Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/Wtxdaq-AOW3y-EeMSj6vsQo8sMw.roa
File: Wtxdaq-AOW3y-EeMSj6vsQo8sMw.roa (raw, json)
Hash identifier: j2+4pxAV9lA88z3W1bcVZ6b7a8fbHe8TZxC3TJRtM4w=
Subject key identifier: 5A:DC:5D:6A:AF:80:39:6D:F2:F8:47:8C:4A:3E:AF:B1:0A:3C:B0:CC
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0907
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/Wtxdaq-AOW3y-EeMSj6vsQo8sMw.roa
Signing time: Sun 07 Feb 2021 12:45:09 +0000
ROA not before: Sun 07 Feb 2021 12:45:09 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18429
IP address blocks: 27.147.63.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2311 (0x907)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Feb 7 12:45:09 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5ADC5D6AAF80396DF2F8478C4A3EAFB10A3CB0CC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:91:1b:15:e1:66:b4:b2:06:33:b5:bc:a0:cd:
cc:87:7d:33:2a:cd:c9:68:41:47:ce:7d:55:de:8b:
9d:ff:ac:d5:a8:4e:4e:dd:06:92:5a:03:80:89:2e:
48:d9:44:24:64:8b:b8:0f:5b:07:4f:aa:b2:67:9c:
c2:a2:5f:89:a8:b7:d4:d4:8e:73:d0:59:b8:2f:a2:
16:61:38:7b:5c:26:df:7b:63:75:7e:75:05:63:a1:
58:3f:97:f0:d1:b3:0f:2d:8b:47:36:69:59:a2:1d:
e5:de:ef:f0:f5:b0:09:cc:54:73:63:ca:75:a2:fc:
07:bc:34:0b:9e:b1:78:e2:67:6f:ba:6b:f0:d9:bb:
58:1b:43:85:ca:d4:e0:da:71:8c:5a:9f:c0:80:c4:
2f:93:bd:59:34:7d:b8:0a:f7:f8:10:63:25:b4:58:
cc:80:5a:c5:ec:d4:5d:6b:95:6a:a9:8e:b4:d7:26:
6c:d4:f5:55:91:db:c3:88:bd:fe:a6:ac:50:91:ac:
f2:ee:a5:4b:0c:17:e5:8d:e8:02:e5:b6:89:7c:c1:
7c:01:73:5a:32:54:94:fb:6c:7f:1b:d5:54:02:7c:
26:24:51:f5:6e:1d:5a:8f:39:e6:ba:2b:f6:46:5c:
73:72:65:62:94:24:d1:1c:0e:4d:64:d1:dd:7b:db:
76:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:DC:5D:6A:AF:80:39:6D:F2:F8:47:8C:4A:3E:AF:B1:0A:3C:B0:CC
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/Wtxdaq-AOW3y-EeMSj6vsQo8sMw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.147.63.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:8c:7c:dd:6a:7b:7e:8e:e8:8f:77:62:67:46:a4:7e:ba:d9:
f5:ac:a3:7f:8d:0d:09:df:4c:03:6a:c1:ed:84:ae:24:10:3f:
6a:8f:76:d6:fd:28:ff:58:91:e3:ff:a3:d4:97:73:9f:ce:60:
9b:30:8c:85:ee:f7:96:1f:9e:db:84:ac:e8:98:f8:08:23:4e:
06:41:18:8b:80:d3:51:0d:05:12:88:49:b7:00:1a:ec:f0:98:
eb:4c:c9:1b:ab:83:b7:21:ec:fc:c6:d6:9a:cb:82:46:f5:d3:
4b:73:c7:64:1c:f3:6a:4b:7c:f0:61:a1:b8:7c:94:04:03:c4:
bb:97:3f:03:b2:b2:0a:32:e0:89:1a:73:5e:ae:cd:2c:7d:c1:
0f:d9:6a:dd:09:ef:e2:24:90:79:16:1b:8b:93:12:b2:44:8e:
d9:89:72:20:ca:42:bf:9c:90:af:28:40:12:fe:48:ae:a0:7c:
6f:13:b8:0e:7f:78:71:c1:2e:c7:8c:3f:1c:1c:33:7b:d3:44:
cb:fb:67:49:6a:77:e6:3b:59:e5:75:5f:a4:d6:4a:de:42:50:
76:c9:50:6f:92:1d:d8:19:b9:d2:ae:aa:ae:6d:16:0f:55:44:
28:8a:9e:cc:0d:c9:f1:f2:e9:8e:4c:56:ba:b3:64:9e:91:45:
5b:5a:82:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:02 2024 by rpki-client on console-ams.rpki-client.org