Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/eao2QYwGh9WfDJ5OKctcX2QfhzM.roa
File: eao2QYwGh9WfDJ5OKctcX2QfhzM.roa (raw, json)
Hash identifier: W7o/Dxs6UzOfhc9eXvcxtdR7myYW6EAMW4D5hJxbGpI=
Subject key identifier: 79:AA:36:41:8C:06:87:D5:9F:0C:9E:4E:29:CB:5C:5F:64:1F:87:33
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0C68
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/eao2QYwGh9WfDJ5OKctcX2QfhzM.roa
Signing time: Fri 01 Sep 2023 08:26:31 +0000
ROA not before: Fri 01 Sep 2023 08:26:31 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18429
IP address blocks: 27.147.62.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3176 (0xc68)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Sep 1 08:26:31 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=79AA36418C0687D59F0C9E4E29CB5C5F641F8733
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:04:c5:88:bb:7a:0c:17:8d:ea:3a:ed:9e:30:
f0:61:7c:8f:b3:f8:cd:3c:f1:61:e4:9e:65:d4:4c:
49:6e:c6:b3:df:3f:da:3a:06:ab:d7:20:d5:b8:5e:
fe:c0:b3:0e:a2:f5:df:02:9f:40:57:2a:aa:86:c7:
c4:67:28:7f:e2:49:1e:df:19:60:be:5f:51:2c:42:
54:c5:3c:cc:64:cf:a3:b9:95:d6:36:00:a2:63:0e:
77:a6:b9:fa:74:14:89:23:6f:67:ed:28:24:34:67:
c1:b0:d7:6d:74:fd:18:00:da:f3:84:02:16:b6:20:
7c:8e:02:5c:64:e5:11:ef:c3:6f:2b:f2:eb:17:92:
18:59:73:00:3f:3c:de:eb:ce:1e:bb:e3:8d:a2:bf:
f8:9d:d7:d6:66:19:90:ea:b2:ba:18:9f:cf:f7:7b:
ca:a4:20:c3:74:61:14:34:c3:1e:f4:34:13:bd:e2:
01:8a:f6:71:ce:cd:f1:a3:e0:e3:75:37:90:27:34:
41:55:77:f5:af:9f:53:66:34:9d:a4:88:4e:64:39:
29:47:cc:e1:b6:0c:7e:4f:0b:92:0e:da:6d:f5:4f:
ac:d2:a3:35:73:c5:35:8c:8e:c4:08:73:28:37:46:
c1:87:fc:33:cf:5e:4b:53:58:7d:b8:26:b6:9f:f3:
4f:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:AA:36:41:8C:06:87:D5:9F:0C:9E:4E:29:CB:5C:5F:64:1F:87:33
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/eao2QYwGh9WfDJ5OKctcX2QfhzM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.147.62.0/23
Signature Algorithm: sha256WithRSAEncryption
02:88:ff:7e:c1:dc:85:e1:85:86:ba:29:bd:c8:7e:0e:70:35:
2c:5f:72:46:b3:b6:17:ec:81:40:20:16:cf:af:57:8e:e6:d2:
27:b7:76:51:e7:7c:c0:04:23:3c:f3:14:37:54:16:92:c0:a2:
33:b2:ec:77:c8:2c:b1:aa:a1:34:85:2b:a3:66:68:c2:ab:bb:
f0:18:95:9a:0c:c4:59:04:a0:6e:46:57:1f:e5:89:55:41:2e:
2e:4c:40:6e:41:b4:97:a6:a8:8d:55:d4:6b:8b:57:29:fc:6f:
e2:3e:68:f2:cd:b9:e9:fd:0b:7c:9f:ed:b8:bc:c7:92:c7:53:
30:16:28:b2:32:0f:0a:d9:b8:8d:e3:e1:36:ed:01:99:e9:f3:
31:63:3b:7a:ed:e5:17:b5:bb:f3:f8:40:46:5f:c2:1e:db:88:
d8:b0:fb:45:4f:c4:c4:57:9b:70:b0:79:61:4e:30:cf:e1:9f:
8d:ac:19:69:82:ed:18:ca:fd:1c:de:24:6b:64:75:4b:26:fd:
85:6e:d3:d1:cf:64:17:7d:53:fb:c9:e0:f9:e6:fb:ce:ee:ac:
bc:f9:44:99:e9:76:a8:9c:5a:38:e9:d4:3b:ab:2f:fc:eb:ba:
f5:52:0a:a4:03:10:dd:be:fe:41:5c:c5:9c:a2:fc:bd:4e:b8:
6a:11:c9:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:43:05 2025 by rpki-client