Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/UCmaYG5eJkMkAALZ78nY0kSLkss.roa
File: UCmaYG5eJkMkAALZ78nY0kSLkss.roa (raw, json)
Hash identifier: BS4klqeTHm0iD5nHt2cdM7OYMLC4+AtoOklWdOxVU5s=
Subject key identifier: 50:29:9A:60:6E:5E:26:43:24:00:02:D9:EF:C9:D8:D2:44:8B:92:CB
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 09D1
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/UCmaYG5eJkMkAALZ78nY0kSLkss.roa
Signing time: Wed 29 Sep 2021 02:52:02 +0000
ROA not before: Wed 29 Sep 2021 02:52:02 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18429
IP address blocks: 27.147.48.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2513 (0x9d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Sep 29 02:52:02 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=50299A606E5E2643240002D9EFC9D8D2448B92CB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:63:5f:78:1d:b7:fd:bf:42:00:83:83:08:28:
17:4e:21:25:e0:8b:0d:a0:8c:62:da:54:02:c6:42:
6e:d0:4c:e8:19:5a:82:fd:e2:b6:29:e4:07:05:d9:
e0:e3:d4:e2:0a:be:a4:b8:6c:2f:7f:88:cf:31:e3:
29:1a:3a:cb:54:54:c2:77:6f:6d:c4:1a:86:be:63:
28:c3:6d:3a:b8:5f:52:48:aa:0c:fa:80:59:4e:24:
03:7d:06:6c:98:46:64:0e:8a:3e:99:02:e5:15:ca:
40:c8:4b:cb:98:fc:7e:e1:36:3e:1b:e8:89:9f:37:
16:73:b2:c2:12:b0:4f:f9:f7:a5:2a:d2:6e:42:7c:
6c:97:57:17:97:a6:9e:8c:40:00:ff:c5:e3:86:90:
9f:7c:8f:24:ec:af:44:3b:85:ed:07:3d:2f:22:f4:
61:4f:64:89:4a:4f:ce:6b:83:a7:11:33:5e:f3:67:
07:7b:de:b6:70:03:19:6c:28:eb:e3:67:40:c6:b7:
4f:94:2e:ce:e6:0b:e0:26:72:75:d1:b2:83:03:b2:
66:f7:9f:3f:4b:72:c0:08:f0:5b:2e:d0:53:71:ef:
08:2e:80:17:0a:6b:f2:ca:cf:8d:74:14:a5:80:35:
8f:f8:22:ba:14:6e:46:cf:36:f9:9d:81:4c:9a:cc:
e1:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:29:9A:60:6E:5E:26:43:24:00:02:D9:EF:C9:D8:D2:44:8B:92:CB
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/UCmaYG5eJkMkAALZ78nY0kSLkss.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.147.48.0/21
Signature Algorithm: sha256WithRSAEncryption
48:d2:3b:da:0e:7a:f1:54:c7:89:8e:bb:4a:02:49:94:67:94:
eb:77:7a:b1:d5:99:f6:16:87:78:65:f6:30:f6:1c:ab:1a:26:
45:49:38:6f:27:38:f6:e2:a7:84:63:f3:b9:a3:19:ba:8d:88:
c6:d9:b8:2f:92:b9:db:2f:57:9e:a6:b5:35:73:56:1f:8e:0b:
98:19:bf:dc:97:0c:8a:95:84:9a:15:e9:52:ae:41:b4:d1:62:
a8:26:46:45:b8:ee:ae:d5:d8:48:b2:45:c8:05:a5:f4:f9:8a:
79:a8:a8:3a:5d:9f:64:d4:ae:f9:12:4b:a1:c7:1c:5f:85:7c:
99:c0:32:64:d6:1b:16:04:03:55:06:e5:68:53:3d:20:15:85:
4a:a0:ce:4d:a0:4c:e5:22:26:3b:c4:e4:6c:43:a8:c1:0f:5e:
14:c3:c7:b3:7e:98:b5:94:37:1e:24:53:f8:6f:77:af:85:67:
39:44:e8:30:57:2b:49:5f:69:51:b3:4b:09:39:e1:b8:29:ba:
80:7d:59:ad:06:74:79:5f:c1:5f:3e:27:da:70:40:35:c4:62:
30:2d:33:ee:c2:89:06:de:95:32:2a:86:65:fb:e5:5b:d0:90:
41:7b:24:0d:42:90:97:3e:35:f9:01:2f:a8:c0:71:33:12:e0:
92:f8:19:ce
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCdEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUQx
RTNGM0M4QkE4OURDMTMxMDQxMDM0NUY1MEMxMDA3NjE4MTI2MTAeFw0yMTA5Mjkw
MjUyMDJaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDUwMjk5QTYwNkU1RTI2
NDMyNDAwMDJEOUVGQzlEOEQyNDQ4QjkyQ0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDLY194Hbf9v0IAg4MIKBdOISXgiw2gjGLaVALGQm7QTOgZWoL9
4rYp5AcF2eDj1OIKvqS4bC9/iM8x4ykaOstUVMJ3b23EGoa+YyjDbTq4X1JIqgz6
gFlOJAN9BmyYRmQOij6ZAuUVykDIS8uY/H7hNj4b6ImfNxZzssISsE/596Uq0m5C
fGyXVxeXpp6MQAD/xeOGkJ98jyTsr0Q7he0HPS8i9GFPZIlKT85rg6cRM17zZwd7
3rZwAxlsKOvjZ0DGt0+ULs7mC+AmcnXRsoMDsmb3nz9LcsAI8Fsu0FNx7wgugBcK
a/LKz410FKWANY/4IroUbkbPNvmdgUyazOEhAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUUCmaYG5eJkMkAALZ78nY0kSLksswHwYDVR0jBBgwFoAUXR4/PIuoncExBBA0
X1DBAHYYEmEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0dORVQv
WFI0X1BJdW9uY0V4QkJBMFgxREJBSFlZRW1FLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9YUjRfUEl1b25jRXhCQkEwWDFEQkFIWVlFbUUuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DR05FVC9VQ21hWUc1ZUprTWtBQUxaNzhu
WTBrU0xrc3Mucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDG5Mw
MA0GCSqGSIb3DQEBCwUAA4IBAQBI0jvaDnrxVMeJjrtKAkmUZ5Trd3qx1Zn2Fod4
ZfYw9hyrGiZFSThvJzj24qeEY/O5oxm6jYjG2bgvkrnbL1eeprU1c1YfjguYGb/c
lwyKlYSaFelSrkG00WKoJkZFuO6u1dhIskXIBaX0+Yp5qKg6XZ9k1K75Ekuhxxxf
hXyZwDJk1hsWBANVBuVoUz0gFYVKoM5NoEzlIiY7xORsQ6jBD14Uw8ezfpi1lDce
JFP4b3evhWc5ROgwVytJX2lRs0sJOeG4KbqAfVmtBnR5X8FfPifacEA1xGIwLTPu
wokG3pUyKoZl++Vb0JBBeyQNQpCXPjX5AS+owHEzEuCS+BnO
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:02 2024 by rpki-client on console-ams.rpki-client.org