Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/uZq-BKHJTIXZ7bGfdhbxmQte4zw.roa
File: uZq-BKHJTIXZ7bGfdhbxmQte4zw.roa (raw, json)
Hash identifier: WHJq/cuvy8N/c8EufHTpt18j6xksyfnrh7Ao0bsafoQ=
Subject key identifier: B9:9A:BE:04:A1:C9:4C:85:D9:ED:B1:9F:76:16:F1:99:0B:5E:E3:3C
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0905
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/uZq-BKHJTIXZ7bGfdhbxmQte4zw.roa
Signing time: Sun 07 Feb 2021 12:45:07 +0000
ROA not before: Sun 07 Feb 2021 12:45:07 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18429
IP address blocks: 27.147.62.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2309 (0x905)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Feb 7 12:45:07 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B99ABE04A1C94C85D9EDB19F7616F1990B5EE33C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:3d:00:0d:6c:43:0f:7d:8f:dc:59:26:a4:14:
9a:f3:dd:d1:19:af:f7:2f:c6:a4:31:43:69:52:18:
73:4a:2c:99:f8:b4:e6:91:84:1e:d5:5a:7d:9f:bc:
c2:77:b0:8a:f0:6c:c0:f8:cd:60:94:f0:1b:f3:6f:
bf:f7:ed:ae:63:b4:99:c9:24:70:ea:42:9d:d2:2f:
9d:e4:3b:c3:3e:bb:05:f9:b4:e9:cc:6e:fa:12:d9:
bd:4b:67:61:e4:70:d6:99:0e:3a:aa:7c:a8:f3:48:
ce:df:23:70:8f:56:2d:ab:1b:ea:dd:3d:09:e4:39:
72:0f:09:e9:68:e9:64:2d:8f:6a:45:93:98:85:6a:
4f:58:e2:cd:fe:e3:83:ff:d5:7f:75:71:da:bc:22:
14:98:de:69:58:db:f2:51:e7:82:49:56:44:b1:af:
15:cf:a9:4a:25:ab:d3:7d:5c:6a:97:8d:7e:81:6b:
d0:f6:47:ac:06:7b:d1:30:8b:6e:5f:68:e2:7a:39:
5e:cc:06:2d:c4:7f:8f:f8:4c:8f:f0:e5:e6:15:1b:
72:52:d0:7e:87:79:e5:20:01:15:af:59:68:39:29:
94:03:5b:bb:61:a3:81:fc:fc:bd:72:24:a1:65:9f:
e4:39:12:46:2f:74:51:07:da:73:b0:f8:2f:a5:e0:
39:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:9A:BE:04:A1:C9:4C:85:D9:ED:B1:9F:76:16:F1:99:0B:5E:E3:3C
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/uZq-BKHJTIXZ7bGfdhbxmQte4zw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.147.62.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:d6:b5:84:5f:bb:6d:95:44:e0:61:26:a7:51:e0:81:ff:09:
b1:a4:76:ae:be:b3:6a:d8:56:57:4a:5c:72:bd:35:84:93:cd:
d3:4e:c8:1f:ff:d7:74:e6:0d:d7:6a:cb:24:e9:bd:94:31:72:
55:28:2c:a4:e7:86:0d:55:45:c9:26:45:bc:d4:1b:c7:78:93:
d1:9d:06:15:a1:c3:83:a5:c9:71:cb:95:db:d0:88:be:29:93:
5c:6f:ea:39:fc:44:ff:14:4c:2a:38:08:3e:c2:3f:b8:71:55:
32:77:48:67:91:d4:ae:fd:46:4e:9e:05:cd:2d:5a:20:7f:95:
86:86:2a:f4:0b:80:eb:c2:b6:4c:20:c8:a0:7b:27:0a:22:af:
f5:30:41:1d:7e:e4:9a:a1:91:b8:e3:3f:9b:74:b7:ab:7f:d7:
a5:3a:4f:91:92:d4:bd:f3:fd:7c:ee:84:63:8c:76:51:06:1d:
b8:0d:1b:4b:f9:92:dc:5c:13:30:40:64:48:1b:86:79:00:c9:
68:e8:97:2e:d8:1b:51:35:52:65:42:de:d6:12:c3:0b:32:7c:
58:ca:a6:22:ef:ec:09:2b:76:0f:ab:11:97:1b:94:7c:dd:40:
0d:2e:1e:6a:3f:6e:7e:fd:d9:b4:aa:9a:96:a3:06:da:53:12:
9b:f6:39:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org