Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/Xu6F5XoG5npeXbzKWPqlv2SanmU.roa
File: Xu6F5XoG5npeXbzKWPqlv2SanmU.roa (raw, json)
Hash identifier: cosgNpuosmtO7KQcbIKEndDigWnW6J43msFlB3PdUck=
Subject key identifier: 5E:EE:85:E5:7A:06:E6:7A:5E:5D:BC:CA:58:FA:A5:BF:64:9A:9E:65
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0784
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/Xu6F5XoG5npeXbzKWPqlv2SanmU.roa
Signing time: Tue 29 Sep 2020 09:59:25 +0000
ROA not before: Tue 29 Sep 2020 09:59:25 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18429
IP address blocks: 27.147.16.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1924 (0x784)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Sep 29 09:59:25 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5EEE85E57A06E67A5E5DBCCA58FAA5BF649A9E65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:46:fc:b5:bc:09:3f:1d:31:ab:4b:b0:1b:fb:
ad:91:53:0e:12:38:4d:20:aa:3b:75:e8:2a:e8:65:
bd:d5:38:a2:6b:0f:c2:cc:3b:e0:4c:4a:1d:06:44:
91:c6:35:db:3f:7d:ef:ba:4c:62:b8:d0:1b:fc:70:
f7:78:de:b0:83:2b:e5:97:b8:fd:bc:56:d5:9e:1e:
84:4f:bc:fd:92:6c:b2:38:c8:7c:b9:4e:5e:46:da:
72:b5:20:94:46:a3:5d:03:e3:29:ce:92:0e:30:96:
37:07:54:fd:32:a6:34:4e:09:14:11:43:12:7e:40:
3f:22:77:bc:8b:c4:4b:20:a1:44:6e:d0:ad:4c:5d:
25:0f:d4:8b:e0:a2:72:01:12:a1:ba:ff:a7:bd:14:
61:76:f6:1d:bb:7a:8f:24:7f:87:e3:22:77:d6:9a:
fb:12:c0:3b:b0:15:23:ef:b7:46:f1:2b:71:ce:93:
e9:bf:bf:8f:62:e3:6b:9a:c0:65:b0:08:67:12:3f:
2d:4e:a0:db:10:8a:5b:8e:00:88:29:b8:9b:70:20:
b2:21:e9:07:da:b4:09:f7:97:29:cf:51:e2:e0:94:
c8:e7:60:2f:a0:0b:98:60:50:be:1d:b5:73:0d:d4:
07:83:6f:5f:e7:27:8a:77:21:4f:fc:94:08:ec:db:
73:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:EE:85:E5:7A:06:E6:7A:5E:5D:BC:CA:58:FA:A5:BF:64:9A:9E:65
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/Xu6F5XoG5npeXbzKWPqlv2SanmU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.147.16.0/21
Signature Algorithm: sha256WithRSAEncryption
45:93:63:94:f7:55:04:a0:a4:a2:38:79:fe:fc:a0:c4:10:4c:
38:0b:9a:8c:49:fb:19:35:21:7e:b2:ee:d8:e8:e8:b3:f2:57:
c6:fa:46:92:87:6c:bf:79:74:3d:b7:32:39:9f:79:87:cc:0f:
b2:08:af:b2:91:f5:bc:7f:7f:34:2f:8c:4b:97:52:43:40:1f:
70:7d:d6:37:53:39:63:ae:fe:92:89:f5:4e:10:5f:e0:8c:2d:
5f:ad:c4:52:cc:9b:9c:4c:28:37:c1:b0:3d:58:af:ee:25:b1:
63:30:e8:2d:d3:00:03:64:23:73:79:9a:ec:9f:23:ba:92:ff:
98:07:15:28:2b:3b:ee:5b:f4:da:ba:3e:0b:c0:61:16:68:1b:
ab:7d:d9:54:52:d6:f6:20:e0:5c:61:93:d1:84:fe:c3:96:65:
3d:29:86:3c:d4:29:bf:d2:5e:90:e2:0f:20:98:bd:19:a4:c8:
9e:4c:a0:75:7e:ea:6d:be:37:11:ee:bd:c3:8d:82:7e:66:af:
a8:62:ba:7f:55:58:5f:83:8c:dd:d6:e0:6d:4b:6f:77:72:74:
b8:4a:d1:7c:2c:66:7c:b9:fc:42:c3:29:b7:13:55:59:f3:58:
dc:2c:b0:0d:80:ec:31:48:0d:87:e4:1a:f8:0b:c5:02:00:ba:
0f:88:f5:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:47 2023 by rpki-client on console-ams.rpki-client.org