Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/qCYkEUT1cRukAAdCqJalZbVGX84.roa
File: qCYkEUT1cRukAAdCqJalZbVGX84.roa (raw, json)
Hash identifier: ZpDFbj13kHx9Jzqq7QSrZ4/y/AZCE4UIF6gMKUqpzz4=
Subject key identifier: A8:26:24:11:44:F5:71:1B:A4:00:07:42:A8:96:A5:65:B5:46:5F:CE
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0AEB
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/qCYkEUT1cRukAAdCqJalZbVGX84.roa
Signing time: Thu 15 Sep 2022 02:49:24 +0000
ROA not before: Thu 15 Sep 2022 02:49:24 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18429
IP address blocks: 27.147.32.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2795 (0xaeb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Sep 15 02:49:24 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A826241144F5711BA4000742A896A565B5465FCE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:d7:c6:c8:50:3b:90:a8:b6:d0:a8:3b:b0:dd:
b0:bf:8d:b1:ac:ab:b2:03:fa:14:5f:23:ce:e9:0d:
37:2b:46:42:5d:d1:06:fd:35:c0:f8:b5:28:aa:3e:
d2:a4:09:46:14:c4:0f:9e:e8:75:5f:31:7e:ce:73:
c8:e2:bd:dc:41:e7:8a:ef:5d:c8:c5:f4:41:4a:1f:
75:cb:fc:46:68:e3:2d:4d:42:24:a9:d8:f4:ad:9a:
eb:a0:b1:bf:98:c2:c1:13:e3:7a:89:7a:dd:ec:28:
29:da:1b:60:f6:6d:90:15:85:38:88:a5:73:9d:f1:
9e:d8:6f:b9:a9:8a:f7:ec:73:e0:9f:0e:73:dc:c6:
0c:6b:80:cf:4a:a0:bd:3e:3f:0c:89:55:73:6c:6b:
2e:f8:fa:19:ca:4f:95:eb:99:7c:32:27:2e:21:0e:
88:d3:15:c8:26:e5:de:f0:dd:63:4d:66:2c:f2:20:
ea:53:5e:8f:93:92:a6:85:f0:3d:16:2d:b0:ba:f4:
37:89:3f:4d:2a:df:82:69:df:57:16:7c:f4:d0:85:
0a:54:7d:a1:a9:78:e1:40:b3:0e:1d:46:4c:8e:9a:
6d:97:f2:ae:d1:6b:a8:37:52:f0:76:58:c9:f3:c6:
5d:91:8d:5f:db:42:79:55:9f:43:e3:b4:89:8f:71:
54:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:26:24:11:44:F5:71:1B:A4:00:07:42:A8:96:A5:65:B5:46:5F:CE
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/qCYkEUT1cRukAAdCqJalZbVGX84.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.147.32.0/21
Signature Algorithm: sha256WithRSAEncryption
86:6b:4b:5b:3a:a9:31:32:9b:ca:93:ba:08:b0:22:cd:4b:20:
a4:8f:b4:52:9b:04:38:1d:c9:36:30:98:04:45:2e:ae:ef:61:
0e:71:fd:29:ec:27:11:1f:f6:07:2c:48:fd:4f:ed:b1:6e:f0:
0e:c9:78:e6:91:98:01:41:ed:3f:fa:08:7c:55:f5:c6:2b:3a:
1a:b4:7d:9e:e4:2b:12:3a:ed:88:8a:21:95:ff:d8:7c:ce:00:
46:74:82:0e:0d:d8:55:38:b6:6b:f4:10:01:e4:86:d4:49:3e:
7d:59:fa:fd:d4:d6:ee:56:34:56:4f:87:70:25:ec:47:e3:37:
ed:46:18:75:2f:48:17:36:c7:37:ce:1d:0a:14:6c:b3:c0:28:
a7:65:72:f7:35:7b:dc:2d:94:51:85:d0:84:7b:4c:d7:d2:87:
4e:b9:5a:fd:1a:89:94:13:19:76:77:ea:34:dd:52:d5:72:1a:
19:91:fa:df:6d:3e:a2:78:45:3f:17:b4:e2:f8:2d:9c:65:48:
de:b4:82:4a:bf:36:09:0f:ed:95:2f:83:84:84:87:ed:d5:0b:
27:d8:ae:e9:81:04:80:eb:e0:a6:ff:b4:89:a5:a5:fd:81:b0:
16:54:cb:2b:23:63:a3:bc:d2:05:98:18:4f:77:11:a8:15:68:
61:ae:e1:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org