Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/s79Z5vYj4ji317YsXBDOJK9eBto.roa
File: s79Z5vYj4ji317YsXBDOJK9eBto.roa (raw, json)
Hash identifier: KjO1IwuVDcvI4dedNzzLBb9UeyQdBSSfeCH1A0TITB8=
Subject key identifier: B3:BF:59:E6:F6:23:E2:38:B7:D7:B6:2C:5C:10:CE:24:AF:5E:06:DA
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0A81
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/s79Z5vYj4ji317YsXBDOJK9eBto.roa
Signing time: Wed 04 May 2022 03:14:11 +0000
ROA not before: Wed 04 May 2022 03:14:11 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18429
IP address blocks: 27.147.8.0/21 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2689 (0xa81)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: May 4 03:14:11 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=B3BF59E6F623E238B7D7B62C5C10CE24AF5E06DA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:00:b3:2d:a6:89:aa:e0:00:95:91:55:fd:12:
62:2d:86:e4:c4:b2:ab:80:d3:27:78:ba:7a:95:09:
8d:07:3c:9e:da:cc:9d:de:fe:23:0d:31:4b:47:c9:
76:d7:19:45:62:fd:22:dc:55:d6:9a:15:da:a3:98:
52:85:b4:19:f5:44:31:9a:c0:39:dc:05:b5:80:e7:
89:e9:0d:54:67:ac:b3:a2:b7:35:3d:eb:53:eb:3a:
ca:eb:ba:34:25:4c:a4:ce:24:f9:61:13:96:68:83:
86:c5:3e:6d:f4:1e:fc:45:0c:0e:a6:ff:c9:b2:b7:
2b:e2:68:ea:c6:fb:23:4a:fe:18:04:fb:1c:52:95:
01:33:ce:f3:d2:e5:95:75:b9:69:b2:7b:33:ab:94:
66:45:bb:e5:ab:f7:39:92:0a:0e:4d:44:65:6e:42:
7d:2b:5c:2a:ef:74:0f:a1:49:b9:e3:8a:69:52:7f:
b8:cc:a5:cb:6f:43:69:64:0f:00:0c:b1:87:64:17:
94:2c:1b:7d:51:90:76:cc:7b:69:e2:71:be:bb:6d:
03:88:7d:52:86:e2:75:90:00:ab:42:4a:23:0f:28:
ca:f1:ec:2e:d7:24:68:a1:f7:3a:19:56:19:5f:73:
2a:0e:a7:c3:1a:62:30:74:be:eb:70:5b:8a:45:a0:
2c:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:BF:59:E6:F6:23:E2:38:B7:D7:B6:2C:5C:10:CE:24:AF:5E:06:DA
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/s79Z5vYj4ji317YsXBDOJK9eBto.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.147.8.0/21
Signature Algorithm: sha256WithRSAEncryption
77:07:00:dc:49:db:cb:e0:a9:ea:23:a1:29:85:95:09:61:3c:
2a:53:95:3e:d7:3a:e9:0c:dd:66:21:d9:c5:02:4e:c7:13:ff:
0c:2f:70:8b:9a:2c:95:dc:9a:fb:f7:9d:f9:3f:59:32:f1:8a:
ab:49:13:c0:64:79:b5:f1:8c:13:13:ae:df:79:75:e8:77:e3:
63:32:e0:65:a3:98:48:18:a1:a0:0b:89:71:53:0e:47:d4:37:
ba:fe:55:f8:bb:bd:f5:d5:2f:30:fb:89:04:ae:37:f2:28:9e:
8f:27:c1:ac:d7:d2:f5:1e:e9:ca:14:91:b0:36:c4:11:9c:91:
2e:b7:76:7e:2a:c1:48:63:33:0b:ff:8e:32:77:60:e8:2c:f7:
96:9c:d0:7d:fc:81:fe:f7:f8:27:85:10:79:3f:da:b6:b7:92:
c4:cc:28:a6:ab:1d:53:71:42:ce:e7:3d:c6:86:06:e7:ef:df:
28:7b:c1:28:09:ad:d1:87:39:7e:ad:00:dd:84:fc:d4:ec:db:
50:33:4d:d5:9e:2e:f3:c2:f6:b1:b4:51:4a:36:b2:80:f5:26:
3d:45:c9:dd:1a:26:82:ba:c5:a9:1b:f0:61:24:8e:a7:fd:64:
ca:51:33:7b:c3:cf:da:83:28:63:55:f4:98:06:9a:32:d3:09:
9f:27:dc:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:57 2023 by rpki-client on console-fra.rpki-client.org