Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/JG3kB-gBVTQXLRK3y6UcGcIdff0.roa
File: JG3kB-gBVTQXLRK3y6UcGcIdff0.roa (raw, json)
Hash identifier: mdaJK54Fpp3+Hv3GbZFd9K/3xm2Wy8yvy8cUrTmBlyE=
Subject key identifier: 24:6D:E4:07:E8:01:55:34:17:2D:12:B7:CB:A5:1C:19:C2:1D:7D:FD
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0798
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/JG3kB-gBVTQXLRK3y6UcGcIdff0.roa
Signing time: Tue 29 Sep 2020 09:59:31 +0000
ROA not before: Tue 29 Sep 2020 09:59:31 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18429
IP address blocks: 124.155.160.0/21 maxlen: 21
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1944 (0x798)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Sep 29 09:59:31 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=246DE407E8015534172D12B7CBA51C19C21D7DFD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:c3:b3:bb:d5:06:8d:c8:94:b4:63:c2:fb:19:
f6:c1:5b:a1:95:43:54:0f:51:22:a7:af:cc:a8:b4:
e3:6b:ca:6c:91:f8:80:f3:c0:8d:19:62:9e:df:a4:
9d:79:6a:6b:64:65:dd:1d:40:cc:f2:73:10:52:72:
87:f3:5c:e8:3c:9c:0b:4c:17:72:90:a2:29:a0:a0:
b5:93:5c:52:3c:c9:5e:da:16:b6:24:ac:12:79:cb:
22:cf:ed:7c:d4:ca:ac:14:89:ab:f5:8a:25:05:63:
a3:f6:89:ec:ad:41:9d:5a:86:48:6c:c4:ad:54:c2:
d3:9e:41:15:05:90:6c:03:4f:66:85:4b:45:99:f3:
6b:b5:17:b3:3d:73:98:1b:92:19:36:56:7b:3f:f3:
bd:10:1f:38:e1:86:4c:10:83:82:b6:e4:83:a3:5f:
0f:c7:35:ed:f3:ef:ae:a4:bb:4e:5f:0c:13:4d:9c:
90:51:a6:b8:3a:59:22:31:a6:a5:b3:70:fd:e0:30:
1a:3b:9b:a7:78:19:db:4c:1a:1a:4c:2a:80:4e:a0:
f7:7e:54:72:a6:34:5f:04:14:3d:7a:24:a7:e9:c7:
f7:f5:67:5e:be:f2:b2:15:3d:6c:75:d3:37:59:e6:
21:cb:ba:c0:62:49:35:d9:32:7f:6d:06:28:01:d7:
bf:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:6D:E4:07:E8:01:55:34:17:2D:12:B7:CB:A5:1C:19:C2:1D:7D:FD
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/JG3kB-gBVTQXLRK3y6UcGcIdff0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.155.160.0/21
Signature Algorithm: sha256WithRSAEncryption
95:11:ce:f9:f5:d3:cd:28:be:1a:2a:5d:04:27:75:58:5f:04:
86:fb:82:b8:b4:88:72:03:ee:4a:57:98:fa:b2:ab:2e:9f:19:
fb:d7:cc:8b:52:b3:ee:25:87:01:06:e8:6f:1a:fc:80:9f:db:
f1:a7:53:8f:37:f3:f6:f8:01:bb:5f:63:e5:6c:39:5c:0c:ad:
46:0a:f2:60:84:47:fa:f7:88:27:90:6c:3a:70:8f:99:83:26:
b6:ac:0b:6a:73:8e:24:a6:66:99:c5:e2:87:19:dd:c7:c9:98:
32:90:03:52:aa:d9:2e:7d:63:d9:87:95:ff:82:83:aa:30:19:
1a:28:94:9b:28:2c:67:74:fc:07:18:f0:4f:eb:41:d8:aa:3b:
75:ef:b6:06:c7:3f:01:59:b7:aa:2d:de:62:15:c5:a9:51:25:
b6:a3:83:21:9a:18:92:ec:4e:74:5b:2d:b7:a2:a0:8a:6d:96:
4d:e5:18:06:39:25:5d:fe:40:28:ef:96:95:d1:e1:9d:05:a5:
90:e6:50:0c:94:96:75:50:cb:8d:74:6a:a4:f4:d3:5d:6a:32:
f2:ad:0f:84:be:7e:b9:30:aa:93:10:de:c2:03:87:e0:85:ca:
47:f2:50:1d:04:44:96:1c:4f:cf:dc:a5:5d:ad:1b:68:29:02:
1f:8f:ea:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:35:57 2025 by rpki-client