:
b1:c9:cf:d6:46:4a:15:f0:02:78:a5:34:4c:2a:d5:45:13:6b:
93:73:22:df:c1:be:51:07:08:c8:8d:80:7f:d7:7a:45:ff:83:
52:07:b0:9b:bc:32:f5:38:89:96:64:db:85:2f:ba:28:2f:09:
33:bf:07:53:d8:a9:63:8d:c6:40:c9:c7:3a:59:55:9c:44:9c:
bc:5b:d3:5a:1e:8e:9b:d7:5c:82:e0:63:3a:ad:cc:dd:5a:22:
df:d2:e1:93:79:54:a3:cd:cf:96:45:18:70:cd:2b:ef:7e:51:
78:54:00:53:2f:4c:40:dc:23:34:55:f8:ab:4b:46:21:a3:a0:
fd:b5:49:d2:35:a6:4b:31:a8:62:e6:50:96:d1:bb:90:f3:41:
d2:77:bd:ca:e5:ef:4b:b8:18:af:03:43:0a:dc:bb:2d:2f:5b:
62:14:bd:6c:de:0a:5f:57:84:54:50:cc:5d:01:d4:bc:fb:9d:
f4:d0:76:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:36:45 2025 by rpki-client