Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/twasFGnhYBJZmXJVnnVjjW7E6Uw.roa
File: twasFGnhYBJZmXJVnnVjjW7E6Uw.roa (raw, json)
Hash identifier: OwdfKsBg35vWjpoAfLBri4KvmGWJ++Z52HZqnrwqDJc=
Subject key identifier: B7:06:AC:14:69:E1:60:12:59:99:72:55:9E:75:63:8D:6E:C4:E9:4C
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0B59
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/twasFGnhYBJZmXJVnnVjjW7E6Uw.roa
Signing time: Thu 15 Dec 2022 02:57:01 +0000
ROA not before: Thu 15 Dec 2022 02:57:01 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18429
IP address blocks: 27.147.40.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2905 (0xb59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Dec 15 02:57:01 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B706AC1469E16012599972559E75638D6EC4E94C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:a8:25:8a:06:14:b0:03:5e:d3:18:05:53:0d:
94:cd:ac:b6:cb:8a:a5:3a:fb:b2:1d:56:e4:7f:38:
a1:d8:38:d4:25:2f:04:d3:d8:72:fd:7f:41:7a:db:
0a:a6:8e:f7:42:f9:a2:38:69:f4:c1:7a:25:e3:87:
d3:e0:0c:4e:d7:74:fb:11:8a:4a:8e:98:ab:9f:0c:
98:86:7b:a4:23:9b:d9:40:a7:24:3d:e7:98:fa:f9:
c9:04:08:bf:ee:ff:dd:0c:65:97:c6:f4:b3:fc:9a:
dc:98:3b:64:ef:d1:52:7b:1f:75:d0:4c:e2:26:10:
62:ff:f2:31:65:42:00:f9:fe:20:5f:94:34:af:b5:
b7:50:6b:5d:12:23:37:e7:fe:c5:01:e3:65:6e:e8:
b5:8f:af:55:21:05:0e:39:36:32:df:ae:d1:31:5f:
e6:7b:90:47:76:61:fa:ac:3a:5f:08:3a:f2:92:9a:
f7:c0:92:e0:97:90:c0:08:76:72:58:ea:2a:09:8e:
cc:70:9b:ce:0b:d7:23:bc:b8:45:50:89:4b:51:71:
a6:4c:91:62:c6:6b:92:ec:a9:a6:52:29:75:8e:cd:
74:68:46:81:87:fa:a5:07:05:dd:15:e2:98:25:96:
9a:78:61:5c:58:10:99:a1:1d:be:d6:ba:00:b8:df:
6e:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:06:AC:14:69:E1:60:12:59:99:72:55:9E:75:63:8D:6E:C4:E9:4C
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/twasFGnhYBJZmXJVnnVjjW7E6Uw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.147.40.0/21
Signature Algorithm: sha256WithRSAEncryption
6d:f8:bc:59:34:77:21:e3:f0:df:03:d3:e7:96:29:24:f4:63:
d1:88:bb:01:03:bc:d9:ab:d4:57:b5:f7:6c:10:6e:a3:40:06:
4d:69:71:27:39:c9:97:4a:9c:30:ab:69:55:00:b2:a3:6d:5b:
44:20:1c:0e:fa:f9:74:05:41:da:79:7b:c9:c9:aa:b0:fa:c5:
af:d0:f1:63:b5:39:f9:61:6a:af:3f:f9:0f:0a:1b:d2:4a:ee:
db:59:d3:d9:23:32:5e:d0:2e:5b:c1:2a:c1:a1:23:89:0e:12:
c8:84:0b:6a:41:9e:a2:6e:48:9e:ec:f8:9f:81:9d:67:93:a3:
2e:30:2f:0c:56:7b:81:07:09:31:25:23:a9:45:da:b9:09:7b:
7a:04:32:e3:1f:c6:a0:9b:68:6b:25:31:2f:7f:0a:bf:77:ca:
18:24:13:25:62:18:a5:39:cf:28:39:97:5d:bd:17:95:c5:f5:
b8:39:68:47:48:a6:79:85:f1:0f:6d:74:89:f0:85:77:4b:47:
5b:f6:6c:62:55:12:07:c5:c8:6f:78:4d:20:b7:b8:87:55:4f:
cf:da:6e:b1:87:38:89:92:5b:76:ae:84:ec:50:da:bd:4b:75:
c2:12:52:58:96:26:fc:07:08:81:fe:8d:35:53:ba:80:21:12:
ac:6c:74:2d
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICC1kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUQx
RTNGM0M4QkE4OURDMTMxMDQxMDM0NUY1MEMxMDA3NjE4MTI2MTAeFw0yMjEyMTUw
MjU3MDFaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEI3MDZBQzE0NjlFMTYw
MTI1OTk5NzI1NTlFNzU2MzhENkVDNEU5NEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDdqCWKBhSwA17TGAVTDZTNrLbLiqU6+7IdVuR/OKHYONQlLwTT
2HL9f0F62wqmjvdC+aI4afTBeiXjh9PgDE7XdPsRikqOmKufDJiGe6Qjm9lApyQ9
55j6+ckECL/u/90MZZfG9LP8mtyYO2Tv0VJ7H3XQTOImEGL/8jFlQgD5/iBflDSv
tbdQa10SIzfn/sUB42Vu6LWPr1UhBQ45NjLfrtExX+Z7kEd2YfqsOl8IOvKSmvfA
kuCXkMAIdnJY6ioJjsxwm84L1yO8uEVQiUtRcaZMkWLGa5LsqaZSKXWOzXRoRoGH
+qUHBd0V4pgllpp4YVxYEJmhHb7WugC43259AgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUtwasFGnhYBJZmXJVnnVjjW7E6UwwHwYDVR0jBBgwFoAUXR4/PIuoncExBBA0
X1DBAHYYEmEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0dORVQv
WFI0X1BJdW9uY0V4QkJBMFgxREJBSFlZRW1FLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9YUjRfUEl1b25jRXhCQkEwWDFEQkFIWVlFbUUuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DR05FVC90d2FzRkduaFlCSlptWEpWbm5W
ampXN0U2VXcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDG5Mo
MA0GCSqGSIb3DQEBCwUAA4IBAQBt+LxZNHch4/DfA9Pnlikk9GPRiLsBA7zZq9RX
tfdsEG6jQAZNaXEnOcmXSpwwq2lVALKjbVtEIBwO+vl0BUHaeXvJyaqw+sWv0PFj
tTn5YWqvP/kPChvSSu7bWdPZIzJe0C5bwSrBoSOJDhLIhAtqQZ6ibkie7PifgZ1n
k6MuMC8MVnuBBwkxJSOpRdq5CXt6BDLjH8agm2hrJTEvfwq/d8oYJBMlYhilOc8o
OZddvReVxfW4OWhHSKZ5hfEPbXSJ8IV3S0db9mxiVRIHxchveE0gt7iHVU/P2m6x
hziJklt2roTsUNq9S3XCElJYlib8BwiB/o01U7qAIRKsbHQt
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org