Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/giBCbmy9D3szFlcEISO9ErR8tcQ.roa
File: giBCbmy9D3szFlcEISO9ErR8tcQ.roa (raw, json)
Hash identifier: 0hN8GqnKXrXCb/jJngeSha91eWGUs2Nwb0edcO0eqHQ=
Subject key identifier: 82:20:42:6E:6C:BD:0F:7B:33:16:57:04:21:23:BD:12:B4:7C:B5:C4
Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Certificate serial: 08C8
Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/giBCbmy9D3szFlcEISO9ErR8tcQ.roa
Signing time: Sun 07 Feb 2021 11:54:23 +0000
ROA not before: Sun 07 Feb 2021 11:54:23 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 32787
IP address blocks: 27.105.82.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2248 (0x8c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Validity
Not Before: Feb 7 11:54:23 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8220426E6CBD0F7B331657042123BD12B47CB5C4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ff:0c:a9:aa:ba:92:ec:7a:71:9a:15:d8:6b:
51:3f:22:44:54:fe:42:93:b8:d5:0b:d2:b1:b9:92:
2d:42:42:17:00:87:9b:c4:09:02:3a:45:80:1f:e6:
12:d5:b1:37:3a:d8:55:5b:65:90:35:8a:b7:d4:b9:
69:51:a0:91:85:fd:ee:0f:0a:d1:f3:ba:d4:44:e0:
c4:1a:8f:72:ec:75:1e:33:f1:ec:3b:04:be:a6:f2:
24:77:68:6f:bb:35:cb:e0:10:eb:17:27:06:4d:4e:
2c:47:dd:ee:de:dd:95:9a:5f:19:d4:04:ca:76:54:
4b:81:57:60:ec:09:18:a5:82:04:74:ad:09:7a:c6:
4b:83:2f:7f:09:a5:04:a4:8c:42:0a:f5:fe:f1:77:
6a:1e:78:2e:a7:a1:24:0b:67:73:c8:76:70:8d:6b:
6a:97:bd:27:c3:20:93:54:de:1d:1d:1a:fa:fb:aa:
d5:d7:86:27:86:c2:b4:ec:55:69:dc:06:9d:e4:f1:
6b:bb:1e:26:7e:ba:8d:6e:bf:5d:a3:33:36:a1:19:
a5:ed:e8:b7:02:c8:b9:f1:dd:25:64:6a:81:99:ec:
c4:b3:25:09:28:86:d1:ae:11:df:b3:6e:a4:9f:b1:
35:1a:3a:6d:cd:b1:88:d6:c9:38:bf:db:89:dd:8d:
08:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:20:42:6E:6C:BD:0F:7B:33:16:57:04:21:23:BD:12:B4:7C:B5:C4
X509v3 Authority Key Identifier:
keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/giBCbmy9D3szFlcEISO9ErR8tcQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.105.82.0/24
Signature Algorithm: sha256WithRSAEncryption
71:d3:bc:c1:2e:43:32:35:a7:60:42:dc:14:d7:01:ed:ec:52:
57:7d:82:2f:4d:7a:09:2c:05:c3:ef:04:80:51:b1:2e:9a:ec:
0b:90:f8:56:0b:60:35:b3:30:f4:21:f1:1b:07:9b:7a:34:5b:
45:9c:1a:57:6a:a9:e4:53:70:c2:2b:95:40:30:65:50:04:9b:
e1:16:97:dd:b1:01:3b:e2:ac:59:d6:01:4f:30:92:18:94:94:
51:23:1d:24:34:1a:d8:b2:9b:23:dc:99:79:f5:48:74:e2:d5:
37:de:7a:03:c6:38:42:97:1a:f9:1a:39:e5:e2:b8:a0:e9:54:
b6:cb:08:d7:39:6a:61:15:d6:7b:53:66:7d:d5:13:a8:d3:27:
52:14:f9:0a:6f:6a:3a:ab:70:50:cc:39:18:ef:48:1d:b4:f3:
27:99:e7:98:22:52:7d:9a:11:dd:87:16:71:87:03:7d:7e:b0:
87:29:23:f4:b8:08:0d:16:5e:cb:a7:cf:b1:2f:15:14:99:9d:
5f:b9:b8:71:50:54:22:7e:60:fa:bb:44:fa:35:18:b7:11:01:
db:8b:5f:ed:03:f9:17:65:e2:27:9a:de:23:f5:61:03:15:9e:
78:d4:b1:24:d4:ee:22:3e:27:cb:ad:60:8c:9e:d2:cb:dd:b2:
fd:40:7f:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org