Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/JTFZvd_Ly6Vvvux0qd1KTTnV5KY.roa
File: JTFZvd_Ly6Vvvux0qd1KTTnV5KY.roa (raw, json)
Hash identifier: PE/rlI/x3WEjZR7GGh+3f3Z5dcdVoAMlfWIVu3YNVog=
Subject key identifier: 25:31:59:BD:DF:CB:CB:A5:6F:BE:EC:74:A9:DD:4A:4D:39:D5:E4:A6
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0AEB
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/JTFZvd_Ly6Vvvux0qd1KTTnV5KY.roa
Signing time: Thu 15 Sep 2022 02:49:28 +0000
ROA not before: Thu 15 Sep 2022 02:49:28 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18429
IP address blocks: 27.147.63.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2795 (0xaeb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Sep 15 02:49:28 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=253159BDDFCBCBA56FBEEC74A9DD4A4D39D5E4A6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:4a:a3:5e:79:af:fb:4c:45:61:a0:d2:91:cb:
8b:ef:99:32:d5:17:60:29:19:02:3e:c2:8f:1c:3f:
08:53:5c:7b:f1:10:48:51:52:59:d2:14:b0:ac:4a:
33:9c:3d:11:b9:8e:c7:f5:a4:21:da:86:e2:a9:88:
54:32:a2:0d:da:08:a2:58:cf:5f:a9:f3:41:cc:f8:
cb:c5:8e:be:4a:dc:05:f8:03:ce:37:15:86:42:58:
a5:ca:0a:3b:75:45:1c:56:f3:a4:b1:a6:4c:4c:91:
70:94:71:18:13:d9:58:04:d0:d7:f4:7c:5f:71:3a:
f6:37:25:84:5e:28:be:6a:96:2f:d6:5f:1d:2a:78:
c3:a5:07:9d:22:c0:d3:98:ff:e6:09:d9:0c:5a:b6:
14:16:93:79:81:e5:29:db:e4:8b:66:99:fc:0f:c4:
ca:7c:69:12:18:c8:40:62:b9:7b:45:79:99:94:f1:
68:e5:73:e9:df:35:43:9e:5d:e5:48:4e:72:31:a6:
f9:7c:b9:52:12:e5:b0:3b:f0:2d:b1:48:2a:ca:81:
da:95:03:ba:7b:ba:9f:4f:d4:52:5d:f3:49:06:43:
9b:7c:af:09:53:66:bc:c7:b4:47:88:10:32:c0:74:
02:9f:97:2a:de:14:1a:33:7d:7f:06:bb:59:13:81:
e5:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:31:59:BD:DF:CB:CB:A5:6F:BE:EC:74:A9:DD:4A:4D:39:D5:E4:A6
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/JTFZvd_Ly6Vvvux0qd1KTTnV5KY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.147.63.0/24
Signature Algorithm: sha256WithRSAEncryption
54:76:55:df:fd:32:fe:aa:04:1e:05:c2:f6:0b:7c:37:f9:83:
6b:13:ac:65:d3:0c:51:ff:74:3d:7e:98:f4:4f:1f:63:8e:46:
c2:a4:1f:63:56:41:b8:ea:9c:87:e3:60:1b:f2:29:2a:d9:ed:
4f:3c:88:89:32:fd:e0:0e:89:42:fb:46:4f:45:51:bc:aa:0a:
6b:6a:3f:a4:94:4a:a3:f2:de:eb:56:e2:b0:d2:24:72:7c:e2:
1b:48:a9:54:d0:0c:0b:12:9e:31:1d:b6:d3:d5:07:84:12:5d:
44:ad:7b:7c:bb:cd:a2:f9:1e:8e:7b:e6:62:94:66:c3:55:18:
a7:a6:cd:97:e5:75:9c:24:30:c3:30:b5:93:1f:c6:74:e3:41:
c1:23:bf:28:1d:4c:51:44:36:16:7f:a9:8d:fe:5e:80:26:85:
30:dc:14:da:53:cd:2f:b8:ef:94:63:4d:6e:06:a1:6c:3f:49:
e9:fb:f4:77:36:44:25:48:bd:ae:f5:ca:fa:99:18:d7:ca:5b:
46:92:57:e2:11:75:21:66:a6:50:b4:50:81:16:9d:dc:04:91:
81:b7:62:e5:a4:a1:08:33:2e:71:1c:04:b1:9f:39:82:69:28:
39:5d:32:e8:0e:3a:c5:e3:e0:81:74:40:17:9b:cc:4a:de:c7:
7f:9c:04:60
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCuswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUQx
RTNGM0M4QkE4OURDMTMxMDQxMDM0NUY1MEMxMDA3NjE4MTI2MTAeFw0yMjA5MTUw
MjQ5MjhaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDI1MzE1OUJEREZDQkNC
QTU2RkJFRUM3NEE5REQ0QTREMzlENUU0QTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC4SqNeea/7TEVhoNKRy4vvmTLVF2ApGQI+wo8cPwhTXHvxEEhR
UlnSFLCsSjOcPRG5jsf1pCHahuKpiFQyog3aCKJYz1+p80HM+MvFjr5K3AX4A843
FYZCWKXKCjt1RRxW86SxpkxMkXCUcRgT2VgE0Nf0fF9xOvY3JYReKL5qli/WXx0q
eMOlB50iwNOY/+YJ2QxathQWk3mB5Snb5ItmmfwPxMp8aRIYyEBiuXtFeZmU8Wjl
c+nfNUOeXeVITnIxpvl8uVIS5bA78C2xSCrKgdqVA7p7up9P1FJd80kGQ5t8rwlT
ZrzHtEeIEDLAdAKflyreFBozfX8Gu1kTgeXbAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUJTFZvd/Ly6Vvvux0qd1KTTnV5KYwHwYDVR0jBBgwFoAUXR4/PIuoncExBBA0
X1DBAHYYEmEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0dORVQv
WFI0X1BJdW9uY0V4QkJBMFgxREJBSFlZRW1FLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9YUjRfUEl1b25jRXhCQkEwWDFEQkFIWVlFbUUuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DR05FVC9KVEZadmRfTHk2VnZ2dXgwcWQx
S1RUblY1S1kucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAG5M/
MA0GCSqGSIb3DQEBCwUAA4IBAQBUdlXf/TL+qgQeBcL2C3w3+YNrE6xl0wxR/3Q9
fpj0Tx9jjkbCpB9jVkG46pyH42Ab8ikq2e1PPIiJMv3gDolC+0ZPRVG8qgpraj+k
lEqj8t7rVuKw0iRyfOIbSKlU0AwLEp4xHbbT1QeEEl1ErXt8u82i+R6Oe+ZilGbD
VRinps2X5XWcJDDDMLWTH8Z040HBI78oHUxRRDYWf6mN/l6AJoUw3BTaU80vuO+U
Y01uBqFsP0np+/R3NkQlSL2u9cr6mRjXyltGklfiEXUhZqZQtFCBFp3cBJGBt2Ll
pKEIMy5xHASxnzmCaSg5XTLoDjrF4+CBdEAXm8xK3sd/nARg
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:16:33 2025 by rpki-client