Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/WOeuOCSfD6ThRSFNxsLi_eo3mEk.roa
File: WOeuOCSfD6ThRSFNxsLi_eo3mEk.roa (raw, json)
Hash identifier: xGGl8GRmFvZ/w7Fq7DEz8RSqdEGsdnIz0lTfuv6faPM=
Subject key identifier: 58:E7:AE:38:24:9F:0F:A4:E1:45:21:4D:C6:C2:E2:FD:EA:37:98:49
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0B4A
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/WOeuOCSfD6ThRSFNxsLi_eo3mEk.roa
Signing time: Thu 15 Dec 2022 02:56:56 +0000
ROA not before: Thu 15 Dec 2022 02:56:56 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18429
IP address blocks: 27.147.62.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2890 (0xb4a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Dec 15 02:56:56 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=58E7AE38249F0FA4E145214DC6C2E2FDEA379849
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:d1:d8:08:f7:bf:d5:8f:f4:b2:57:6d:d3:a0:
c5:a1:a5:e9:22:ce:14:6f:93:7b:48:1a:11:05:60:
3b:1a:56:70:53:ec:11:df:64:91:11:5b:11:e1:48:
49:fe:9d:7a:5f:dd:2a:c6:58:14:f5:20:bd:b4:22:
75:b5:8f:56:f2:92:d4:a1:27:e3:6c:54:9c:94:5b:
e2:a0:1e:64:10:52:ae:cc:4f:d7:3e:41:68:fd:da:
62:fb:b5:4b:31:8c:56:17:15:f2:46:b1:9b:4d:28:
ec:6f:a7:98:6a:7c:ce:84:e8:0f:df:e1:cc:1e:cb:
5d:85:e8:8d:70:69:d3:f9:e6:7c:6c:ec:fd:79:88:
2d:2d:66:f1:8f:20:f5:8c:7c:d8:87:d7:27:53:b3:
6f:dc:65:81:2b:0f:4d:20:eb:78:66:bf:88:ba:47:
7c:cc:cb:f9:69:68:55:d8:da:cd:0c:a9:41:9e:b9:
ff:7e:66:43:37:cb:ae:85:e9:6c:e2:bf:41:b4:a1:
35:eb:1e:c8:54:44:e9:28:54:84:86:a4:70:ee:9b:
e8:24:44:4d:70:9e:16:28:8a:ee:53:94:b2:9c:2c:
6e:e7:6c:2e:15:b9:11:3c:a3:5f:27:59:d3:89:59:
3b:53:a8:c8:18:41:69:91:3a:af:f0:b1:51:48:f6:
34:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:E7:AE:38:24:9F:0F:A4:E1:45:21:4D:C6:C2:E2:FD:EA:37:98:49
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/WOeuOCSfD6ThRSFNxsLi_eo3mEk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.147.62.0/23
Signature Algorithm: sha256WithRSAEncryption
08:49:98:71:7a:fe:07:d2:a1:6a:df:b1:de:ba:20:6d:60:ca:
89:6d:44:42:5d:e8:ad:13:26:cb:47:88:30:f1:3d:77:63:aa:
65:f3:1e:5e:81:73:b6:24:87:e8:73:d0:ae:53:d3:2f:3b:93:
1b:b7:c2:e7:ce:de:3c:49:6e:4e:e5:77:a3:95:e0:a5:ab:6e:
ff:81:68:08:e8:41:de:bf:45:f8:a9:69:a2:53:32:1f:78:55:
51:a4:a2:1c:49:69:eb:23:6d:fd:eb:7c:43:aa:27:39:69:56:
4a:e7:03:25:1b:df:80:49:b0:50:7f:38:d6:24:0c:a7:9b:2d:
f0:42:c0:fb:bd:cf:f5:43:f9:ab:ad:00:80:5d:8f:4e:18:8e:
bb:55:d9:e4:f1:e9:01:2c:07:ee:ce:cb:57:26:aa:5c:f0:34:
80:4d:46:ac:7d:88:ed:1b:2b:36:9c:4f:1f:3b:6b:2d:6a:a3:
47:12:54:3e:17:25:9e:b2:c6:45:3d:f4:ad:29:3c:8a:82:89:
1f:de:f3:20:6c:4f:32:0f:4c:3f:ff:84:a2:f4:b1:8f:40:e5:
4f:48:8f:28:a6:85:c1:ea:4b:c2:2a:16:d6:2a:b1:f9:56:3f:
5c:60:b1:fd:c9:70:13:34:bf:ae:d6:ba:c1:dd:ee:e4:52:36:
78:0c:de:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:02 2024 by rpki-client on console-ams.rpki-client.org