Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/G_pHh4LtIn6ilAy5-yzxanaWmu0.roa
File: G_pHh4LtIn6ilAy5-yzxanaWmu0.roa (raw, json)
Hash identifier: pr2arg2agZk88Y8vwkRWz/U3CTYUbbovO4pgMfEb0l0=
Subject key identifier: 1B:FA:47:87:82:ED:22:7E:A2:94:0C:B9:FB:2C:F1:6A:76:96:9A:ED
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0C69
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/G_pHh4LtIn6ilAy5-yzxanaWmu0.roa
Signing time: Fri 01 Sep 2023 08:26:31 +0000
ROA not before: Fri 01 Sep 2023 08:26:31 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18429
IP address blocks: 124.155.160.0/19 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3177 (0xc69)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Sep 1 08:26:31 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=1BFA478782ED227EA2940CB9FB2CF16A76969AED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:f4:30:e7:ff:f6:52:00:36:3e:2a:74:14:4b:
25:2d:10:96:70:0f:2a:0c:13:95:90:62:e3:54:cc:
fa:13:8d:33:53:c9:e7:9e:bf:a0:85:de:1b:db:a9:
c9:67:0f:bb:29:2d:73:6b:22:12:7e:1a:a9:8e:a1:
79:f6:31:c6:b7:1e:ac:1c:85:10:86:de:9c:97:fb:
14:3e:c6:fb:ce:88:1c:0c:c5:7f:bf:be:56:e9:70:
5d:15:cd:00:b4:cc:de:1c:6b:f7:f4:0a:f1:f8:76:
11:8a:cd:b1:3a:48:13:4e:0d:c4:4f:b2:aa:84:27:
d3:75:94:29:22:4d:13:37:8c:be:e8:c4:4b:5a:2a:
2e:87:26:70:c9:d3:30:cb:c2:39:9d:d0:42:59:b6:
9d:1a:ba:95:3f:22:88:02:58:67:b1:7b:66:84:14:
45:0c:b4:f8:ce:f0:95:10:3c:d9:76:61:e5:3b:0b:
3e:7f:ca:6e:b8:32:d2:3e:32:17:1f:cb:22:ab:25:
dc:ab:c4:d6:12:e8:d5:38:d3:99:7b:30:90:d2:80:
fa:42:c3:f1:bd:c5:7b:10:69:88:db:a7:0c:3a:81:
2f:8b:35:b0:0b:a9:20:4f:1e:f2:b0:83:58:d1:fa:
76:52:5c:23:1b:89:61:26:09:3d:96:59:53:ba:bd:
f1:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:FA:47:87:82:ED:22:7E:A2:94:0C:B9:FB:2C:F1:6A:76:96:9A:ED
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/G_pHh4LtIn6ilAy5-yzxanaWmu0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.155.160.0/19
Signature Algorithm: sha256WithRSAEncryption
4a:c7:15:b8:b0:fe:d3:10:19:68:62:5e:90:1b:70:36:f9:e9:
82:2f:f2:6f:4a:c1:36:2b:a9:01:95:af:7f:8b:80:aa:e1:e9:
ed:20:34:dc:9f:c8:0b:37:bc:5c:23:44:7a:4f:a6:be:6d:40:
f1:67:54:4e:41:69:6f:2c:59:ae:f5:49:5c:9b:8b:68:3a:e4:
dc:92:f6:32:a7:55:18:89:82:db:ca:17:9b:5c:06:e2:2c:33:
b6:d9:0a:b8:10:01:9b:c5:8e:27:4b:cf:50:1d:77:76:46:a8:
ee:57:02:1a:f0:dc:65:8e:aa:06:e1:5a:af:64:48:2c:58:14:
c3:c2:5d:16:b2:62:77:b3:37:ae:38:0c:b6:3d:88:0c:2d:c9:
20:aa:ea:61:86:74:fa:2b:d9:44:63:2a:d0:c2:7a:b8:1e:bc:
11:f4:44:24:5d:7e:dc:cf:00:4b:91:d8:8a:35:17:87:ff:34:
12:20:4f:b0:87:f2:22:17:69:3f:e9:ff:93:39:56:b9:e8:12:
56:bb:f7:ca:80:4a:9c:b2:df:08:1b:f7:ba:07:b0:74:da:4d:
53:a3:9c:63:71:c3:2e:1c:42:9c:9e:a0:cf:6e:a0:b9:70:c5:
24:49:be:67:9f:93:8f:64:56:55:73:7b:25:d5:50:93:c9:ce:
f6:62:52:f2
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICDGkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUQx
RTNGM0M4QkE4OURDMTMxMDQxMDM0NUY1MEMxMDA3NjE4MTI2MTAeFw0yMzA5MDEw
ODI2MzFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDFCRkE0Nzg3ODJFRDIy
N0VBMjk0MENCOUZCMkNGMTZBNzY5NjlBRUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDJ9DDn//ZSADY+KnQUSyUtEJZwDyoME5WQYuNUzPoTjTNTyeee
v6CF3hvbqclnD7spLXNrIhJ+GqmOoXn2Mca3HqwchRCG3pyX+xQ+xvvOiBwMxX+/
vlbpcF0VzQC0zN4ca/f0CvH4dhGKzbE6SBNODcRPsqqEJ9N1lCkiTRM3jL7oxEta
Ki6HJnDJ0zDLwjmd0EJZtp0aupU/IogCWGexe2aEFEUMtPjO8JUQPNl2YeU7Cz5/
ym64MtI+MhcfyyKrJdyrxNYS6NU405l7MJDSgPpCw/G9xXsQaYjbpww6gS+LNbAL
qSBPHvKwg1jR+nZSXCMbiWEmCT2WWVO6vfHVAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUG/pHh4LtIn6ilAy5+yzxanaWmu0wHwYDVR0jBBgwFoAUXR4/PIuoncExBBA0
X1DBAHYYEmEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0dORVQv
WFI0X1BJdW9uY0V4QkJBMFgxREJBSFlZRW1FLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9YUjRfUEl1b25jRXhCQkEwWDFEQkFIWVlFbUUuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DR05FVC9HX3BIaDRMdEluNmlsQXk1LXl6
eGFuYVdtdTAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFfJug
MA0GCSqGSIb3DQEBCwUAA4IBAQBKxxW4sP7TEBloYl6QG3A2+emCL/JvSsE2K6kB
la9/i4Cq4entIDTcn8gLN7xcI0R6T6a+bUDxZ1ROQWlvLFmu9Ulcm4toOuTckvYy
p1UYiYLbyhebXAbiLDO22Qq4EAGbxY4nS89QHXd2RqjuVwIa8NxljqoG4VqvZEgs
WBTDwl0WsmJ3szeuOAy2PYgMLckgquphhnT6K9lEYyrQwnq4HrwR9EQkXX7czwBL
kdiKNReH/zQSIE+wh/IiF2k/6f+TOVa56BJWu/fKgEqcst8IG/e6B7B02k1To5xj
ccMuHEKcnqDPbqC5cMUkSb5nn5OPZFZVc3sl1VCTyc72YlLy
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:35:57 2025 by rpki-client