Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/Thme7YhGDilZXPJRcfh0BdYIA68.roa
File: Thme7YhGDilZXPJRcfh0BdYIA68.roa (raw, json)
Hash identifier: KQBRUwaT5pZl0BNNQfCEg3639+Shw5FT2A58uHNilRg=
Subject key identifier: 4E:19:9E:ED:88:46:0E:29:59:5C:F2:51:71:F8:74:05:D6:08:03:AF
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 078C
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/Thme7YhGDilZXPJRcfh0BdYIA68.roa
Signing time: Tue 29 Sep 2020 09:59:27 +0000
ROA not before: Tue 29 Sep 2020 09:59:27 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18429
IP address blocks: 27.147.63.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1932 (0x78c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Sep 29 09:59:27 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=4E199EED88460E29595CF25171F87405D60803AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:1d:09:76:75:9b:b2:91:78:90:5f:2d:c7:41:
c7:f0:d1:01:95:bb:09:7a:e2:15:bd:db:93:3e:54:
0c:ab:ac:54:43:23:0f:2e:01:c5:86:b2:1f:71:98:
46:ed:24:98:c5:a9:e7:60:0b:38:ae:a4:07:38:f4:
3d:eb:9f:fb:c6:27:bb:2d:12:a9:13:0d:87:fd:b2:
0a:50:80:57:38:41:c4:93:ab:16:f8:8e:f1:59:b9:
54:56:81:82:85:13:5b:bb:a8:aa:9b:d3:1f:c9:bb:
fc:1e:88:b9:2b:b6:ef:c4:10:83:59:b3:7b:81:75:
4e:b8:16:9e:f3:87:d9:98:ab:01:c7:4c:12:0a:70:
9b:2f:38:96:6f:90:91:20:1d:09:81:e2:6e:53:22:
0c:b8:cc:75:b8:56:08:a4:92:89:3c:b0:2d:17:1e:
91:8f:cd:70:e9:5b:bc:eb:63:fe:70:08:d7:f8:3a:
06:ce:9e:f3:2d:9a:a4:a8:0f:4e:4c:d5:36:23:43:
eb:a2:f8:5e:78:93:a7:76:1b:c0:5a:f1:fe:07:6d:
fc:f3:5d:31:a6:c4:0e:f9:6b:95:19:d2:6b:c3:39:
d4:c9:1a:f3:4e:13:49:25:08:2d:4d:48:ab:2d:c8:
ea:d7:1b:a6:d4:be:19:4c:8c:32:33:c1:60:a0:f9:
8a:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:19:9E:ED:88:46:0E:29:59:5C:F2:51:71:F8:74:05:D6:08:03:AF
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/Thme7YhGDilZXPJRcfh0BdYIA68.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.147.63.0/24
Signature Algorithm: sha256WithRSAEncryption
47:fc:e6:7e:9e:4b:c3:68:c0:f3:b5:4a:5b:30:76:95:f5:7d:
96:a0:4b:1c:6f:40:68:82:ee:51:24:bf:f3:cb:f9:c9:ed:c0:
95:74:f2:02:29:7f:46:c0:67:a8:c7:0a:1b:8e:91:09:36:20:
20:39:0a:af:8b:bc:16:8d:b6:52:57:ad:a7:f3:1a:2b:f5:53:
f4:ee:ae:e9:80:bc:69:c2:88:aa:af:ac:83:b6:b5:0e:8e:74:
3b:d7:99:c8:fd:d1:9d:e6:45:6d:89:d3:d3:7a:97:59:59:e7:
fb:b0:db:a2:62:db:75:d5:50:88:23:9b:b9:08:80:b7:80:60:
3e:51:dc:0f:bb:ff:12:4e:4e:82:dd:39:eb:26:0d:d0:81:78:
b1:08:92:d2:b6:7b:0a:32:f2:2e:3d:fb:db:08:a8:06:ee:0a:
d6:27:78:66:bd:eb:27:67:8c:8c:bd:26:53:64:43:49:7e:96:
07:d2:52:93:23:a9:37:d2:08:a1:5f:18:25:d9:b8:cb:2d:8a:
6e:db:0b:87:c5:67:cb:f7:03:4a:9e:70:d4:f1:4b:8b:2f:6d:
e9:cb:ee:21:70:c8:65:d3:12:10:41:3c:b1:a9:7a:94:29:11:
2a:ab:a6:2a:43:5f:c7:d8:28:a3:ff:45:5a:85:ff:cb:8e:0a:
d7:a2:30:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:02 2024 by rpki-client on console-ams.rpki-client.org