Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/VSySYWETDIyCpSbLWAc_oiGwusU.roa
File: VSySYWETDIyCpSbLWAc_oiGwusU.roa (raw, json)
Hash identifier: v1JQYYonagsxl1HDuZQIWGkwOkKBOgLz11SrQGuXidg=
Subject key identifier: 55:2C:92:61:61:13:0C:8C:82:A5:26:CB:58:07:3F:A2:21:B0:BA:C5
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0782
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/VSySYWETDIyCpSbLWAc_oiGwusU.roa
Signing time: Tue 29 Sep 2020 09:59:25 +0000
ROA not before: Tue 29 Sep 2020 09:59:25 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18429
IP address blocks: 27.147.8.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1922 (0x782)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Sep 29 09:59:25 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=552C926161130C8C82A526CB58073FA221B0BAC5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:4c:bf:1f:c4:0a:b3:50:cb:2a:35:03:04:83:
a6:3f:97:07:73:ae:2a:17:94:77:2d:89:9d:bd:2c:
ea:26:d9:d4:10:c0:cf:17:32:ed:0f:7a:92:98:7f:
53:a6:77:af:9f:c5:95:4b:61:48:d2:21:03:b2:66:
d9:d3:64:62:9a:3c:af:e0:4f:52:83:bf:2c:85:a6:
35:2b:db:f2:5f:27:5b:76:68:29:42:80:dd:6b:dc:
27:fb:4f:a2:a1:8f:dd:97:05:b5:e1:e5:4c:50:49:
e0:bc:ff:1d:f2:52:83:d9:ef:97:7f:b2:4c:25:1c:
6d:d0:d6:f8:03:b3:59:95:ce:a0:98:cc:ea:54:4e:
b7:59:df:40:0b:1b:a1:29:ff:b1:7a:f0:89:e6:94:
bd:a0:6a:e5:b1:46:77:b2:30:ae:6b:40:7e:44:3c:
17:ff:7d:4c:b9:ba:25:7f:5a:91:1d:f9:4b:8d:77:
f8:1e:73:62:79:c2:dd:30:77:65:35:fe:bc:63:3a:
31:21:cb:72:de:ba:19:ad:55:96:22:4c:6d:db:bd:
21:c2:58:fd:6c:bd:1b:28:72:e0:09:0b:22:b3:d3:
bb:2a:53:17:14:07:c6:72:8e:13:ca:82:ef:fb:cf:
a2:86:5e:f1:99:7e:c8:9b:3c:16:12:b4:34:f3:cf:
c6:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:2C:92:61:61:13:0C:8C:82:A5:26:CB:58:07:3F:A2:21:B0:BA:C5
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/VSySYWETDIyCpSbLWAc_oiGwusU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.147.8.0/22
Signature Algorithm: sha256WithRSAEncryption
8b:53:5e:4f:25:64:ba:80:73:87:ef:4a:34:b7:ce:1c:94:c7:
db:c1:4b:37:47:de:ce:3e:f0:77:88:d5:d1:fd:bc:c9:e6:54:
d3:64:a9:16:e1:f6:8a:22:17:7f:e8:f8:d8:20:f8:d9:01:ee:
74:6d:e5:ec:e9:22:a2:ac:0d:7b:95:00:13:c6:61:51:ba:47:
6b:38:3c:0d:eb:9f:10:a9:69:03:95:11:49:f2:f0:9b:ed:c4:
2d:41:3d:fd:4b:5d:eb:78:48:0c:da:33:90:5c:e7:c5:3a:f7:
e0:7f:b2:c9:93:d6:a7:c6:d1:91:8a:b9:26:b0:68:0e:f1:07:
8a:ea:a9:8c:f2:5a:0c:e8:8c:1f:58:f5:93:75:cc:d5:74:aa:
6b:13:0c:79:ff:75:d3:2e:e9:c3:78:38:f2:ed:2b:b9:c0:35:
f7:86:8b:50:fd:80:6f:a6:f4:40:01:55:be:ff:49:f1:34:38:
74:2b:92:0c:9b:7c:46:ca:e6:45:76:d2:aa:22:d9:52:8e:2c:
82:20:96:3f:c5:0b:fe:42:6d:fd:be:c0:9e:6d:fc:14:cf:d5:
0e:9f:be:5c:a1:42:65:33:31:11:e9:1c:cc:37:8d:97:50:55:
48:f7:4b:92:9a:a6:d5:e0:1c:3c:ba:cb:67:9a:14:34:6f:c5:
a8:0f:39:1d
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICB4IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUQx
RTNGM0M4QkE4OURDMTMxMDQxMDM0NUY1MEMxMDA3NjE4MTI2MTAeFw0yMDA5Mjkw
OTU5MjVaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDU1MkM5MjYxNjExMzBD
OEM4MkE1MjZDQjU4MDczRkEyMjFCMEJBQzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDBTL8fxAqzUMsqNQMEg6Y/lwdzrioXlHctiZ29LOom2dQQwM8X
Mu0PepKYf1Omd6+fxZVLYUjSIQOyZtnTZGKaPK/gT1KDvyyFpjUr2/JfJ1t2aClC
gN1r3Cf7T6Khj92XBbXh5UxQSeC8/x3yUoPZ75d/skwlHG3Q1vgDs1mVzqCYzOpU
TrdZ30ALG6Ep/7F68InmlL2gauWxRneyMK5rQH5EPBf/fUy5uiV/WpEd+UuNd/ge
c2J5wt0wd2U1/rxjOjEhy3LeuhmtVZYiTG3bvSHCWP1svRsocuAJCyKz07sqUxcU
B8ZyjhPKgu/7z6KGXvGZfsibPBYStDTzz8ZhAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUVSySYWETDIyCpSbLWAc/oiGwusUwHwYDVR0jBBgwFoAUXR4/PIuoncExBBA0
X1DBAHYYEmEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0dORVQv
WFI0X1BJdW9uY0V4QkJBMFgxREJBSFlZRW1FLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9YUjRfUEl1b25jRXhCQkEwWDFEQkFIWVlFbUUuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DR05FVC9WU3lTWVdFVERJeUNwU2JMV0Fj
X29pR3d1c1Uucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCG5MI
MA0GCSqGSIb3DQEBCwUAA4IBAQCLU15PJWS6gHOH70o0t84clMfbwUs3R97OPvB3
iNXR/bzJ5lTTZKkW4faKIhd/6PjYIPjZAe50beXs6SKirA17lQATxmFRukdrODwN
658QqWkDlRFJ8vCb7cQtQT39S13reEgM2jOQXOfFOvfgf7LJk9anxtGRirkmsGgO
8QeK6qmM8loM6IwfWPWTdczVdKprEwx5/3XTLunDeDjy7Su5wDX3hotQ/YBvpvRA
AVW+/0nxNDh0K5IMm3xGyuZFdtKqItlSjiyCIJY/xQv+Qm39vsCebfwUz9UOn75c
oUJlMzER6RzMN42XUFVI90uSmqbV4Bw8ustnmhQ0b8WoDzkd
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:47 2023 by rpki-client on console-ams.rpki-client.org