Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/YK7Fefpu5rg0h8Bjzl5QDTa99Zs.roa
File: YK7Fefpu5rg0h8Bjzl5QDTa99Zs.roa (raw, json)
Hash identifier: J/yiPt8b8SIDpH63ivbLVrZKKkt/QZokF4gAZCbagew=
Subject key identifier: 60:AE:C5:79:FA:6E:E6:B8:34:87:C0:63:CE:5E:50:0D:36:BD:F5:9B
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 09E1
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/YK7Fefpu5rg0h8Bjzl5QDTa99Zs.roa
Signing time: Wed 29 Sep 2021 02:52:05 +0000
ROA not before: Wed 29 Sep 2021 02:52:05 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18429
IP address blocks: 124.155.160.0/21 maxlen: 21
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2529 (0x9e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Sep 29 02:52:05 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=60AEC579FA6EE6B83487C063CE5E500D36BDF59B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:ac:04:e7:52:c5:39:b6:b6:b7:be:ca:2d:83:
62:d3:1a:e5:aa:c7:90:24:fd:53:6f:57:d8:a5:67:
24:7f:e9:cf:da:f3:8a:27:bb:6e:e5:b0:87:43:27:
40:f7:ed:2b:96:a7:16:09:d7:9e:06:49:13:86:85:
d6:08:bf:2e:6d:5b:83:7e:86:61:06:e5:66:21:20:
33:5c:fb:9c:87:89:b9:43:f2:1e:30:a9:e3:b4:fc:
2f:db:96:d6:8e:6d:ea:f4:29:77:30:68:96:af:23:
f1:4e:fc:12:be:7b:68:26:16:ba:3a:aa:88:83:c4:
c1:bc:82:f3:02:82:83:01:f6:34:09:23:26:a3:44:
6c:d4:e6:2b:62:5f:09:84:44:72:8f:67:82:55:e5:
6e:82:26:94:12:46:f4:9a:ca:c1:65:de:72:08:4a:
f0:fa:40:51:48:51:2f:88:ed:b7:51:32:7c:06:0d:
ed:13:4f:f2:3a:25:0f:64:42:56:6a:7e:dc:5a:85:
72:1e:6d:4f:c7:4e:35:1f:c0:dd:60:a8:99:e4:ba:
60:f3:93:74:5a:2f:5a:a8:a4:00:75:15:08:75:17:
e9:66:ef:5e:d9:7f:e3:bd:c7:c5:7e:6d:29:96:cb:
8a:df:0a:62:6e:38:70:5e:18:b4:f7:63:3a:54:1e:
32:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:AE:C5:79:FA:6E:E6:B8:34:87:C0:63:CE:5E:50:0D:36:BD:F5:9B
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/YK7Fefpu5rg0h8Bjzl5QDTa99Zs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.155.160.0/21
Signature Algorithm: sha256WithRSAEncryption
35:d6:c8:7c:c0:50:6c:33:43:bb:d5:0e:44:31:65:8f:7a:5d:
9d:d6:93:42:df:52:03:3c:03:f9:49:42:9e:d3:22:90:dc:74:
60:78:15:75:f3:7d:73:a0:cf:4b:8f:3f:53:15:ec:29:05:bc:
30:8b:d6:b4:0b:2e:df:6a:98:05:fb:9a:98:bc:77:6b:9d:7e:
41:e7:45:8a:ef:3c:ca:7e:63:c8:fd:d6:40:08:5b:2c:51:9e:
b7:06:65:7d:00:97:9a:d2:b9:a5:8c:2f:5c:45:33:48:87:1f:
a1:a7:b5:c4:e7:f4:6d:2a:06:cf:9f:3c:05:a3:fe:70:19:15:
58:c2:70:84:66:37:ba:dc:56:93:b4:43:c7:41:c3:73:7c:c3:
9b:28:d0:4c:b0:ad:96:4d:3f:13:8a:73:61:6f:bb:73:eb:09:
4f:9d:a9:be:fe:0e:5a:4c:fe:ea:02:14:00:1c:7f:89:3c:af:
27:50:67:2b:a7:a6:fa:26:3f:2e:78:77:69:9a:be:ec:f2:5c:
5e:75:2b:f5:b1:2e:cf:48:7d:12:29:78:97:9e:c7:bd:6f:72:
cf:a2:00:9e:5a:8d:56:63:d9:8a:f5:bc:77:a1:5a:dc:80:6b:
9f:74:5e:10:69:0a:a2:37:e4:f8:8f:80:a3:80:21:75:1b:12:
6b:0c:58:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:30:16 2025 by rpki-client