Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/TUrNE2mApqrsxUMc72f8hRADU5A.roa
File: TUrNE2mApqrsxUMc72f8hRADU5A.roa (raw, json)
Hash identifier: hZ5/ogesoM1Ul3C0K4v0fqgvhdKrsxoa7XgOT0+7Z48=
Subject key identifier: 4D:4A:CD:13:69:80:A6:AA:EC:C5:43:1C:EF:67:FC:85:10:03:53:90
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0788
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/TUrNE2mApqrsxUMc72f8hRADU5A.roa
Signing time: Tue 29 Sep 2020 09:59:26 +0000
ROA not before: Tue 29 Sep 2020 09:59:26 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18429
IP address blocks: 27.147.48.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1928 (0x788)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Sep 29 09:59:26 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=4D4ACD136980A6AAECC5431CEF67FC8510035390
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:fd:e8:ba:95:0c:24:fb:28:7d:4b:a4:34:aa:
13:a4:2a:07:8f:a5:9e:f9:56:ca:cc:5b:97:2c:63:
8e:2b:69:f4:ef:2b:80:f3:1e:d1:63:89:06:76:6f:
d7:f6:84:64:f9:f2:e8:ad:39:fa:28:b1:31:af:13:
2c:ac:21:ed:15:cf:c6:3d:89:6c:70:e0:d5:3a:fc:
47:a5:11:54:5a:82:ee:d8:9e:9e:cc:5b:71:20:52:
05:12:46:a0:87:57:89:d9:f3:32:1a:12:3b:74:2c:
b0:c7:61:5b:eb:17:f5:5c:59:3e:1a:bb:e9:73:98:
eb:f8:f5:9d:7e:1d:c9:4c:9b:d0:f2:a3:a7:e2:08:
7d:d8:f7:f4:cb:f2:fe:ec:72:64:c1:e6:2d:ad:bf:
9b:45:a3:9d:24:58:cb:8b:92:4d:04:3b:10:89:8a:
20:5e:55:67:b2:68:55:d1:20:8b:d1:16:ab:9f:d6:
5b:14:e8:03:af:99:9f:17:c5:97:5b:c1:75:57:45:
08:0e:ff:aa:b3:c4:dc:bf:bb:7b:b8:15:c6:dc:a0:
bc:e1:60:ce:f8:51:49:e5:bb:a9:ec:67:59:83:f7:
92:49:25:9a:dd:b0:15:9e:00:50:f8:4f:63:c1:c4:
9f:00:c2:b6:d6:f9:63:64:f8:bf:da:56:ff:ab:28:
cb:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:4A:CD:13:69:80:A6:AA:EC:C5:43:1C:EF:67:FC:85:10:03:53:90
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/TUrNE2mApqrsxUMc72f8hRADU5A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.147.48.0/21
Signature Algorithm: sha256WithRSAEncryption
88:cb:91:1b:7d:a3:56:53:17:a9:59:61:63:51:d5:1d:07:bf:
37:76:bb:d6:8d:1a:71:db:c6:0c:89:00:d8:38:0b:c1:48:d3:
f4:2d:e0:8a:b5:34:9c:03:c9:6a:84:4a:8e:2b:a0:25:a9:ca:
2f:b3:1d:9e:99:36:73:48:64:b4:0f:76:f0:3f:88:2b:5a:94:
2b:4b:f4:12:ed:a4:77:05:9f:8d:20:3d:b2:0f:bf:e8:16:54:
7a:8b:36:cf:ea:3e:a8:01:95:fe:b1:40:38:8b:4e:87:fc:64:
d9:98:84:46:47:17:91:cc:6b:4b:6a:a8:79:2b:e0:1f:a0:fe:
fe:05:8e:b5:03:41:45:35:dc:9c:24:47:9f:40:f7:da:a6:c3:
98:c0:4a:18:63:2e:fb:73:39:cb:d0:0d:8a:96:26:0f:16:88:
36:04:bd:2f:43:a1:26:76:dc:cc:d5:f2:ad:4a:9c:cd:ec:e1:
e8:54:95:9c:5b:5b:74:cf:1c:87:b4:85:a0:67:38:6e:c2:8d:
69:8d:29:8d:85:2d:35:32:51:ef:d6:d8:d6:7d:ed:a7:d1:ed:
8b:79:3e:ac:0f:b5:ce:9e:11:52:3e:35:73:c8:63:16:fe:56:
2d:72:35:48:20:30:dd:83:de:4b:d3:9e:d4:8d:66:f8:c4:d3:
68:52:40:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org