Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/HttQAvw9R4XVDJMayC8q3eLhovg.roa
File: HttQAvw9R4XVDJMayC8q3eLhovg.roa (raw, json)
Hash identifier: 0WaS5zjqdFSjfwMInKupHSTcepXqKIHINBPzRnwlvj0=
Subject key identifier: 1E:DB:50:02:FC:3D:47:85:D5:0C:93:1A:C8:2F:2A:DD:E2:E1:A2:F8
Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Certificate serial: 097E
Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/HttQAvw9R4XVDJMayC8q3eLhovg.roa
Signing time: Wed 29 Sep 2021 02:51:54 +0000
ROA not before: Wed 29 Sep 2021 02:51:54 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 32787
IP address blocks: 27.105.82.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2430 (0x97e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Validity
Not Before: Sep 29 02:51:54 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=1EDB5002FC3D4785D50C931AC82F2ADDE2E1A2F8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:75:8e:81:eb:cf:9d:69:f9:9f:eb:28:20:7f:
28:0e:da:84:b0:e1:73:27:8d:36:bd:82:5a:5d:0a:
c6:f4:87:89:c8:ef:32:85:d3:c9:10:30:bf:da:31:
f4:4d:78:e4:7d:f0:16:5a:11:98:02:01:5f:73:4b:
89:c9:72:e6:ea:29:57:7f:c3:bf:a3:cd:42:4b:94:
9b:19:d1:d0:80:90:6d:41:a2:ab:f9:d7:de:a9:93:
cc:87:66:30:5f:5d:09:c6:c9:96:a6:08:85:a5:90:
79:52:be:9a:21:ff:5b:f0:c5:8d:4e:2b:65:f4:36:
44:6f:c0:e9:22:93:36:eb:8c:a1:b5:cc:0b:21:8f:
6c:82:90:04:a7:9f:88:46:84:c2:53:e9:ad:e4:98:
a5:ca:a6:f9:7e:45:64:2d:29:5c:5b:20:07:9c:4e:
77:9d:14:13:e0:86:81:bd:90:77:69:d1:54:95:0e:
d7:52:5a:00:0a:c0:82:ad:f2:96:2a:7f:ad:75:3e:
e0:cb:fb:a2:5c:7f:d7:24:d1:90:13:4d:85:0e:9f:
f7:f4:55:e5:0c:3a:5e:9c:b4:20:a3:48:3d:02:6a:
cd:aa:65:74:8d:45:90:60:c2:a5:e0:f3:ee:db:f9:
31:7e:44:76:0e:1a:ae:78:bb:fc:22:7c:cd:26:10:
20:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:DB:50:02:FC:3D:47:85:D5:0C:93:1A:C8:2F:2A:DD:E2:E1:A2:F8
X509v3 Authority Key Identifier:
keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/HttQAvw9R4XVDJMayC8q3eLhovg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.105.82.0/24
Signature Algorithm: sha256WithRSAEncryption
78:6c:83:95:a0:44:e6:80:41:ea:c4:e9:e9:d5:2c:0a:66:29:
f7:d9:a2:c7:0e:d4:35:a4:d8:06:b8:1f:0e:e3:c5:5b:1c:6d:
03:dd:a9:14:bd:02:3b:58:ed:af:ba:a3:0a:b5:b7:ad:63:17:
c9:b8:d2:01:02:7d:b8:fe:28:ea:8a:23:25:b8:2a:ea:05:62:
d5:63:bd:97:30:ac:d3:ae:1e:4c:e2:5e:aa:0d:ba:89:7e:f2:
0f:92:fd:1d:3a:48:ed:77:84:57:a3:4a:53:78:43:70:cf:b0:
5e:42:23:07:c5:80:5c:22:2b:00:a8:32:3b:f2:45:ea:55:6d:
5d:39:33:bd:43:fd:6f:11:5f:06:3b:41:b5:07:6f:94:09:1e:
c0:37:2d:b8:73:cd:b0:89:c9:05:3d:e2:ce:aa:d8:82:7a:87:
43:af:a9:ec:76:a8:97:29:b1:19:1e:8e:c3:44:19:bf:03:bf:
5c:25:b3:a7:a8:5b:18:15:85:ee:ae:58:28:e8:c0:94:9e:05:
3b:22:ca:93:ca:0c:f1:bf:91:1e:bc:02:39:3c:64:e5:cd:df:
92:63:88:fd:52:93:76:91:7a:50:37:9c:da:02:3b:b5:7c:b6:
6b:2b:e2:9e:08:f1:da:0f:a1:de:4f:f3:76:5c:a4:66:9e:d6:
4c:33:8d:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:17 2023 by rpki-client on console-fra.rpki-client.org