Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/wzu3XKW4ilNxmcr5tJUiNjnGpfk.roa
File: wzu3XKW4ilNxmcr5tJUiNjnGpfk.roa (raw, json)
Hash identifier: OcYnexbzVaOPDcNYME8D+VHe3RIk4J2gpywFtlf22cM=
Subject key identifier: C3:3B:B7:5C:A5:B8:8A:53:71:99:CA:F9:B4:95:22:36:39:C6:A5:F9
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 09CA
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/wzu3XKW4ilNxmcr5tJUiNjnGpfk.roa
Signing time: Wed 29 Sep 2021 02:52:00 +0000
ROA not before: Wed 29 Sep 2021 02:52:00 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18429
IP address blocks: 27.147.0.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2506 (0x9ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Sep 29 02:52:00 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=C33BB75CA5B88A537199CAF9B495223639C6A5F9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:31:a6:8e:97:b5:92:ca:3e:ab:94:e7:b1:9e:
fc:76:cb:95:e3:27:c4:19:b3:d0:d9:0e:6a:bd:05:
ad:b6:51:0d:c6:80:7c:9c:ef:b6:14:c4:b7:ed:49:
f5:11:19:a4:cf:d0:80:1f:97:48:fd:c8:03:4e:f0:
46:e1:cf:9e:75:3f:7f:6b:b1:ae:44:86:c9:a4:c3:
6b:6c:c8:b6:83:09:34:56:ab:5f:92:93:28:3a:9e:
c6:fe:7b:98:0b:98:5f:12:f9:a3:4a:85:b5:e0:cb:
c1:83:f2:80:7a:1d:e3:8e:9c:5b:9c:4d:7e:87:54:
00:d3:7c:d2:44:f7:4c:81:ee:5d:47:63:58:f0:a4:
15:dd:91:30:c0:a4:21:c1:22:1e:6c:d7:bb:16:7c:
2f:6c:fb:3d:fd:b0:30:1a:e9:c1:b5:a9:fd:d0:b4:
67:05:f2:88:5f:80:cb:4f:c6:1c:34:19:4e:80:89:
45:6e:b5:de:ff:08:19:5e:62:a5:a0:2d:69:7d:f5:
d4:41:05:bb:bf:de:be:6c:e5:80:a2:13:a7:50:f8:
1f:7c:16:e2:e7:8f:af:91:d3:29:a9:a3:2a:15:f2:
ea:58:24:df:b1:96:07:e4:0b:52:62:5b:37:83:79:
9e:7a:16:53:28:b9:de:06:7d:80:aa:72:37:fd:22:
03:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:3B:B7:5C:A5:B8:8A:53:71:99:CA:F9:B4:95:22:36:39:C6:A5:F9
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/wzu3XKW4ilNxmcr5tJUiNjnGpfk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.147.0.0/21
Signature Algorithm: sha256WithRSAEncryption
96:1a:cd:96:1a:d2:40:d2:66:5b:d8:83:d2:5c:de:78:0d:f2:
bc:7a:ed:9d:95:5b:65:ad:1f:8b:6f:f0:2a:94:cb:ef:a7:9f:
f9:d6:89:e7:d5:b0:97:c0:23:f0:e4:c6:d0:fc:34:e3:f6:0b:
b8:51:29:d4:63:6c:77:89:d9:97:75:62:d9:ca:49:39:0c:e4:
e9:4e:5f:e6:26:81:2c:7f:78:fc:cf:17:7f:fb:6f:72:52:c3:
58:df:9c:59:39:08:b5:15:c0:63:60:fa:6f:bd:02:0e:39:0a:
98:89:97:ed:21:88:9e:3b:a5:e8:61:57:4d:e0:9b:91:f2:d3:
b5:85:49:c1:85:92:1c:40:42:8d:8e:d9:b6:38:97:51:57:24:
25:d0:54:3d:56:64:21:5c:c8:b8:b8:fc:99:e5:02:5f:1c:e8:
22:86:7d:46:9f:b6:53:e4:3e:45:59:9f:89:e9:b9:4e:62:50:
76:71:02:6a:19:57:df:10:74:58:95:69:3e:43:61:fe:e4:2e:
af:1d:00:94:1f:78:0e:cf:21:14:75:d4:b9:2b:88:c6:6e:d3:
86:10:90:05:c8:7f:d6:5e:05:b2:50:94:70:15:bf:f8:6c:d8:
68:fb:fe:5f:43:ff:72:5d:cc:06:a3:82:89:c3:b8:9a:d3:55:
a7:f8:c1:67
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCcowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUQx
RTNGM0M4QkE4OURDMTMxMDQxMDM0NUY1MEMxMDA3NjE4MTI2MTAeFw0yMTA5Mjkw
MjUyMDBaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEMzM0JCNzVDQTVCODhB
NTM3MTk5Q0FGOUI0OTUyMjM2MzlDNkE1RjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDQMaaOl7WSyj6rlOexnvx2y5XjJ8QZs9DZDmq9Ba22UQ3GgHyc
77YUxLftSfURGaTP0IAfl0j9yANO8Ebhz551P39rsa5Ehsmkw2tsyLaDCTRWq1+S
kyg6nsb+e5gLmF8S+aNKhbXgy8GD8oB6HeOOnFucTX6HVADTfNJE90yB7l1HY1jw
pBXdkTDApCHBIh5s17sWfC9s+z39sDAa6cG1qf3QtGcF8ohfgMtPxhw0GU6AiUVu
td7/CBleYqWgLWl99dRBBbu/3r5s5YCiE6dQ+B98FuLnj6+R0ympoyoV8upYJN+x
lgfkC1JiWzeDeZ56FlMoud4GfYCqcjf9IgMFAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUwzu3XKW4ilNxmcr5tJUiNjnGpfkwHwYDVR0jBBgwFoAUXR4/PIuoncExBBA0
X1DBAHYYEmEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0dORVQv
WFI0X1BJdW9uY0V4QkJBMFgxREJBSFlZRW1FLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9YUjRfUEl1b25jRXhCQkEwWDFEQkFIWVlFbUUuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DR05FVC93enUzWEtXNGlsTnhtY3I1dEpV
aU5qbkdwZmsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDG5MA
MA0GCSqGSIb3DQEBCwUAA4IBAQCWGs2WGtJA0mZb2IPSXN54DfK8eu2dlVtlrR+L
b/AqlMvvp5/51onn1bCXwCPw5MbQ/DTj9gu4USnUY2x3idmXdWLZykk5DOTpTl/m
JoEsf3j8zxd/+29yUsNY35xZOQi1FcBjYPpvvQIOOQqYiZftIYieO6XoYVdN4JuR
8tO1hUnBhZIcQEKNjtm2OJdRVyQl0FQ9VmQhXMi4uPyZ5QJfHOgihn1Gn7ZT5D5F
WZ+J6blOYlB2cQJqGVffEHRYlWk+Q2H+5C6vHQCUH3gOzyEUddS5K4jGbtOGEJAF
yH/WXgWyUJRwFb/4bNho+/5fQ/9yXcwGo4KJw7ia01Wn+MFn
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org